Browse > Article
http://dx.doi.org/10.5762/KAIS.2017.18.3.41

A Study on Secure Mobile Payment Service for the Market Economy Revitalization  

Kim, Hyung-Uk (Department of Computer Science and Engineering, Soongsil University)
Jung, Yong-Hoon (Department of Computer Science and Engineering, Soongsil University)
Jun, Moon-Seog (Department of Computer Science and Engineering, Soongsil University)
Publication Information
Journal of the Korea Academia-Industrial cooperation Society / v.18, no.3, 2017 , pp. 41-48 More about this Journal
Abstract
Recently, there has been a lot of ongoing research regarding financial transactions and payments due to the emergence of financial technology (FinTech). Payments have been processed through cash and credit cards, and payment methods have been simplified and are more convenient, with mobile payment via mobile cards and mobile phones. This study offers a new mobile payment method by using a mobile phone instead of a card reader or terminal. For payments, authentication is processed with the user's biometrics and a built-in fingerprint scanner, and the payment is processed after receiving an authentication code issued by the authorizing institution to confirm the user's identity. User biometrics and payment information is secured from any kind of malicious hacker by saving it in a Fast Identity Online (FIDO) Trusted Execution Environment (TEE) section in a smartphone. Regarding key security, every key is securely created in the FIDO TEE section, providing secure mobile payment by neutralizing various malicious attacks, including sniffing and the man-in-the middle attack.
Keywords
Biometrics; Fingerprint; Fintech; FIDO; FIDO TEE;
Citations & Related Records
연도 인용수 순위
  • Reference
1 Inyeob Ji, Kwang Myung Chun, "Digital Currency and Inflation Hedge: Evidence from Bitcoin" Korea Association for Telecommunications Policies. pp31-51. 2016.
2 Pratap Murukutla, K. C. Shet, "Single Sign on for Cloud.", 2012 International Conference on Computing Sciences. IEEE, pp. 176-179, Sept, 2012. DOI: https://doi.org/10.1109/ICCS.2012.66   DOI
3 Wanpeng Li, Chris J. Mitchell, "Security issues in OAuth 2.0 SSO implementations.", International Conference on Information Security. Springer International Publishing, pp. 529-541, Oct. 2014. DOI: https://doi.org/10.1007/978-3-319-13257-0_34   DOI
4 Hyung-woo Lee, Yeong-Joon Park, "A Design and Implementation of User Authentication System using Biometric Information", Korea Academia-Industrial cooperation Society, pp.3548-3557, Sept. 2010. DOI: http://doi.org/10.5762/KAIS.2010.11.9.3548
5 Jeong-Hyo Park, " A Non-Password Secure Biometric Digital Signature Method for Mobile Device", Soongsil University Graduate School, 2016.
6 Sampath Srinivas, Dirk Balfanz, Eric Tiffany, "Universal 2nd factor (U2F) overview", FIDO Alliance Proposed Standard, 2015.
7 Rolf Lindemann, Davit Baghdasaryan, Eric Tiffany, "FIDO UAF Protocol Specification v1.0", FIDO Alliance Proposed Standard, 2014.
8 jeongkook park, "Fintech and information security", 2015 korean institute of information scientists and engineers. pp.23-32, May, 2015.
9 FIDO TEE, www.emobileid.co.kr
10 KISA, "Implementation guideline for safe usage of accredited certificate bio information in smart phone", Sept. 2016.
11 Korea Internet & Security Agency, Excavating research areas of FinTech through the analysis of its relevant technologies and policy trends at home and abroad, Feb. 2016.