Title

New Security Protocols for Offline Point-of-Sale Machines

Document Type

Book Chapter

Source of Publication

Lecture Notes in Networks and Systems

Publication Date

3-31-2022

Abstract

EMV (Europay MasterCard Visa) is the protocol implement-ed to secure the communication between a client’s payment device and a Point-of-Sale machine during a contact or an NFC (Near Field Communication) purchase transaction. In several studies, researchers have analyzed the operation of this protocol in order to verify its safety: unfortunately, they have identified two security vulnerabilities that lead to multiple attacks and dangerous risks threatening both clients and merchants. In this paper, we are interested in proposing new security solutions that aim to overcome the two dangerous EMV vulnerabilities. Our solutions address the case of Point-of-Sale machines that do not have access to the banking network and are therefore in the “offline” connectivity mode. We verify the accuracy of our proposals by using the Scyther security verification tool.

ISSN

Publisher

Springer International Publishing

Volume

450

First Page

446

Last Page

467

Disciplines

Computer Sciences

Keywords

EMV protocol, EMV vulnerabilities, NFC, Offline, Payment, Security

Indexed in Scopus

no

Open Access

no

Share

COinS