A secure kiosk centric mobile payment protocol using symmetric key techniques

Abstract

In this paper, we propose a secure kiosk(Merchant) centric mobile payment scenario in which the customer is disconnected from issuer due to lack of internet connection(various reasons are mentioned below) and still can be used for mobile transaction. Our protocol protects the real identity of the customer during the transaction flow. The proposed protocol is based on symmetric key cryptography which further reduces computation at all the entities of the protocol. The protocol satisfies all the security requirements met by the existing standard protocols like SET, iKP, Kungpisdan et al and Tellez et al. Based on the author knowledge, the proposed protocol is the first protocol which satisfies all the cases of Non Repudiation. All the above mentioned protocols satisfies only Non Repudiation of Origin, where as our proposed protocol satisfies Non repudiation of Receipt, Non repudiation of Submission, Non repudiation of Delivery.