Gang Xu,Qian Zhang,Yanli Lu,Lei Liu,Daizong Ji,Shuang Li,Qingjun Liu

DOI: https://doi.org/10.1016/j.snb.2017.02.149

IF: 9.221

2017-01-01

Sensors and Actuators B Chemical

Abstract:Wireless, passive, low-cost and portable detection systems are in high demand for environment monitoring, food safety and health care diagnosis. Among them smartphone-based sensing systems are receiving special attention with the worldwide popularity of smartphones. Over the past decade, many devices, including a large number of smartphones in today's marketplace, are integrated with near field communication (NFC) modules. Leveraging the worldwide ubiquity of these devices, we developed wireless and passive NFC tag sensors based on flexible arid low-cost NFC tags for biochemical sensing. NFC-enabled smartphone was used to wirelessly power the sensors and receive the detection results through inductive coupling. By adopting rheostats in the resonant circuits of the sensors, we easily achieved accurate semi quantitative detection of different analytes constructed sensor arrays. The results demonstrated that the tag sensors could be used to discriminate gases at part-per-million concentrations and analytes in solution such as ions and bacteria in different concentration ranges. Thus, the wireless, passive, low-cost and flexible NFC tag sensors unfolded new dimensions for biochemical sensing with smartphones (C) 2017 Elsevier B.V. All rights reserved.

ZHANG Fei,CHEN Zi-chen,XIONG Li

DOI: https://doi.org/10.3969/j.issn.1006-5911.2006.10.012

2006-01-01

Abstract:To improve the performance and network security of collaborative commerce chain system and to deal with shortcomings of existing solution to electronic commerce,Mobile Agent technology was introduced into the modeling of network-based collaborative commerce chain system.Based on Mobile Agent properties,problems of security and network security confronted with Mobile Agent in the transaction process of network-based collaborative commerce chain were analyzed.Finally,a prototype system between the customer Agent and the supplier Agent was used to expatiate security negotiation bargain procedure based on Mobile Agent under the public key infrastructure and certification authority.Research results showed that Agent's submission permit to the supplier server during authentication process could enhance the network bargain security of the collaborative commerce chain system.

Kai Yu,Yishan Wang,Jin Yu,Ping Wang

DOI: https://doi.org/10.1166/sl.2011.1635

2011-01-01

Sensor Letters

Abstract:The electronic nose (e-Nose) has more and more promising applications in home healthcare. In this paper, we introduce a portable e-Nose intended to satisfy the home healthcare applications. It employs semiconductor and electrochemical sensors to compose an array in a chamber to conduct breath analysis with pre-concentration and multiple desorption procedures. ON e-Nose II supplies a smart and interactive graphical user interface by a colourful TFT LCD and USB host interface. A package of supporting software on personal computer (PC) is also developed for data acquisition and pattern recognition. The results indicate that using multiple desorption methods, our e-Nose system may distinguish lung benign diseases, like pneumonia and pneumoconiosis, especially, healthy controls and lung cancer patients were separated with high accuracy through the detection of volatile organic compounds (VOCs) in breath. Our e-Nose instrument demonstrates excellent potential for assist in quick monitoring of respiratory diseases for family members at home in the near future.

许峰,崔隽,黄皓

DOI: https://doi.org/10.3969/j.issn.1002-137x.2008.10.022

2008-01-01

Computer Science

Abstract:The security protocols which are crucial to the mobile payment system(MPS),especially to the authentication of the user(mobile hand-held devices)in the wireless environment,determine the security properties or even the fate of whole system.We investigate the existent mobile payment systems,study the characteristic and security requirement of the macro-payment,and consider the inherent security of the J2ME platform,and hereby propose a security protocol for mobile payment based on J2ME,emphasizing the authentication to the user.Then we analyze and test the security and feasibility of the security protocols and the conclusion we have drawn is that security protocol achieves its security goals,has the ability to resist usual attacks and enjoys high efficiency.

Xi Li,Wei Zhu,Mingxing He

DOI: https://doi.org/10.1109/3CA.2010.5533752

2010-01-01

Abstract:Emerging electronic commerce becomes popular together with the considerable increase of mobile device. Since mobile payments will become one of the most important mobile services. However, most people do not have a fancy for remote mobile payment, or only is limited to micro-payment. The most important problem they worry about is the security of the mobile devices and the applications along with the complexity of payment process. The paper presents a secure remote payment architecture based on smart card in mobile devices that simplifies the payment process and takes a finance measure to permit a more fairly allocation of risks between merchants and consumers. Furthermore, security policies between the security properties of the payment application and the resource limitations are defined. It not only provides strong security but also makes the system open to common payment. Finally, ID-based signature mechanism has advantages over the others based on CA in terms of key distribution and scalability of increasing security level for remote mobile payment service.

Zhou Yu,Chai Hongfeng,He Shuo,Liao Jian

DOI: https://doi.org/10.3969/j.issn.1000-386X.2012.10.080

2012-01-01

Abstract:In this paper the status quo of the development of mobile payment business and the importance of security compliance detection of mobile payment system are introduced.Corresponding security standards on the requirements to information system security compliance detection are studied.The emphasis of the paper is to describe the compliance detection and analysis methods from three aspects: the system logs-based,the network communication information-based and the system configuration-based.According to these,a security compliance analysis and automatic detection model for mobile payment system is designed,which improves the accuracy and compliance of the detection outcomes,and this helps the sustained secure operation of the mobile payment system.

Ahmed Abdulkarim Talib,Aymen Dawood Salman

DOI: https://doi.org/10.11591/ijra.v11i3.pp213-222

2022-09-01

IAES International Journal of Robotics and Automation (IJRA)

Abstract:Smartphone has become more widely used than ever and become necessary to develop electronic payment systems using the internet of things (IoT) techniques with the smartphone. Payment solution is one of the most important issues in the IoT. It is the future to make life easier and better through the new relationships will be commercial, requiring payment for services and products. This paper develops a prototype of a payment system consisting of a network from several interconnecting devices such as radio frequency identification (RFID) reader, RFID card tag, equipped with microprocessors NodeMCU, and corresponding software represented by an interactive website for making process of purchase, a database (MySQL) for store data of payments. Focusing on the side of protecting the payment system, a security model for a simplistic payment system based on the IoT is represented by using biometric authentication in the sensor of smartphones like fingerprint authentication and face detection to make sure the identification of the user before making the payment process in the system.

LIAO Yong-gang,YU Dong-mei,ZHANG Qiu-yu

DOI: https://doi.org/10.3969/j.issn.1000-7024.2006.04.010

2006-01-01

Abstract:With development of Java technology,Sun has provided a new software develop platform,which is used in embedded devices and consume electronic devices.Through description of a mobile device-developing platform—J2ME(Java 2 Micro Edition),three architectures of J2ME: Java visual machine,two configurations(CLDC,CDC) and profile were introduced.At the same time,through description of verification mechanism and sandbox model,security mechanism of J2ME was analyzed fully.At last,security policy of J2ME was generalized.

Tao Feng,Nicholas DeSalvo,Lei Xu,Xi Zhao,Xi Wang,Weidong Shi

DOI: https://doi.org/10.4108/icst.mobicase.2014.257767

2014-01-01

Abstract:With the rise of Internet connected mobile devices, applications have migrated from PCs to mobile computing platforms. An important aspect, payment processing, faces new security challenges from these developments. Inasmuch, these advancements demand efforts from researchers and industry to meet increasing security needs. Threats can ensue from data loss, theft from lost, stolen, or decommissioned devices, information-stealing malware, and password peeping. We propose a secure framework for sensitive session driven applications which combines biometric-based continuous and implicit tracking of user identities, and TrustZone. This framework is accomplished through monitoring fingerprint authentication logs as well as detecting events when the phone has left the user's hands, all while in TrustZone, a platform for secure computation and storage on mobile devices. This solution leverages multiple onboard sensors as well as the ARM architecture to accomplish these feats. We conducted two user-studies acquiring smartphone users' usage statistics to investigate security and usability needs of our identity-tracking solution. To monitor these subtle gestures in real-world uncontrolled environments, multi-session data collection has been conducted to iteratively improve system performance. The evaluation results have demonstrated the feasibility of this framework as a secure session-based payment system.

Raja Naeem Akram,Iakovos Gurulian,Carlton Shepherd,Konstantinos Markantonakis,Keith Mayes

DOI: https://doi.org/10.48550/arXiv.1601.07101

2016-01-26

Cryptography and Security

Abstract:Near Field Communication (NFC) has enabled mobile phones to emulate contactless smart cards. Similar to contactless smart cards, they are also susceptible to relay attacks. To counter these, a number of methods have been proposed that rely primarily on ambient sensors as a proximity detection mechanism (also known as an anti-relay mechanism). In this paper, we, for the first time in academic literature, empirically evaluate a comprehensive set of ambient sensors for their effectiveness as a proximity detection mechanism. We selected 15 out of a total of 17 sensors available via the Google Android platform for evaluation, with the other two sensors unavailable on widely-used handsets. In existing academic literature, only 5 sensors have been proposed with positive results as a potential proximity detection mechanism. Each sensor, where feasible, was used to record the measurements of 1000 contactless transactions at four different physical locations. A total of 252 random users, random sample of the university student population, were involved during the field trails. The analysis of these transactions provides an empirical foundation to categorically answer whether ambient sensors provide a strong proximity detection mechanism for security sensitive applications like banking, transport and high-security access control. After careful analysis, we conclude that no single evaluated mobile ambient sensor is suitable for such critical applications in realistic deployment scenarios. Lastly, we identify a number of potential avenues that may improve their effectiveness.

Kai Sun

2002-01-01

Abstract:In current mobile agent systems, the research of protecting a host from possibly malicious mobile agents has made great progress, but reverse problem, namely protecting the agent from malicious hosts has not. This paper puts forward a scheme that uses JavaCard to provide a secure execution environment. First, attack of agent is analyzed. Then the detailed solution based on JavaCard is given.

Doyel Pal,Praveenkumar Khethavath,Tingting Chen,Yuan Zhang

DOI: https://doi.org/10.1002/dac.3293

2017-01-01

International Journal of Communication Systems

Abstract:Payment methods using mobile devices instead of using traditional methods (cash, credit card, etc) has been gaining popularity all over the world. The ubiquitous nature of smartphones and tablets has widened the ambit for using these devices for payments and other daily life activities. Recent advancements in mobile technology along with the convenience of mobile devices made these applications possible. Despite the worldwide user adoption of mobile applications, security is the key challenge in mobile banking and payments system. Mobile payments systems need to be very efficient and provide utmost security endlessly. State‐of‐the‐art mobile payment systems need the physical presence of a merchant agent to make a payment. In this article, we had described in detail about the design and implementation of a mobile payments application, used to make in‐store purchases and make secure payments without any physical presence of a cashier or a merchant agent. We proposed a novel privacy‐preserving and secure authentication algorithm to make mobile payments using biometrics. The analysis and experimental results show the reliability and efficiency of our proposed solution.

LI BEIJIN,ZHANG LI

DOI: https://doi.org/10.3969/j.issn.1008-0570.2008.06.003

2008-01-01

Abstract:The popularity of WAP-based Mobile Internethas brought new opportunities and challenges to e-commerce. The security of WAP-based electronic payment is a key problem to be solved. This paper introduces the technical characteristics of WAP,analyzes the security problems and solutions of Internet-based electronic payment,then concludes new security problems of WAP-based electronic payment,and provides corresponding solutions.

Fei Wang,Nan Yang,P. Mohamed Shakeel,Vijayalakshmi Saravanan

DOI: https://doi.org/10.1002/ett.4226

IF: 3.6

2021-01-28

Transactions on Emerging Telecommunications Technologies

Abstract:<p>In the recent past, different types of Mobile Network payments gateways have been explosively growing, which allows consumers to access services using various types of mobile devices. The demanding, challenging factors in the mobile network payment gateway security evaluation system includes malware detection, multi‐factor authentication, and fraudulent detection in payment systems. In this paper, <i>Machine Learning‐Assisted Secure Mobile Electronic Payment Framework (ML‐SMEPF)</i> is proposed to detect the presence of malware, authentication issues, and fraud detection in mobile transactions. Here, the Efficient Random Oracle Model is introduced to detect the presence of malware on a host system and multi‐factor authentication challenges posed during mobile payments. Mutual Mobile Authentication model is incorporated with ML‐SMEPF, to identify the type of fraud detection which ensures a safe and secure mobile payment platform. The simulation analysis is performed based on accuracy ratio, security factor, performance, and cost factor proves the reliability of the proposed framework.</p>

telecommunications

J. Chen,X. Peng

DOI: https://doi.org/10.4028/www.scientific.net/AMM.443.561

2013-10-01

Abstract:The payment system of wireless communication is a whole of the various types of software used by the wireless communication network, wireless payment terminals and payment terminals, which together constitute the user applications. Compared to traditional network, wireless communication network is an more open system. According to this, users personal is easier to be stolen in the transfer process and the type of attack has become more diverse and innovative. The article introduces two types attack and solutions. Fishing Wifi is a common means of attack in the wireless network nowadays. Mobile banking is a typical example too. It involves the security of payment in mobile banking which becomes the new problem within e-commerce.

Business,Computer Science

Changwu Wang,Xiuxian Zheng,Yali Si,Wenyuan Liu

2011-01-01

Abstract:Mobile agent is identified as a programming paradigm that allows exible structuring of distributed computation. However, their adoption is largely hampered by the security issues. In this paper, by using environmental key propagation and execution tracing technology, an enhanced-security fair payment protocol based on mobile agent is proposed. This protocol can protect the confidentiality of sensitive payment information carried by mobile agent better than existing ones. At the same time, by ameliorating the using of the theory of cross validation, mobile agent is able to avoid malicious merchant's attack when it validates the product. So the security is enhanced. Moreover, the trusted third patty is offline unless someone is misbehaving or prematurely aborting. © 2011 ISSN 1881-803X.

Zhicong Li,Li Ling

DOI: https://doi.org/10.3969/j.issn.1007-757X.2017.11.017

2017-01-01

Abstract:Mobile payment is one kind of service that allows a user to pay for a consumed commodity or service to use his / her mobile terminal (mobile phone,wearable device,etc.).Mobile payment combines terminal equipment,the Internet,application providers and financial institutions to provide users with monetary payment,fee payment and other financial services.Security is one of the most important performance metrics of mobile payment.Due to its convenience and security,NFC mobile payment method has become more and more favored by the market.This paper mainly discusses the security performance about the implementations of NFC mobile payment based on SE and HCE technology and analyzes their technical characteristics.Moreover,the feasibility of the application of the high-profile TEE technology in NFC mobile payment is also discussed.

Shao Yu,Li Gang,Wang Changhong,Su Jie

2013-01-01

Abstract:The utility model relates to an SMS payment system based on a fingerprint identification mobile phone. The system comprises a mobile phone with a fingerprint characteristic acquisition module and a payment system. The mobile phone and the payment system are interacted through a wireless network by using a respective communication module. The mobile phone comprises a first fingerprint verification module, a payment SMS editing module, a digital signature module and a mobile phone payment control module. The payment system comprises a registration module, an encryption and decryption module, a second fingerprint verification module, a payment module and a main control module. According to the system, double fingerprint identity authentication of the mobile phone and the payment system are employed, combined with digital signature technology, a legal identity of a user is confirmed, a payment SMS and a user fingerprint characteristic are encrypted and decrypted, and the security and confidentiality of SMS payment are improved.

廖旭,凌力

DOI: https://doi.org/10.3969/j.issn.1000-3428.2003.19.043

2003-01-01

Abstract:This paper introduces wireless applications and J2ME security architecture, shows how to exchange sensitive data more securely over wireless links for end-to-end m-commerce applications by using data encryption and SSL protocol.

赵进,袁春风

DOI: https://doi.org/10.3969/j.issn.1000-7024.2004.04.030

2004-01-01

Abstract:An overview of security problems in mobile Agent system is presented. Threats in mobile Agent system include varying attacks to Agents, Agent hosts and communication. The security objectives can be summarized in terms of confidentiality, auth-orization, accountability and availability. Later the security of two dominating mobile Agent programming language: Java and TCL is discussed. A series of measures are also given for countering the identified threats and fulfilling these security objectives.