Consideration of a Mobile Payment System using Endorsement in MANETs for a Disaster Area

Consideration of a Mobile Payment System using Endorsement in MANETs for a Disaster Area

Ojetunde Babatunde

Nara Institute of Science and Technology

Division of Foundations of Software

Introduction (1/2)

One of the major problems in disaster areas

People have no cash at hand to buy necessary amenities

2

Introduction (2/2) Due to non-availability of network infrastructure People have no access to

Their bank account Electronic transaction

An infrastructureless Payment System is required3

Many researches are conducted on Mobile Payment Systems

Related Work on Payment System

Online service1

Computation overhead1

Privacy of users1

Compensate users2

Work without third party vendor2

[1] Hu, Z., Liu, Y., Hu, X., and Li, J.: Anonymous Micropayments Authentication (AMA) in Mobile Data Network, IEEE INFOCOM 2004, Twenty-third Annual Joint Conference of the IEEE Computer and Communications Societies Issue: 7 March (2004)

[2] Chitra Kiran, N., and Kumar, G. N.: Implication of Secure Micropayment System Using Process Oriented Structural Design by Hash chain in Mobile Network, IJCSI International Journal of Computer Science, Issues, Vol. 9, Issue 1, No 2, January (2012)

No mobile payment system developed for disaster areas 4

Main Contributions to Mobile Payment System

•Dynamic topology

•Disconnected network

•It takes two days to communicate with the bank

MANETs Issues

•Authentication issues

•Impersonation

•Double spending

•Resetting phone

Fraudulent Transactions

•Money is deducted online real-time through direct access to bank

No need for merchants to

trust users

Mobile payment system for disaster areas Need no connection to the

bank to work

Avoid fraud Users account balance is

checked by surrounding mobile nodes

Guarantee payment of each transaction by endorsing

Challenges Contributions

5

Customer

Merchant

Bank/MP Service provider

Customer

Merchant

Send transaction order

Forward payment information

Deduct money from the customer’s

account

Supply the item to the customer

Merchant and customer agree to start transaction

6

Normal Transaction Without Disaster (1/2)

Normal Transaction Without Disaster (2/2) This method is not suitable in a disaster area due

to the challenges mentioned above

We propose an endorsement based mobile payment system for disaster areas

7

Introduction Endorsement Based Mobile Payment System Schemes to Prevent Attacks Conclusion

Outline

8

All users are required to register with a Bank in advance

The Bank issues digital certificates to all users at registration

Merchant Customer Endorser Bank

We assume that all users except the bank are in the disaster area

Endorsement Based Mobile Payment System (1/8)

Registration process

9


Merchant Customer A

Send transaction order “ I want to buy an apple from you”

Merchant

Verify the customer using pre-digitally signed picture

Customer A

10

How to check the Identity of a Customer A user sends digitally signed picture to merchant

Merchant checks and compares digitally signed picture with customer’s appearance

Merchant confirms the digital signature of the bank

Another kind of biometric authentication can also be used for verification

11

Merchant Bank/MP Service provider

Forwards the forms to the Bank“Apple cost $2”

It takes at least two days for a message to get to Bank

No means of confirming customer’s account balance Network infrastructure is not available Customer collects his/her money before the bank deducts

money for items purchase

Bank will not have money to deduct from customer Merchant will lose money

Endorsement Based Mobile Payment System (3/8)Motivation for Endorsement

12

To prevent this and allow transaction in a disaster area We introduce endorsement

Merchant Endorsers

Create and forward Billing Form“Customer A wants to buy $2 apple. Do

you guarantee the transaction?”


Merchant forwards the billing form to endorsers To obtain guarantee that the transaction can be paid by

endorsers in case customer fails to pay

We assume that endorsers are available during transaction

13

A person agrees to pay for another person, who fails to pay for an item.

The agreement is made before a disaster happens

Endorsement

14

Many Challenges of Endorsement Based Payment System 1

Endorsers

What Happen?

If endorsers are not available Frequent change in topology of

networks Transaction cannot be successfully

completed without an endorser

A customer can have more than one endorser

If one endorser is not available another endorser can endorse Reduce endorser’s liability

Endorsers are rewarded for successful transaction15

MerchantEndorsers

Authenticate the Merchant and Create endorsement form

“I guaranteed customer A purchase of $2 apple”


Endorsers send endorsement form back to the merchant

16

Merchant Bank/MP Service provider

Forward the forms to the Bank

“Customer A bought an apple at $2”

It takes at least two days for a message to get to Bank


Send transaction confirmation to customer and endorsers

Deliver items to customer

Merchant Customer A

Endorsers 17

Merchant


Bank pays merchant“Pay merchant $2”

Customer A


Deduct responding money from customer’s account“Deduct $2 from customer A’s account”

The bank authenticates all users and checks for consistency of messages

18


Bank/MP Service provider Endorsers

Deduct money from endorsers“Deduct $2 from endorsers”

Send acknowledgement to Merchant, Customer and Endorser

Customer A

Merchant

Endorser may have no money or collude with a customer Mechanism to check endorser balance

We assume that some endorsers will pay

However, if there is no money in customer’s account

19


Introduction Endorsement Based Mobile Payment System Schemes to Prevent Attacks Conclusion

Outline

20

Customer and endorsers may carry out Reset and Recovery attacks

A reset and recovery is when a user, Backups all data Resets phone to default state Recovers all data already used

Reset attack cannot be detected if there is no network connection

We assume that, Most but not all users are trustable Most of the users do not change location often

Many Challenges of Endorsement Based Payment System 2

21

Reset and Recovery Attack

Customer and endorsers can collude to do fraud Customer A has no money Endorsers have no money

There is no means of confirming endorsers account balance

Endorsers will endorse many transactions without paying

22

Many Challenges of Endorsement Based Payment System 3Collusion Attack

Monitoring Based on Location Information

• Proof user are in a particular location…

One-time Session Token• Prevent user from using same message

E-coin• Confirm amount in user account

Blind Signature

• Ensure anonymity of message

Schemes to Prevent Attacks

23

Preventing Collusion and Checking Balance

Bank creates unique tokens called e-coin

Users account balance is divided into e-coins of same amount of money

Customer ¥10,000 eT1, eT2, eT3, ….. eT10

E-coin is limited to endorsers

The e-coin contains Customer ID E-coin identifier GPS coordinates HELLO message interval Monitoring customer signature

Only bank can encode the ID and identifier

Endorser attaches e-coin to endorsement

Bank deletes e-coin from endorser account if a customer defaults

If a customer does not default, the bank reissues e-coin with new identifier

Endorsement without e-coin is rejected

E-coin

24

Preventing Reset Attack (1/2)

User

User

Custome

r

User

User User User

User

Each user constantly exchanges HELLO message to show their respective location

HELLO

HELLO

HELLOHELLO

HELLO:Customer ID

GPS Coordinates

HELLO

HELLO HELLO:

If a user stays in a location for a long time Other users monitor their

transactions

If a user fails to broadcast HELLO messages Not in range Lost of connection

If a user phone is lost or turned off Cannot provide collected

HELLO messages Find endorsers Provide endorser’s confirmation

GPS coordinates in HELLO message constantly replace the e-coin GPS coordinates

Intervals between HELLO messages are added to e-coin

Monitoring Based on Location

25

Allows a person to get a message signed by another party without revealing the message

Original Message Envelope containing Message and Carbon paper

Signature

Envelope is signed (by signer)

Message has now been signed

Signature

Sent to Signer

Envelope Removed

Binding Process

There is an existing research on how to get digital blind signature

Blind Signature Scheme

Preventing Reset Attack (2/2)

26

The techniques stated above are adopted to prevent attacks Reset and Recovery attacks Collusion attack

A Customer or endorsers Blinds the message Broadcasts the message to other users

Monitoring customer Checks GPS coordinates and HELLO message intervals Checks e-coin attached to the endorsement message Creates one-time session token and appends to message Signs message with his/her digital signature

Preventing Attacks

27

Conclusion Proposed a new mobile payment system by

Adopting infrastructureless mobile ad-hoc networks (MANETs)

Allowing users to purchase amenities in disaster areas Providing secure transactions

Users authenticates each other without a network connection a third party

Users anonymity is protect by using user’s nickname Ensures confidentiality of messages and transaction Ensures integrity Reliability of transaction messages

The proposed system suits the limitation of mobile payment transaction in a disaster area

28