Title :
An Authentication Model Involving Trusted Third Party for M-Commerce
Author :
Song, Mingqiu ; Hu, Xiangpei ; Li, Jiahua ; Deng, Guishi
Author_Institution :
Dalian Univ. of Technol., Dalian
Abstract :
In this paper, a new authentication model for M-Commerce is proposed. The protocol has three novel characteristics as opposed to the existing protocols involving trusted third party in M-commerce. Firstly, it is minimal and can reduce the requirement of computational resources for mobile terminals. Secondly, it is manageable. The third party just provides security authentication, credit standing and session key for both the buyer and the seller, whereas it doesn´t provide buyer´s private payment information such as credit-card / debit-card information. In this way, it can avoid large scale of identity theft effectively. Thirdly, it can meet SSO of buyers. Its correctness is verified by using CSP/FDR. The checking result shows that this new protocol model satisfies the authentication and key distribution properties that it claimed.
Keywords :
authorisation; credit transactions; cryptography; data privacy; electronic commerce; mobile computing; M-commerce; buyer private payment information; computational resources; credit card information; credit standing; debit card information; identity theft; key distribution; mobile terminals; protocol model; security authentication; session key; trusted third party; Authentication; Authorization; Communication system security; Credit cards; Cryptography; Information security; Large-scale systems; Mobile computing; Protocols; Systems engineering and theory;
Conference_Titel :
Management of Mobile Business, 2007. ICMB 2007. International Conference on the
Conference_Location :
Toronto, Ont.
Print_ISBN :
0-7695-2803-1
Electronic_ISBN :
0-7695-2803-1
DOI :
10.1109/ICMB.2007.10
