Title :
Redesigning secure element access control for NFC enabled android smartphones using mobile trusted computing
Author :
Anwar, Waqar ; Lindskog, Dale ; Zavarsky, Pavol ; Ruhl, Ron
Author_Institution :
Inf. Syst. Security Manage., Concordia Univ. Coll. of Alberta, Edmonton, AB, Canada
Abstract :
For mobile payments using Near Field Communication (NFC), a Secure Element (SE) is the preferred place to securely store cardholder data. This paper summarizes shortcomings in Global Platform´s (GP) SE access control specifications and weaknesses in its implementation by the Android Operating System (OS). Moreover, a coherent model for an alternate and secure SE access control is proposed using SE and Mobile Trusted Module (MTM) specifications. This new model is secured by design and can be implemented using existing specifications, technologies and hardware.
Keywords :
authorisation; financial management; mobile computing; near-field communication; operating systems (computers); smart phones; trusted computing; Android operating system; MTM; NFC enabled Android smartphones; global platform; mobile payments; mobile trusted computing; mobile trusted module; near field communication; secure element access control; Access control; Browsers; Hardware; Smart phones; Access Control; Global Platform; Mobile Payment; Mobile Trusted Module (MTM); Near Field Communication; Secure Element; Trusted Execution Environment (TEE); Trusted Platform Module (TPM);
Conference_Titel :
Information Society (i-Society), 2013 International Conference on
