A mobile trusted computing architecture for a near field communication ecosystem.
ABSTRACT Near Field Communication (NFC) is a wireless communication technology to transfer data over distances of up to 10 cm. With this technology, a mobile device is capable of emulating smartcards for access, payment or loyalty. The benefits of a mobile device with NFC over an ordinary smartcard are the interaction and network capabilities of such a device. Thus there is the possibility to distributed smartcard applications through a data link to a mobile device, instead of issuing physical cards. The goal of this paper is to present a platform to securely manage smartcard applications in such NFC devices. Issuing of application in NFC devices is different in several stages compared to ordinary smartcards. With regard to security, there are different processes to be protected and new attack scenarios. In this paper functional aspects of such an architecture and the rolls of the instances participating are discussed. Although NFC allows a smooth interaction for the consumer, the infrastructure behind the scene is complex and requires the cooperation on different levels to ensure interoperability and of a thriving contactless scheme to be deployed. According to the concept, three different prototypes have been implemented to remotely manage the smartcard applications.
SourceAvailable from: Pardis Pourghomi
Conference Paper: Ecosystem scenarios for cloud-based NFC payments[Show abstract] [Hide abstract]
ABSTRACT: As a short range wireless communication technology which consists of a set of standards for smartphones and similar devices, Near Field Communication (NFC) provides wide range of services from payment and access cards to loyalty applications. NFC facilitates the integration of such services into a single mobile device. Having several parties involved in NFC services and not having a common standard for it has raised a major effect on the adoption of this technology within developing industries. This is because all parties are claiming to have access to client's information such as bank account details. Consequently, payment application personalization, ownership and management as well as NFC ecosystem architecture have created several security issues that could be exploitable by attackers. Since NFC technology has lately emerged, there are not much academic sources available yet. As a result, there are plenty of confusions regarding NFC implementation business case options. This paper presents the concept of NFC ecosystem and discusses the previously proposed NFC cloud wallet model . Moreover, further exploration of this model is carried out by considering some implementation assumptions in order to define a clear NFC ecosystem model.Proceedings of the Fifth International Conference on Management of Emergent Digital EcoSystems; 10/2013
[Show abstract] [Hide abstract]
ABSTRACT: Near Field Communication (NFC) as a promising short range wireless communication technology facilitates mobile phone usage of billions of people throughout the world that offers diverse services ranging from payment and loyalty applications to access keys for offices and houses. Eventually NFC technology integrates all such services into one single mobile phone. NFC technology has emerged lately, and consequently not much academic source is available yet. On the contrary, due to its promising business case options, there will be an increasing amount of work to be studied in the very close future. This paper presents the concept of NFC technology in a holistic approach with different perspectives, including communication essentials with standards, ecosystem and business issues, applications, and security issues. Open research areas and further recommended studies in terms of academic and business point of view are also explored and discussed at the end of each major subject’s subsection. This comprehensive survey will be a valuable guide for researchers and academicians as well as for business world interested in NFC technology.Wireless Personal Communications 08/2013; 71(3). DOI:10.1007/s11277-012-0935-5 · 0.98 Impact Factor
Conference Paper: Trusted Platform Module for Smart Cards[Show abstract] [Hide abstract]
ABSTRACT: Near Field Communication (NFC)-based mobile phone services offer a lifeline to the under-appreciated multiapplication smart card initiative. The initiative could effectively replace heavy wallets full of smart cards for mundane tasks. However, the issue of the deployment model still lingers on. Possible approaches include, but are not restricted to, the User Centric Smart card Ownership Model (UCOM), GlobalPlatform Consumer Centric Model, and Trusted Service Manager (TSM). In addition, multiapplication smart card architecture can be a GlobalPlatform Trusted Execution Environment (TEE) and/or User Centric Tamper-Resistant Device (UCTD), which provide cross-device security and privacy preservation platforms to their users. In the multiapplication smart card environment, there might not be a prior off-card trusted relationship between a smart card and an application provider. Therefore, as a possible solution to overcome the absence of prior trusted relationships, this paper proposes the Trusted Platform Manager (TPM) concept for smart cards (embedded devices) that can act as a point of reference for establishing the necessary trust between the device and an application provider, and among applications.6th IFIP International Conference on New Technologies, Mobility and Security (NTMS), Dubai; 03/2014