Cryptology ePrint Archive: Report 2014/918

Web Tap Payment Authentication and Encryption With Zero Customer Effort

Henry Ng

Abstract: We propose a public-key authentication and encryption application that secures the messages between Tap-Card-Pay application, Tap-Card-Pay Systems Corporation, customers, and merchants allowing the customer to complete transactions without requiring the customer to input sensitive information. With authentication and encryption, the application transfers the credit card information from the smartphone's near field communication device onto the merchant webpage. Security weaknesses are also presented to show how to attack this design.

Category / Keywords: Public-Key Cryptography, Digital Signatures, Applications

Date: received 6 Nov 2014, last revised 8 Nov 2014

Contact author: henryng at tapcardpay com

Available format(s): PDF | BibTeX Citation

Version: 20141110:070312 (All versions of this report)

Short URL: ia.cr/2014/918

Discussion forum: Show discussion | Start new discussion