On the Security of the EMV Secure Messaging API (Extended Abstract)

机译：关于EMV安全消息传递API的安全性（扩展摘要）

获取原文

页面导航

摘要
著录项
相似文献
相关主题

摘要

We present new attacks against the EMV financial transaction security system (known in Europe as "Chip and PIN"), specifically on the back-end API support for sending secure messages to EMV smartcards. EMV is the new electronic payment system designed by VISA and Mastercard and widely deployed throughout Europe in the last 12 months. It aims to eventually supersede magnetic-stripe systems. Customers carry smartcards which, upon payment, engage in cryptographic protocols to authenticate themselves to their issuing bank. At the issuing bank (the "back end" for short), the Hardware Security Modules (HSMs), which are tasked with PIN storage and verification for ATM networks, have been extended to provide new EMV security functionality. The HSMs now authenticate and manage the massive card base, ensuring security in an environment particularly wary of insider attack.

机译：我们提出了针对EMV金融交易安全系统（在欧洲称为“芯片和PIN”）的新攻击，特别是在后端API支持上，该攻击用于向EMV智能卡发送安全消息。 EMV是由VISA和万事达卡（Mastercard）设计的新型电子支付系统，在过去的12个月中已在整个欧洲广泛部署。它旨在最终取代磁条系统。客户携带智能卡，该智能卡在付款时会参与加密协议，以向发卡行进行身份验证。在发卡行（简称“后端”），已扩展了用于PIN存储和ATM网络验证的硬件安全模块（HSM），以提供新的EMV安全功能。现在，HSM对大型卡基础进行身份验证和管理，以确保在特别警惕内部攻击的环境中的安全性。

著录项

来源
《International security protocols workshop》|2011年|p.147-149|共3页
会议地点
作者
Ben Adida; Mike Bond; Jolyon Clulow; Amerson Lin; Ross Anderson; Ronald L. Rivest;
展开▼
作者单位

展开▼
会议组织
原文格式 PDF
正文语种
中图分类安全保密;
关键词
入库时间 2022-08-26 15:04:41

相似文献

外文文献
中文文献
专利

1. Pro ASP.NET web API security: securing ASP.NET web API [J] . Rafael Corchuelo Computing reviews . 2013,第11期

机译：Pro ASP.NET Web API安全性：保护ASP.NET Web API
2. Towards more secure EMV purchase transactions: A new security protocol formally analyzed by the Scyther tool [J] . El Madhoun Nour, Bertin Emmanuel, Badra Mohamad, Annals of telecommunications . 2021,第3a4期

机译：走向更安全的EMV购买事务：SCYTHER工具正式分析的新安全协议
3. Vehicular networks with security and trust management solutions: proposed secured message exchange via blockchain technology [J] . Malik Nisha, Nanda Priyadarsi, He Xiangjian, Wireless Networks . 2020,第6期

机译：具有安全性和信任管理解决方案的车辆网络：通过区块链技术提出安全消息交换
4. On the Security of the EMV Secure Messaging API (Extended Abstract) [C] . Ben Adida, Mike Bond, Jolyon Clulow, International Workshop on Security Protocols . 2010

机译：关于EMV安全消息传递API的安全性（扩展摘要）
5. Usable Security and Privacy for Secure Messaging Applications [D] . Vaziripour, Elham. 2018

机译：安全消息应用程序的可用安全性和隐私
6. Foundational Security Principles for Medical Application Platforms (Extended Abstract) [O] . Eugene Y. Vasserman, John Hatcliff -1

机译：医疗应用平台的基本安全原则（扩展摘要）
7. ABSTRACT Various body parts or organs can be analysed to identify the different diseases in the human body. Fingernail analysis is one of the ways to identify disease in the human body. Nails are the body part which are farthest from the heart and therefore receive oxygen at last. As a result the nails are the first who show the symptoms of a disease in the human body. Fingernails can be easily captured for diagnosis and there are no heavy equipment or no specific conditions required to use nail image for disease diagnosis, like in other tests and scanning processes. Human nails deliver beneficial information about complaints or any nutritive imbalances in the human body depending upon their shape, texture and colour. In human beings, numerous systemic and skin diseases can be easily analyzed through careful examination of nails of both the limbs. A lot of nail illnesses have been found to be primary signs of numerous underlying systemic illnesses. The colour, texture or shape changes in nails are signs of many diseases mainly affecting nails. Considering all these properties of nails a system is proposed that uses digital image processing (DIP) methods for identifying such changes in the human nail to get more precise results and predict numerous diseases effortlessly. With the emerging Internet of Things (IOT) concept the generated report is made available remotely, this will help users to reduce transportation efforts. As the system has to deal with large and private data, the security of data must be ensured. To keep the data confidential, the Blockchain concept which is one of the most emerging concepts in the field of data management is used. The paper contains the implementation of the digital image processing for feature extraction of nail images, usage of IOT (ThingSpeak cloud) for data storage and implementation of Blockchain to keep the system secured and theft free. KEY WORDS: Int ernet of thin gs (IOT), Image proc essin g, Thin gSpeak, RG B vavalues, Mean pi xel vavalues, Bloc kchain , Hash key. Disease Diagnostic System: Abnormalities in Human Nail [O] . Pranav S. Wazarkar 2020

机译：摘要的各个身体部位或器官可被分析以识别在人体内的不同的疾病。指甲分析来识别人体疾病的方法之一。指甲是身体一部分是离心脏最远，因此在最后接受氧气。作为结果，指甲是第一谁表现出人体疾病的症状。指甲可以容易地捕获用于诊断和没有重装或需要使用指甲图像用于疾病诊断，比如在其他测试和扫描过程没有特定的条件。人的指甲提供有关投诉或取决于它们的形状，纹理和色彩在人体内的任何营养失衡有益的信息。在人类中，许多全身性皮肤疾病是可以很容易地通过两个四肢指甲的仔细检查分析。很多指甲病已发现众多潜在系统性疾病的主要症状。在指甲的颜色，质地和形状的变化是许多疾病主要影响指甲的迹象。考虑到所有的指甲的这些性能的系统被提出，用于识别人指甲这样的变化以获得更精确的结果，并毫不费力预测许多疾病用途的数字图像处理（DIP）方法。随着物联网（IOT）的概念，新兴的互联网将生成的报告提供远程，这将帮助用户降低运输工作。由于系统必须处理大量的私人数据，数据的安全性必须得到保证。为了保持数据的机密性，使用Blockchain的概念，它是在数据管理领域的大多数新兴的概念之一。本文包含了数字图像处理的指甲图像，IOT（ThingSpeak云）的使用为数据存储和执行Blockchain的特征提取的执行，以保持固定的系统和盗窃免费。关键词：诠释薄GS（IOT），图像的ERNET PROC essin克，薄型gSpeak，RG乙vavalues，平均数PI XEL vavalues，阵营kchain，哈希密钥。疾病诊断系统：在人类指甲异常
8. Standard Organization for Specifying Abstract Interfaces for the SMMS (Secure Military Message System) Application. [R] . Quinn, J. T., Bull, A. R., Evans, A. L. 1989

机译：为smms（安全军事消息系统）应用指定抽象接口的标准组织。

On the Security of the EMV Secure Messaging API (Extended Abstract)

摘要

著录项

相似文献

相关主题

期刊订阅