A method and system for verifying an NFC enabled user device using a device certificate based on Public Key Infrastructure (PKI). The method involves transmitting the device certificate and an associated URL from the NFC enabled user device to a merchant platform through an NFC controller. The merchant server acquires the device certificate through the associated URL from a Certifying Authority (CA). The acquired client certificate is verified using a device public key. After validating the merchant platform certificate the device is authenticated. The merchant platform certificate is verified by transmitting the certificate to the NFC enabled user device for validation of the merchant certificate. The merchant platform receives the concatenated message and adds it into the message digest the device digital signature and the encrypted payment credentials. If the message digest and a generated digest match the NFC device and merchant platform are authenticated. FIG. 5
展开▼