TIIS (Çѱ¹ÀÎÅͳÝÁ¤º¸ÇÐȸ)
Current Result Document :
| ÇѱÛÁ¦¸ñ(Korean Title) |
Cryptographically-Generated Virtual Credit Card Number for Secure Card-Not-Present Transactions |
| ¿µ¹®Á¦¸ñ(English Title) |
Cryptographically-Generated Virtual Credit Card Number for Secure Card-Not-Present Transactions |
| ÀúÀÚ(Author) |
Chan-Ho Park
Chang-Seop Park
|
| ¿ø¹®¼ö·Ïó(Citation) |
VOL 10 NO. 04 PP. 1864 ~ 1876 (2016. 04) |
Çѱ۳»¿ë
(Korean Abstract) |
|
¿µ¹®³»¿ë
(English Abstract) |
Card-Not-Present (CNP) transactions taking place remotely over the Internet are becoming more prevalent. Cardholder authentication should be provided to prevent the CNP fraud resulting from the theft of stored credit card numbers. To address the security problems associated with CNP transactions, the use of a virtual card number derived from the transaction details for the payment has been proposed, instead of the real card number. Since all of the virtual card number schemes proposed so far are based on a password shared between the cardholder and card issuer, transaction disputes due to the malicious behavior of one of the parties involved in the transaction cannot be resolved. In this paper, a new virtual card number scheme is proposed, which is associated with the cardholder¡¯s public key for signature verification. It provides strong cardholder authentication and non-repudiation of the transaction without deploying a public-key infrastructure, so that the transaction dispute can be easily resolved. The proposed scheme is analyzed in terms of its security and usability, and compared with the previously proposed schemes.
|
| Å°¿öµå(Keyword) |
CNP Transaction
CNP Fraud
Cardholder Authentication
Non-Repudiation
|
| ÆÄÀÏ÷ºÎ |
PDF ´Ù¿î·Îµå
|
