Skip to content Skip to navigation
University of Warwick
  • Study
  • |
  • Research
  • |
  • Business
  • |
  • Alumni
  • |
  • News
  • |
  • About

University of Warwick
Publications service & WRAP

Highlight your research

  • WRAP
    • Home
    • Search WRAP
    • Browse by Warwick Author
    • Browse WRAP by Year
    • Browse WRAP by Subject
    • Browse WRAP by Department
    • Browse WRAP by Funder
    • Browse Theses by Department
  • Publications Service
    • Home
    • Search Publications Service
    • Browse by Warwick Author
    • Browse Publications service by Year
    • Browse Publications service by Subject
    • Browse Publications service by Department
    • Browse Publications service by Funder
  • Help & Advice
University of Warwick

The Library

  • Login
  • Admin

Tap-tap and pay (TTP) : preventing the Mafia attack in NFC payment

Tools
- Tools
+ Tools

Mehrnezhad, Maryam, Hao, Feng and Shahandashti, Siamak F. (2015) Tap-tap and pay (TTP) : preventing the Mafia attack in NFC payment. In: Second International Conference, SSR 2015 , Tokyo, Japan, 15-16 Dec 2015. Published in: Security Standardisation Research, 9497 pp. 21-39. ISBN 9783319271514. ISSN 0302-9743. doi:10.1007/978-3-319-27152-1_2

Research output not available from this repository, contact author.
Official URL: http://dx.doi.org/10.1007/978-3-319-27152-1_2

Request Changes to record.

Abstract

Mobile NFC payment is an emerging industry, estimated to reach $670 billion by 2015. The Mafia attack presents a realistic threat to payment systems including mobile NFC payment. In this attack, a user consciously initiates an NFC payment against a legitimate-looking NFC reader (controlled by the Mafia), not knowing that the reader actually relays the data to a remote legitimate NFC reader to pay for something more expensive. In this paper, we present “Tap-Tap and Pay” (TTP), to effectively prevent the Mafia attack in mobile NFC payment. In TTP, a user initiates an NFC payment by physically tapping her mobile phone against the reader twice in succession. The physical tapping causes transient vibrations at both devices, which can be measured by the embedded accelerometers. Our experiments indicate that the two measurements are closely correlated if they are from the same tapping, and are different if obtained from different tapping events. By comparing the similarity between the two measurements, we can effectively tell apart the Mafia fraud from a legitimate NFC transaction. To evaluate the practical feasibility of this solution, we present a prototype of the TTP system based on a pair of NFC-enabled mobile phones and also conduct a user study. The results suggest that our solution is reliable, fast, easy-to-use and has good potential for practical deployment.

Item Type: Conference Item (Paper)
Divisions: Faculty of Science > Computer Science
Journal or Publication Title: Security Standardisation Research
Publisher: Springer
ISBN: 9783319271514
ISSN: 0302-9743
Book Title: Security Standardisation Research
Official Date: 9 December 2015
Dates:
DateEvent
9 December 2015Available
Volume: 9497
Page Range: pp. 21-39
DOI: 10.1007/978-3-319-27152-1_2
Status: Not Peer Reviewed
Publication Status: Published
Access rights to Published version: Restricted or Subscription Access
Conference Paper Type: Paper
Title of Event: Second International Conference, SSR 2015
Type of Event: Conference
Location of Event: Tokyo, Japan
Date(s) of Event: 15-16 Dec 2015

Request changes or add full text files to a record

Repository staff actions (login required)

View Item View Item
twitter

Email us: wrap@warwick.ac.uk
Contact Details
About Us