|
|
Bimonthly Since 1986 |
ISSN 1004-9037
|
|
|
|
|
Publication Details |
Edited by: Editorial Board of Journal of Data Acquisition and Processing
P.O. Box 2704, Beijing 100190, P.R. China
Sponsored by: Institute of Computing Technology, CAS & China Computer Federation
Undertaken by: Institute of Computing Technology, CAS
Published by: SCIENCE PRESS, BEIJING, CHINA
Distributed by:
China: All Local Post Offices
|
|
|
|
|
|
|
|
|
|
Abstract
This paper proposes a secure and smart architecture for a Resilient Financial Technology Framework with Transaction security (RFTTS). Proposed framework ensures end to end payment processing and Transaction security. Proposed framework overcomes reverse engineering attacks as it implements Defense-in-Depth strategy. Proposed framework ensures security of data at rest and during the transit. Proposed framework collects digital evidence from the memory of the smartphone, Bank servers and from the networks using digital forensics tools. The proposed framework meets with the PCI-DSS (Payment Cards Industry Data Security Standard) regulation.
Finally, we have successfully implemented our protocol using kotlin language in Android Studio, with two Mobile Payment Applications (MPA) and POS Payment Application (PPA), Elliptic Curve Digital Signature Algorithm (ECDSA) is used and Advanced Encryption Standard (AES) with GCM (Galois/Counter Mode) mode is used for encryption and decryption of Customer Payment Data at MPA and PPA.
Keyword
Resilient Financial Technology Framework with Transaction security (RFTTS); SVO logic; Point-to-Point encryption (P2PE); Scyther tool; PCI-DSS regulation; Transaction Security; Reverse Engineering attacks; Digital Forensics tools; PCI-DSS (Payment Cards Industry Data Security Standard);
PDF Download (click here)
|
|
|
|
|