USENIX Technical Program - Abstract - Smartcard 99
Risks and Potentials of Using EMV for Internet Payments
Els Van Herreweghen, IBM Zurich Research Laboratory; Uta Wille, Jelmoli Information Systems
Existing payment smartcards developed for traditional
point-of-sale transactions are being considered for use in Internet transactions.
Such solutions have been suggested as alternatives to using payment protocols
more specifically designed for Internet payments (such as SET ) but often lacking smartcard
support. In this paper, we analyze EMVâ96 ,
a representative example of an existing payment smartcard specification.
We investigate which security requirements for an Internet payment system
can and cannot be met when using EMV for Internet payments. We suggest
possible modifications that can enhance the security of an Internet payment
scheme based on EMV.
- View the full text of this paper in
HTML form and
- If you need the latest Adobe Acrobat Reader, you can download it from Adobe's site.
- To become a USENIX Member, please see our Membership Information.