A Secure and Reliable Architecture for User Authentication Through OTP in Mobile Payment System

Abstract

Listen

Translate article

AbstractThe technological innovations in mobile payment systems have brought a revolutionary change in the way online payments are carried out. The availability of robust and secure infrastructure has further motivated users to execute financial transactions through handheld devices like smartphones and tablets. Determinants like low cost and powerful devices, affordable Internet plans and simplified payment interfaces have also contributed to adoption of mobile payment systems and made it the preferred payment option among mobile users. However, the aspects critical to mobile payment processing like transaction security, data privacy and network reliability keep raising concerns among mobile users where the users always remain worried about cyber-attacks like eavesdropping, denial of service, viruses, phishing, etc., and performance issues like network availability, low bandwidth and so on, act as a challenge and hindrance for mobile users to trust mobile payment systems and thus limit their usage. Novel mobile payment architectures, models and security techniques have been proposed in recent past to resolve these issues where each approach focused on providing solutions to a specific issues. This paper proposes a new architecture and presents a novel security approach for mobile payments system. The proposed architecture clearly defines the role and responsibilities of each participating entity and takes care of all the concerning issues in mobile payment system. Multi-factor authorization security approach based on hashing and cryptography has been adopted which adds an extra security layer before the transaction gets executed and it generates a unique OTP always. The proposed approach is implemented as a Web application and validated through experimentation. Lastly, the results are empirically analyzed and presented.KeywordsMobile paymentSecurity techniquesOTPArchitecture