• DocumentCode
    26658
  • Title

    Be Prepared: The EMV Preplay Attack

  • Author

    Bond, Mike ; Choudary, Marios O. ; Murdoch, Steven J. ; Skorobogatov, Sergei ; Anderson, Ross

  • Author_Institution
    Univ. of Cambridge, Cambridge, UK
  • Volume
    13
  • Issue
    2
  • fYear
    2015
  • fDate
    Mar.-Apr. 2015
  • Firstpage
    56
  • Lastpage
    64
  • Abstract
    The leading system for smart card-based payments worldwide, EMV (which stands for Europay, MasterCard, and Visa), is widely deployed in Europe and is starting to be introduced in the US as well. Despite this wide deployment, a series of significant vulnerabilities make EMV vulnerable to the preplay attack. Specifically, weak and defective random number generators and various protocol failures leave the system open to fraud at scale.
  • Keywords
    credit transactions; fraud; random number generation; smart cards; EMV preplay attack; EMV vulnerabilities; Europay, MasterCard, and Visa; US; fraud; protocol failures; random number generators; smart card-based payments; Authentication; Computer security; Credit cards; Cryptography; Online banking; Protocols; Radiation detectors; Smart cards; EMV; POS; chip and PIN; payment systems; privacy; random number generators; security; security protocols; smart card;
  • fLanguage
    English
  • Journal_Title
    Security & Privacy, IEEE
  • Publisher
    ieee
  • ISSN
    1540-7993
  • Type

    jour

  • DOI
    10.1109/MSP.2015.24
  • Filename
    7085649
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=26658