ISG Smart Card and IoT Security Centre

  • Home
  • People
  • Research
    • Research Areas
      • Security in Payment Systems
      • Secure Application Execution
    • Research Projects
    • Research Papers
    • Research Equipment
    • Other Publications
      • Books
      • Downloadable resources
    • Smart Card and IoT Security Centre Summer Projects
  • Teaching
    • MSc Projects and Material
    • Customised Courses
  • Partners
    • Founding Members
    • Members
    • Supporters
    • Valued Past Members
  • Events
    • ISG Open Day 2019
    • SCC Open Day 2017
    • SCC Open Day 2015
    • SCC Open Day 2014
    • ISG Open Day 2016
    • ESORICS 2013
  • News
  • Open Positions
    • PhD Projects

Security in Payment Systems

You are here:Home » Research » Research Areas » Security in Payment Systems

Amongst our main research interests is the security of payment systems and fair exchange, and anonymity protocols. The importance of various digital cash systems, e.g. Bitcoin, and the concept of blockchains, should not be underestimated. For this reason, we have been conducting research in the fields of Bitcoins and fair exchange protocols. For example, we have examined how Bitcoins can be used to offer optimistic fair exchange and anonymity.  We have also worked in the field of centralised payment systems. This research thread is currently leading us into further research questions related to NFC payments, where we have practically examined the efficient use of mobile phone sensors for avoiding relay attacks. We have also identified a PIN related weakness in the existing EMV payment protocols, and we have proposed countermeasures. We have also been working on enhancing EMV contactless mobile payments using tokenisation, Over-The-Air (OTA) and mobile phone ambient sensors.  More recently we have also examined the security of mobile payments in relation to tokenisation and secure elements. We have also proposed payment systems suitable for use in offline environments.

Smart Card and IoT Security Centre

Research Projects

  • FutureTPM: Jan. 2018 – Dec. 2020
  • DICE (Data Improved Customer Experience): (Sept 2016-Sept 2019)
  • SHAWN: (Jan 2014-Jun 2016)
  • UK Cards Association: (Dec 2012-Dec 2016)
  • Visa International: (Sept 2015-Sept 2016)
  • Transport for London
  • ITSO

Latest News

  • Upcoming: Smart Card Centre and IoT Security Open Day 2019
  • ISG SCC Workshop 2018
  • Responsible Disclosure: XiongMai uc-httpd 1.0.0 – Buffer Overflow
  • SCC Affiliated Visiting Researcher Award: European Emerging Forensic Scientist 2018
  • PhD Studentship in IoT Threat Modelling

Patent and Commercialisation

Prof Konstantinos Markantonakis, Dr Raja Naeem Akram and Mr James Tapsell, worked successfully into the creation of a patent as a “Technique to record an event and its impact on the data during the lifetime of a data – specific to individual entities represented in the data.” The implementation helps in serving General Data Protection Regulation (GDPR) rights: Right to Access, Right to Forget, and Right to Rectification (with evidence).

RHUL has invested in further business analysis around the commercialisation opportunities of the technique developed at SCC. Furthermore, it has invested in building a commercial grade implementation of an MVP, in order to provide the stepping stone for commercialising the aforementioned patent.

Video

Royal Holloway University of London
Contact Us

Smart Card and IoT Security Centre
Information Security Group,
Royal Holloway, University London, Egham,
Surrey,
TW20 0EX, UK

maps and directions
back up
© Copyright 2019 ISG Smart Card and IoT Security Centre