ISG Smart Card and IoT Security Centre

  • Home
  • People
  • Research
    • Research Areas
      • Security in Payment Systems
      • Secure Application Execution
    • Research Projects
    • Research Papers
    • Research Equipment
    • Other Publications
      • Books
      • Downloadable resources
    • Smart Card and IoT Security Centre Summer Projects
  • Teaching
    • MSc Projects and Material
    • Customised Courses
  • Partners
    • Founding Members
    • Members
    • Supporters
    • Valued Past Members
  • Events
    • ISG Open Day 2019
    • SCC Open Day 2017
    • SCC Open Day 2015
    • SCC Open Day 2014
    • ISG Open Day 2016
    • ESORICS 2013
  • News
  • Open Positions
    • PhD Projects

Danushka Jayasinghe

You are here:Home » Danushka Jayasinghe
Danushka Jayasinghe

Danushka Jayasinghe’s first degree was in Computer Networking from the University of Greenwich and he also holds a BTEC HND in Network Engineering and Telecommunication Systems. He completed his MSc in Information Security (with Distinction) at the ISG, Royal Holloway, University of London in 2013. He joined the Smart Card Centre to follow a PhD under the supervision of Professor Konstantinos Markantonakis. His research interests are on modern electronic payment systems with the consideration of security, privacy and efficiency of the underlying payment protocols and platforms. He is also interested in alternative payment schemes other than conventional card-based payment methods including digital cash and anonymous & fair-exchange payment protocols.

Room: 152 Founders West – Tel: 01784 414939
E-mail: danushka.jayasinghe.2012@live.rhul.ac.uk

 

Dan describes his research:

My recent research was mainly focused on EMV Tokenisation and Blockchain Technology. The current architecture specified in EMV tokenisation requires online connectivity during transactions. However, this is not always possible. I investigated the potential of having fully offline tokenised transactions for both consumers and merchants. In order to provide such capability while retaining the security, I proposed an offline contactless mobile payment protocol. The protocol was mechanically formally verified using Scyther and implemented to obtain performance measurements. Researching further on EMV tokenisation, I identified two problem areas that raise concerns about the security of tokenised payments and five associated attack scenarios. I proposed a solution that uses a new dynamic token and a token cryptogram that enhance the security of tokenised contactless mobile payments. The protocol was verified using Scyther. My research on blockchain technology includes an attempt to leverage this technology in the philanthropic sector in order to provide donation services. I first attempted to identify main challenges in the current philanthropic model and proposed a new philanthropic model that addresses the identified challenges. The architecture of the proposed scheme includes a donation platform that lets a donor donate using either Bitcoin or fiat currency, and a SMS based mobile payment system for provisioning donations which can also be used by the beneficiaries in a challenging environment to carry out their day-to-day transactions.

Related Staff

Hafizah Mansor
Sarah Abu Ghazalah
Carlton Shepherd
Robert Lee
Iakovos Gurulian
Assad Umar
Smart Card and IoT Security Centre

Research Projects

  • FutureTPM: Jan. 2018 – Dec. 2020
  • DICE (Data Improved Customer Experience): (Sept 2016-Sept 2019)
  • SHAWN: (Jan 2014-Jun 2016)
  • UK Cards Association: (Dec 2012-Dec 2016)
  • Visa International: (Sept 2015-Sept 2016)
  • Transport for London
  • ITSO

Latest News

  • Upcoming: Smart Card Centre and IoT Security Open Day 2019
  • ISG SCC Workshop 2018
  • Responsible Disclosure: XiongMai uc-httpd 1.0.0 – Buffer Overflow
  • SCC Affiliated Visiting Researcher Award: European Emerging Forensic Scientist 2018
  • PhD Studentship in IoT Threat Modelling

Patent and Commercialisation

Prof Konstantinos Markantonakis, Dr Raja Naeem Akram and Mr James Tapsell, worked successfully into the creation of a patent as a “Technique to record an event and its impact on the data during the lifetime of a data – specific to individual entities represented in the data.” The implementation helps in serving General Data Protection Regulation (GDPR) rights: Right to Access, Right to Forget, and Right to Rectification (with evidence).

RHUL has invested in further business analysis around the commercialisation opportunities of the technique developed at SCC. Furthermore, it has invested in building a commercial grade implementation of an MVP, in order to provide the stepping stone for commercialising the aforementioned patent.

Video

Royal Holloway University of London
Contact Us

Smart Card and IoT Security Centre
Information Security Group,
Royal Holloway, University London, Egham,
Surrey,
TW20 0EX, UK

maps and directions
back up
© Copyright 2019 ISG Smart Card and IoT Security Centre