Abstract
Traditional countermeasures to relay attacks are difficult to implement on mobile devices due to hardware limitations. Establishing proximity of a payment device and terminal is the central notion of most relay attack countermeasures, and mobile devices offer new and exciting possibilities in this area of research. One such possibility is the use of on-board sensors to measure ambient data at both the payment device and terminal, with a comparison made to ascertain whether the device and terminal are in close proximity. This project focuses on the iPhone, specifically the iPhone 6S, and the potential use of its sensors to both establish proximity to a payment terminal and protect Apple Pay against relay attacks. The iPhone contains 12 sensors in total, but constraints introduced by payment schemes mean only 5 were deemed suitable to be used for this study. A series of mock transactions and relay attack attempts are enacted using an iOS application written specifically for this study. Sensor data is recorded, and then analysed to ascertain its accuracy and suitability for both proximity detection and relay attack countermeasures.
Original language | English |
---|---|
Title of host publication | Proceedings of the 3rd ACM International Workshop on Cyber-Physical System Security |
Subtitle of host publication | CPSS '17 |
Place of Publication | New York |
Publisher | ACM |
Pages | 21-32 |
Number of pages | 12 |
ISBN (Electronic) | 978-1-4503-4956-7 |
DOIs | |
Publication status | Published - 2 Apr 2017 |
Event | 3rd ACM Cyber-Physical System Security Workshop (CPSS 2017) - Abu Dhabi, United Arab Emirates Duration: 2 Apr 2017 → 2 Apr 2017 |
Conference
Conference | 3rd ACM Cyber-Physical System Security Workshop (CPSS 2017) |
---|---|
Country/Territory | United Arab Emirates |
City | Abu Dhabi |
Period | 2/04/17 → 2/04/17 |
Keywords
- Relay Attacks
- Apple Pay
- Ambient Sensors