Technical feasibility of context-aware passive payment authorization for physical points of sale
Adam Wójtowicz , Jacek Chmielewski
AbstractIn this work, the technical feasibility of passive secure payments for brick-and-mortar points of sale is analyzed. The core element of the proposed approach is a new application for context-based risk and trust assessment. It allows for dynamic selection of payment authorization methods that constitutes accurate trade-off between security and convenience. Particularly, the payments can be performed and authorized in the background using biometric means (face recognition), without user’s explicit action. Generally, in the proposed approach, multiple devices are used for authorization: mobile, wearables, or stationary, client’s or seller’s, and multiple authorization methods are used: biometric, knowledge-based, and possession-based. The reported research includes requirement identification, novel architecture and protocol proposition, proof-of-concept prototype system deployment, and evaluation-based lessons learned. The research confirms that with the proposed approach, it is possible to take advantage of client-seller trust dynamism to simplify the payment process while maintaining the security level.
|Journal series||Personal and Ubiquitous Computing, ISSN 1617-4909, (A 30 pkt)|
|Publication size in sheets||0.6|
|Keywords in English||Payment authorization, Passive payments, Deviceless payments, Context-aware authorization, Authorization rules, Biometric identification,|
|ASJC Classification||; ;|
|Score||= 30.0, 27-04-2020, ArticleFromJournal|
|Publication indicators||= 1; : 2016 = 1.651; : 2017 = 1.924 (2) - 2017=2.215 (5)|
|Citation count*||3 (2020-06-26)|
* presented citation count is obtained through Internet information analysis and it is close to the number calculated by the Publish or Perish system.