Mobile Payment Security - Columbia Business SchoolPDF) FINAL Hadi... · NFC Forum Near Field...

4/9/2010

1

Macroeconomics of Mobile Money Columbia University Apr. 2, 2010

Mobile Payment SecurityWhat it means and how to implement it

Hadi Nahari

Principal Security & Mobile Architect

PayPal, Inc. an eBay Company

Columbia University, NYC

HADI’S BACKGROUND

• Security, cryptography, complex system analysis and design, distributed computing

• Identity management, digital asset protection, vulnerability assessment & threat analysis (VATA)

• Security and assurance certifications (FIPS, CC, NSA)

• Theory of programming languages, semantics of security, formal and functional languages

• Operating systems security (SVR4, Linux, Symbian, Nucleus, MultOS, etc.)

• Enterprise and embedded environments (Netscape Communications, Sun Microsystems, U.S. Government, Motorola, MontaVista, eBay, PayPal, etc.)

The Macroeconomics of Mobile Money, Apr. 2nd 2010 4/9/2010 2

4/9/2010

2


AGENDA

• Perspective

• Requirements

• Conclusion



AGENDA

• Perspective

• Requirements

• Conclusion


4/9/2010

3


FACTS ABOUT MOBILE

• Internet access (all means)

• > 1 billion/day

• Cellular networks’ access

• ~ 4 billion/day

• Mobile is the only digital system many people will ever encounter



USECASE PROLIFERATION


From Back Pocket to Front Pocket

From Paper to Virtual Tickets

From Paper to Virtual Coupons

From Mass to Personalized

From Pre Sale to in Store

4/9/2010

4


MOBILE IDENTITY* CRISIS

• Complex landscape

• Identity proliferation

• Many players

• Neither trusts others

• Heterogeneous identityenvironment


Retailers

Banks

Card Associations

Mobile Network Operators

Regulators

Chip Vendors

TSMTrusted

Svc. Mgr.

Device Manufacturers


MANY STANDARDIZATION* BODIES

Global Platform

– Smart Card Infrastructure

OMTP Open Mobile Terminal Platform

– Usability, Economic Security

OMA Open Mobile Alliance

– Decoupling, Interoperability

NFC Forum Near Field Communication Forum

– NFC, Proximity

ETSI European Telecommunications Standards Institute

– Telecom Integration


http://www.bestbuy.com/site/olspage.jsp?skuId=9267116&type=product&id=1218071904233




http://www.omtp.org/index.html

4/9/2010

5


AND…THE NETWORKS…

• Isolated from other systems (e.g. the Internet)

• Fundamentally different design-assumptions

• Applications must know how the network operates!



USAGE PATTERNS (UNITED STATES)


4/9/2010

6


USAGE PATTERNS (INT’L)



TRAFFIC SHARE


4/9/2010

7


WHAT’S A PLATFORM?

Marc Andreessen

A "platform" is a system that can be programmed and therefore customized by outside developers and in that way, adapted to countless needs and niches that the platform's original developers could not have possibly contemplated, much less had time to accommodate.

So, platform is open by definition. How open?

• Two models


the “we know what’s good for you” model

the “you’re not evil, are’ya?” model


AGENDA

• perspective

• Requirements

• Conclusion


4/9/2010

8


MOBILE APP-WAREHOUSING ECOSYSTEM


Portal

App. N\

App. 0

Development

SDK. N

SDK. 1

SDK. 0

App. 1

App. N\

App. N

App. N\

App. N\

App. M

Deployment

Devices

App. N

App. 0App. 1


IT’S CLEAR THAT…

• The mobile app ecosystem

• Is distributed

• Is open by definition

• The development & distribution model is evolving

• Single application warehouse (Market, AppStore, etc.)

• Compound application warehouse (WAC, etc.)


http://images.google.com/imgres?imgurl=http://gizmodo.com/assets/resources/2007/10/PalmLogo.png&imgrefurl=http://gizmodo.com/gadgets/palm/linux-based-palm-os-pushed-out-to-end-of-year-08-306258.php&h=481&w=478&sz=105&hl=en&start=6&sig2=hx5BjhFOVnXCKSZ40KvYZg&um=1&usg=__UOaIMM7b-hUgbTKHnEXmbhKNc6Q=&tbnid=nqu5VZh_qg4UjM:&tbnh=129&tbnw=128&ei=214OSZ3xJYy6sAPg-eiIDw&prev=/images?q=Palm+logo&um=1&hl=en

http://images.google.com/imgres?imgurl=http://m.projectjgb.com/logos/2008/03/12/9-rim_logo_blue.jpg&imgrefurl=http://projectjgb.com/home/&h=261&w=600&sz=66&hl=en&start=1&sig2=JhPWC--Knibc0Be1NeZYQw&um=1&usg=__JG7ympMM1WHGQlgRYuz69j0soro=&tbnid=rn-2z4I3f_DkdM:&tbnh=59&tbnw=135&ei=kl4OScTeMI70sAOmyuGJDw&prev=/images?q=RIM+logo&um=1&hl=en

4/9/2010

9


SECURITY BOUNDARIES


MNO

Financial

Portal

App. N

App. 0

App. 1

Retailer

Regulator


HOW MUCH SECURITY?

• Security proportionate to risk

• Simple, flexible, usable


$0

Usable SecurityNo Security

Security Cost

Mil-Aero Security

$$

http://images.google.com/imgres?imgurl=http://gizmodo.com/assets/resources/2007/10/PalmLogo.png&imgrefurl=http://gizmodo.com/gadgets/palm/linux-based-palm-os-pushed-out-to-end-of-year-08-306258.php&h=481&w=478&sz=105&hl=en&start=6&sig2=hx5BjhFOVnXCKSZ40KvYZg&um=1&usg=__UOaIMM7b-hUgbTKHnEXmbhKNc6Q=&tbnid=nqu5VZh_qg4UjM:&tbnh=129&tbnw=128&ei=214OSZ3xJYy6sAPg-eiIDw&prev=/images?q=Palm+logo&um=1&hl=en

http://images.google.com/imgres?imgurl=http://m.projectjgb.com/logos/2008/03/12/9-rim_logo_blue.jpg&imgrefurl=http://projectjgb.com/home/&h=261&w=600&sz=66&hl=en&start=1&sig2=JhPWC--Knibc0Be1NeZYQw&um=1&usg=__JG7ympMM1WHGQlgRYuz69j0soro=&tbnid=rn-2z4I3f_DkdM:&tbnh=59&tbnw=135&ei=kl4OScTeMI70sAOmyuGJDw&prev=/images?q=RIM+logo&um=1&hl=en

4/9/2010

10


THE BIG CHALLENGE: RISK MANAGEMENT

• Risk-driven decisioning:

• Authentication, authorization, etc.

• Takes time: highly data-driven

• Expen$ive: needs incurring the lo$ts

• Interoperability: Risk models are still rather local



AGENDA

• Perspective

• Requirements

• Conclusion


4/9/2010

11


CONCLUDING THOUGHTS

• Good security …should alsobe usable…



THERE’S MORE THAN TECHNOLOGY…


Technology

People

Process

Information

Technology

• Integrated

• Consolidated

• Utilized

Information

• Federated

• Secure

• Accessible

People

• Interconnected

• Effective

• Supportive

Process

• Best Practices

• Automated

• Managed

Technology

People

Process

Information

Technology

• Integrated

• Consolidated

• Utilized

Information

• Federated

• Secure

• Accessible

People

• Interconnected

• Effective

• Supportive

Process

• Best Practices

• Automated

• Managed

4/9/2010

12


THANK YOU!

Questions, Comments, Feedback

[email protected]@x.com



BACKUP SLIDES


mailto:[email protected]













4/9/2010

13


SECURITY REQUIREMENTS


Environment:

Autonomous governance of

• Key material

• Identities

Secure isolation

Cohabitation

• Well-defined interaction contracts

Objects:

Authentication

Asset protection

• At rest

• In transit

Channel protection


ABSTRACT MODEL


Cloud_mCloud_n

ID Claims

Protection Declarations

Enforcement Mechanisms

Unforgeable, as in capability

model

Authorization Framework

Claims’ Verification



4/9/2010

14


OBJECTS’ MANDATE

• Declares own security needs

• Authenticates environment

• Protects its key material

• Claims, requirements, etc.


ID Claims



Protected by object itself

Declaration is a security

asset


ENVIRONMENTS’ MANDATE

• Authenticates objects

• Based on objects’ claims

• Authorizes interactions

• Among objects

• Between environments




4/9/2010

15


INTER-OBJECT COMMUNICATIONS

• Follows objects’ declarations

• Facilitated by env. only if authorized


ID Claims





ID Claims



?


INTER-ENVIRONMENT COMMUNICATION

• Follows mutually-agreed declarations

• Only if authorized by both environments


Cloud_m



ID Claims



Cloud_n



ID Claims



??

? ?

4/9/2010

16


OBSERVATIONS

• The proposed model decouples authorization decisions

• Enables the autonomy of environments

• Allows for flexible business models

• Objects also authenticated the environment

• Execution is based on mutual agreement


Mobile Payment Security - Columbia Business SchoolPDF) FINAL Hadi... · NFC Forum Near Field...

Documents

Transcript of Mobile Payment Security - Columbia Business SchoolPDF) FINAL Hadi... · NFC Forum Near Field...