Enhancing the security of 3-D secure

by

[Month, Year]

TABLE OF CONTENTS

LIST OF ABBREVIATIONiii

EXECUTIVE SUMMARYiv

Introduction1

Provisional Title of Project1

Aim of the Study1

Objectives of the Study1

Methods to be used3

Research strategy4

The work plan6

Key Milestones of the project6

Literature Review6

Additional comments10

BIBLIOGRAPHY13

APPENDIX18

LIST OF ABBREVIATION

CNP: Card Not Present

SSL: Encryption Secure Socket Layer

MPI: Merchant plug-in interface

EXECUTIVE SUMMARY

In this research proposal, 3D secure tool will be explored in detail. This dissertation is based on the security aspects of payments being done with the use of 3D secure. The reason behind choosing this project is that today inline transactions are very risky in terms of security concerns and as we live in a globalised world. There is a significant need of making transactions fast and quick or in other words, we can say that payments made through the internet. 3D secure tool is a globally authorised standard used for the payment concerns via internet. It is mostly used with the help of MasterCard (MasterCard SecureCode). Security codes are required for such kinds of sales transactions. The security code consists of the 3 numbers on the back of the card normally asks us when we enter an online purchase.

ENHANCING THE SECURITY OF 3-D SECURE

Introduction

Provisional Title of Project

The selected title for this proposed project is “Enhancing the security of 3-D secure”.

Aim of the Study

The aim of this proposed dissertation is to creat an environment that coordinates secured payment transactions. This proposed dissertation is based on the security aspects of payments being done with the use of 3D secure. Some common security vulnerabilities in e-commerce Systems includes SQL injection.

Objectives of the Study

Following will be the objectives of the proposed study:

how 3D Sec is implemented by MC and Visa, e.g. Verified by Visa and Mastercard's Secure Payment Application.

how the PCI standards are being used to mitigate some of the back end vulnerabilities.

Explains the fundamental credit card payment model.

analyses the Credit card schemes to date.

3-D secure has been chosen to be the most promising scheme

analyses 3-D secure in depth,identifies the weaknesses and suggest how to improve it

to mitigate some vulnerabilities such as : I)Man-in-the-middle attack II) HTTP redirection

Few researches have been conducted on this topic and the most famous of them are: Secure E-Payment Protocol with New Involved Entities by Mildrey Carbonell published in IEEE in 2010-11. Another important research in this area of study is “Submitting Transactions in the XML Direct Model with 3 D Secure Guide” by WorldPay Limited published in 2011. This research not only talks about 3D secure, but also discusses PCI standards in details.

This dissertation will highlight the importance of using tools like 3-D secure. The importance of studying the features of 3D- secure lies in the fact that today almost more than 80% of the customers either general public, businessmen in the western countries use payment cards for the transactions. The most worrying element for them is the security of their accounts while doing such transactions via internet. It has been noticed from recent research that there is a significant increase in the fraudulent payment card transactions ...