Abstract— The progress of mobile payment research over the last
decade till now has been critically assessed, yet security issue still
occurring. Existing schemes are not sufficient to combat all the
security issues in mobile payment from the security of system
perspective and usability. Hence, we proposed an enhanced mobile
payment security scheme (EMPS) using Elliptic curve cryptography
(ECC) over the binary field for encryption and International mobile
equipment identity (IMEI) for user’s identity. Payment details are
stored on the payment gateway which can encrypt but cannot
decrypt without the merchant’s decryption key. It provides integrity,
user anonymity, fairness, shorter key size, usability, and nonrepudiation
together with other security features considering
mobile phone limitations. It prevents man in middle attack, identity
theft, insider attack, and others. The result obtained in Table 2
shows that this scheme is time efficient when compared with the
ECC over the prime field, the Rivest Sharmar Addleman (RSA)
scheme and other related models in section two of this work.
Keywords— Security, Payment gateway, Cryptography, ECC,
IMEI, Mobile payment.
