Privacy-protecting Systems for electronic commerce on mobile devices

TitlePrivacy-protecting Systems for electronic commerce on mobile devices
Publication TypeThesis
Year of Publication2013
AuthorsAndreu Pere Isern-Deyà
Academic DepartmentDepartment of Computer Science
Number of Pages322
Date Published10/2013
UniversityDepartament de Matemàtiques i Informàtica. Universitat de les Illes Balears
CityPalma de Mallorca
Thesis Typephd

Nowadays, we are witnessing an important increase in the knowledge and the introduction rate of Information Communications Technologies (ICT) in society. Day after day, there are more and more people embracing new means to consume electronic goods or services through the utilization of these new ICT infrastructures, usually related to mobile scenarios. The number of always connected mobile devices has experienced an important growth due to the release of mobile broadband subscriptions that allow users to access information where and when they want, even with real-time data consumption patterns. In this mobility scenario, there are many business areas that can receive excellent benefits from the increasing use of ICTs. One of these fields is electronic commerce (e-commerce). In fact, according to a recent forecast research, sales due to e-commerce (specially the Business to Customer (B2C) market), will rise globally at an annual rate of between 10% and 15% from 2012 to 2017. Besides, the study also points out that people are more likely to use their mobile devices to access e-commerce services. However, people also want to achieve certain levels of privacy to be more confident and active with e-commerce.

Despite the fact that e-commerce currently is an important topic and that many people are already familiarized with it, e-commerce still has a long way to go. As introduced before, one of the main concerns of customers and merchants is the lack of privacy and trust when they browse Internet, and especially when they have to do on-line purchases or have to access electronic services. Indeed, this is the underlying premise that motivates the research gathered in this dissertation. Therefore, the objective of this dissertation is to propose new and improved privacy-protecting solutions to address some unresolved deficiencies in the e-commerce field to increase privacy, security and trust that would accelerate even more the use of e-commerce by society. Among all topics within the e-commerce field, this dissertation deals with three services that may suffer this lack of privacy and trust from customers and merchants: payment of low value purchases, use of electronic coupons (typically associated to some discounts or gifts) and electronic ticketing to access services in exchange for a fare based on the given use.

Thus, the dissertation proposes three new privacy-protecting solutions that cover the aforementioned e-commerce tools. Solutions are defined by formal functional and security models and proved secure by means of a security verification according to the required security properties. Although the main objective of this dissertation revolves around the theoretical proposal of new privacy-protecting solutions, it is also important to note that they should be proved practical and efficient to be implemented and afterward used by current mobile devices. So, the work that conducts to this dissertation addresses also the development of functional implementations of proposed privacy-protecting solutions and their performance evaluation on current mobile devices.