mobile payment security - columbia business schoolpdf) final hadi... · nfc forum near field...
TRANSCRIPT
4/9/2010
1
Macroeconomics of Mobile Money Columbia University Apr. 2, 2010
Mobile Payment SecurityWhat it means and how to implement it
Hadi Nahari
Principal Security & Mobile Architect
PayPal, Inc. an eBay Company
Columbia University, NYC
HADI’S BACKGROUND
• Security, cryptography, complex system analysis and design, distributed computing
• Identity management, digital asset protection, vulnerability assessment & threat analysis (VATA)
• Security and assurance certifications (FIPS, CC, NSA)
• Theory of programming languages, semantics of security, formal and functional languages
• Operating systems security (SVR4, Linux, Symbian, Nucleus, MultOS, etc.)
• Enterprise and embedded environments (Netscape Communications, Sun Microsystems, U.S. Government, Motorola, MontaVista, eBay, PayPal, etc.)
The Macroeconomics of Mobile Money, Apr. 2nd 2010 4/9/2010 2
4/9/2010
2
Columbia University, NYC
AGENDA
• Perspective
• Requirements
• Conclusion
The Macroeconomics of Mobile Money, Apr. 2nd 2010 4/9/2010 3
Columbia University, NYC
AGENDA
• Perspective
• Requirements
• Conclusion
The Macroeconomics of Mobile Money, Apr. 2nd 2010 4/9/2010 4
4/9/2010
3
Columbia University, NYC
FACTS ABOUT MOBILE
• Internet access (all means)
• > 1 billion/day
• Cellular networks’ access
• ~ 4 billion/day
• Mobile is the only digital system many people will ever encounter
The Macroeconomics of Mobile Money, Apr. 2nd 2010 4/9/2010 5
Columbia University, NYC
USECASE PROLIFERATION
The Macroeconomics of Mobile Money, Apr. 2nd 2010 4/9/2010 6
From Back Pocket to Front Pocket
From Paper to Virtual Tickets
From Paper to Virtual Coupons
From Mass to Personalized
From Pre Sale to in Store
4/9/2010
4
Columbia University, NYC
MOBILE IDENTITY* CRISIS
• Complex landscape
• Identity proliferation
• Many players
• Neither trusts others
• Heterogeneous identityenvironment
The Macroeconomics of Mobile Money, Apr. 2nd 2010 4/9/2010 7
Retailers
Banks
Card Associations
Mobile Network Operators
Regulators
Chip Vendors
TSMTrusted
Svc. Mgr.
Device Manufacturers
Columbia University, NYC
MANY STANDARDIZATION* BODIES
Global Platform
– Smart Card Infrastructure
OMTP Open Mobile Terminal Platform
– Usability, Economic Security
OMA Open Mobile Alliance
– Decoupling, Interoperability
NFC Forum Near Field Communication Forum
– NFC, Proximity
ETSI European Telecommunications Standards Institute
– Telecom Integration
The Macroeconomics of Mobile Money, Apr. 2nd 2010 4/9/2010 8
4/9/2010
5
Columbia University, NYC
AND…THE NETWORKS…
• Isolated from other systems (e.g. the Internet)
• Fundamentally different design-assumptions
• Applications must know how the network operates!
The Macroeconomics of Mobile Money, Apr. 2nd 2010 4/9/2010 9
Columbia University, NYC
USAGE PATTERNS (UNITED STATES)
The Macroeconomics of Mobile Money, Apr. 2nd 2010 4/9/2010 10
4/9/2010
6
Columbia University, NYC
USAGE PATTERNS (INT’L)
The Macroeconomics of Mobile Money, Apr. 2nd 2010 4/9/2010 11
Columbia University, NYC
TRAFFIC SHARE
The Macroeconomics of Mobile Money, Apr. 2nd 2010 4/9/2010 12
4/9/2010
7
Columbia University, NYC
WHAT’S A PLATFORM?
Marc Andreessen
A "platform" is a system that can be programmed and therefore customized by outside developers and in that way, adapted to countless needs and niches that the platform's original developers could not have possibly contemplated, much less had time to accommodate.
So, platform is open by definition. How open?
• Two models
The Macroeconomics of Mobile Money, Apr. 2nd 2010 4/9/2010 13
the “we know what’s good for you” model
the “you’re not evil, are’ya?” model
Columbia University, NYC
AGENDA
• perspective
• Requirements
• Conclusion
The Macroeconomics of Mobile Money, Apr. 2nd 2010 4/9/2010 14
4/9/2010
8
Columbia University, NYC
MOBILE APP-WAREHOUSING ECOSYSTEM
The Macroeconomics of Mobile Money, Apr. 2nd 2010 4/9/2010 15
Portal
App. N\
App. 0
Development
SDK. N
SDK. 1
SDK. 0
App. 1
App. N\
App. N
App. N\
App. N\
App. M
Deployment
Devices
App. N
App. 0App. 1
Columbia University, NYC
IT’S CLEAR THAT…
• The mobile app ecosystem
• Is distributed
• Is open by definition
• The development & distribution model is evolving
• Single application warehouse (Market, AppStore, etc.)
• Compound application warehouse (WAC, etc.)
The Macroeconomics of Mobile Money, Apr. 2nd 2010 4/9/2010 16
4/9/2010
9
Columbia University, NYC
SECURITY BOUNDARIES
The Macroeconomics of Mobile Money, Apr. 2nd 2010 4/9/2010 17
MNO
Financial
Portal
App. N
App. 0
App. 1
Retailer
Regulator
Columbia University, NYC
HOW MUCH SECURITY?
• Security proportionate to risk
• Simple, flexible, usable
The Macroeconomics of Mobile Money, Apr. 2nd 2010 4/9/2010 18
$0
Usable SecurityNo Security
Security Cost
Mil-Aero Security
$$
4/9/2010
10
Columbia University, NYC
THE BIG CHALLENGE: RISK MANAGEMENT
• Risk-driven decisioning:
• Authentication, authorization, etc.
• Takes time: highly data-driven
• Expen$ive: needs incurring the lo$ts
• Interoperability: Risk models are still rather local
The Macroeconomics of Mobile Money, Apr. 2nd 2010 4/9/2010 19
Columbia University, NYC
AGENDA
• Perspective
• Requirements
• Conclusion
The Macroeconomics of Mobile Money, Apr. 2nd 2010 4/9/2010 20
4/9/2010
11
Columbia University, NYC
CONCLUDING THOUGHTS
• Good security …should alsobe usable…
The Macroeconomics of Mobile Money, Apr. 2nd 2010 4/9/2010 21
Columbia University, NYC
THERE’S MORE THAN TECHNOLOGY…
The Macroeconomics of Mobile Money, Apr. 2nd 2010 4/9/2010 22
Technology
People
Process
Information
Technology
• Integrated
• Consolidated
• Utilized
Information
• Federated
• Secure
• Accessible
People
• Interconnected
• Effective
• Supportive
Process
• Best Practices
• Automated
• Managed
Technology
People
Process
Information
Technology
• Integrated
• Consolidated
• Utilized
Information
• Federated
• Secure
• Accessible
People
• Interconnected
• Effective
• Supportive
Process
• Best Practices
• Automated
• Managed
4/9/2010
12
Columbia University, NYC
THANK YOU!
Questions, Comments, Feedback
[email protected]@x.com
The Macroeconomics of Mobile Money, Apr. 2nd 2010 4/9/2010 23
Columbia University, NYC
BACKUP SLIDES
The Macroeconomics of Mobile Money, Apr. 2nd 2010 4/9/2010 24
4/9/2010
13
Columbia University, NYC
SECURITY REQUIREMENTS
The Macroeconomics of Mobile Money, Apr. 2nd 2010 4/9/2010 25
Environment:
Autonomous governance of
• Key material
• Identities
Secure isolation
Cohabitation
• Well-defined interaction contracts
Objects:
Authentication
Asset protection
• At rest
• In transit
Channel protection
Columbia University, NYC
ABSTRACT MODEL
The Macroeconomics of Mobile Money, Apr. 2nd 2010 4/9/2010 26
Cloud_mCloud_n
ID Claims
Protection Declarations
Enforcement Mechanisms
Unforgeable, as in capability
model
Authorization Framework
Claims’ Verification
Authorization Framework
Claims’ Verification
4/9/2010
14
Columbia University, NYC
OBJECTS’ MANDATE
• Declares own security needs
• Authenticates environment
• Protects its key material
• Claims, requirements, etc.
The Macroeconomics of Mobile Money, Apr. 2nd 2010 4/9/2010 27
ID Claims
Protection Declarations
Enforcement Mechanisms
Protected by object itself
Declaration is a security
asset
Columbia University, NYC
ENVIRONMENTS’ MANDATE
• Authenticates objects
• Based on objects’ claims
• Authorizes interactions
• Among objects
• Between environments
The Macroeconomics of Mobile Money, Apr. 2nd 2010 4/9/2010 28
Authorization Framework
Claims’ Verification
4/9/2010
15
Columbia University, NYC
INTER-OBJECT COMMUNICATIONS
• Follows objects’ declarations
• Facilitated by env. only if authorized
The Macroeconomics of Mobile Money, Apr. 2nd 2010 4/9/2010 29
ID Claims
Protection Declarations
Enforcement Mechanisms
Authorization Framework
Claims’ Verification
ID Claims
Protection Declarations
Enforcement Mechanisms
?
Columbia University, NYC
INTER-ENVIRONMENT COMMUNICATION
• Follows mutually-agreed declarations
• Only if authorized by both environments
The Macroeconomics of Mobile Money, Apr. 2nd 2010 4/9/2010 30
Cloud_m
Authorization Framework
Claims’ Verification
ID Claims
Protection Declarations
Enforcement Mechanisms
Cloud_n
Authorization Framework
Claims’ Verification
ID Claims
Protection Declarations
Enforcement Mechanisms
??
? ?
4/9/2010
16
Columbia University, NYC
OBSERVATIONS
• The proposed model decouples authorization decisions
• Enables the autonomy of environments
• Allows for flexible business models
• Objects also authenticated the environment
• Execution is based on mutual agreement
The Macroeconomics of Mobile Money, Apr. 2nd 2010 4/9/2010 31