Smartphones as Practical and Secure Location Verification Tokens for Payments presented at NDSS 2014

by Srdjan Capkun, Kari Kostiainen, Claudio Marforio, Nikolaos Karapanos, Claudio Soriente,

Summary : Trustworthy location statements from a smartphone trusted execution environment (TEE) enable secure second-factor authentication for point-of-sale payments. We provide two user device enrollment solutions that are resistant against powerful but realistic adversaries. A city-wide field study shows the applicability of the proposed second-factor authentication mechanism.