Title: Encryption and Tokenization-Based System for Credit Card Information Security

Issue Number: Vol. 7, No. 3
Year of Publication: Sep - 2018
Page Numbers: 283-293
Authors: Gabriel Babatunde Iwasokun, Taiwo Gabriel Omomule, Raphael Olufemi Akinyede
Journal Name: International Journal of Cyber-Security and Digital Forensics (IJCSDF)
- Hong Kong
DOI:  http://dx.doi.org/10.17781/P002462

Abstract:


Existing methods for promoting credit card information security have exhibited confidentiality, privacy and integrity failures. In most cases, sensitive and classified data or information is presented in unencrypted formats to remote machines resulting in unauthorized access and disclosure. Based on these findings, this paper presents an RSA encryption and tokenization-based system for credit card information security. The proposed system is composed of the merchant and tokenization modules as well as a token vault. The merchant and the tokenization modules send credit card information and generate the transaction validation token respectively while the token vault is a database with restricted and controlled access hosted on a cloud storage engine. The implementation of the system was carried out on Pentium IV with 2.0 GHZ Duo Core Processor and 2 GB of RAM on Microsoft Windows 7 Operating System. APACHE server and HTML (Sublime) with CSS JavaScript served as the frontend while MySQL database from WAMP server and PHP joined as the backend on Mozilla Firefox browser. Analysis of the results of implementation with Master, Verve and Visa cards showed that the system delivered very high usability, adaptability and favorable experience for users. Analysis also showed the relative advantages and superiority of the system in credit card security, key size, mobile alert and tokenization over some other systems.