Security in mobile commerce is becoming more important due to increasing demand from users wishing to perform online transactions over mobile devices. Security is one of the critical issues for successful adoption of mobile commerce both from an operator and user perspective. Although there are many aspects relating to security in this paper we concentrate on one of the current difficulties concerned with the provision of mobile receipt. Current systems depend entirely on the merchant providing the proof of purchase relating to a particular item or service and many users can experience difficulty if the system fails. Further, as current mobile devices do not offer any verifiable security over the data stored means that merchants can have little confidence in receipts stored on the device. In this paper we present a simple mobile receipt system that offers security both for customer and merchant based on the new TrustZone Architecture for ARM devices.
"©2005 IEEE. Personal use of this material is permitted. However, permission to reprint/republish this material for advertising or promotional purposes or for creating new collective works for resale or redistribution to servers or lists, or to reuse any copyrighted component of this work in other works must be obtained from the IEEE." "This material is presented to ensure timely dissemination of scholarly and technical work. Copyright and all rights therein are retained by authors or by other copyright holders. All persons copying this information are expected to adhere to the terms and constraints invoked by each author's copyright. In most cases, these works may not be reposted without the explicit permission of the copyright holder."