Presentation is loading. Please wait.

Presentation is loading. Please wait.

Information Assurance Management Key Escrow Digital Cash Week 12-1.

Published byBrett Privott Modified over 9 years ago

Similar presentations

Presentation on theme: "Information Assurance Management Key Escrow Digital Cash Week 12-1."— Presentation transcript:

1 Information Assurance Management Key Escrow Digital Cash Week 12-1

2 Key Escrow Private keys in a Public Key system Escrowed Encryption Standard –Each chip has a unique ID and secret key –Key split in two parks and stored with the ID at two different Escrow agencies. –Each time the chip functions it encrypts the session key with the secret key –Then transmits the encrypted session key and ID over the comm channel.

3 Key Escrow –LEA gets Court order to get both halves of the secret key –records traffic with the ID it wants –XOR’s the two together, decrypts the session key then decrypts the messages. Same thing can be done with PKE Fair cryptosystems

4 Key Escrow Private key is broken up into several pieces Each piece can be verified to be correct without having to be reassembled None of the escrow holders can reconstruct the private key alone…takes them all Several methods of ensuring that the key is authentic and verifiable

5 Key Escrow Politics –With several commercial plans out along with the government's plan, what advantages are there for the user? –NONE! –Several disadvantages –Trust the escrow agent’s security and people –Trust the agent and government not to change the rules and laws

6 Key Escrow –Trust LEA to be lawful –Must be forced to use it by banning non- escrowed encryption –How to enforce that? Must monitor ALL traffic –Academic research? –User liability if encrypted data gets out…always the user’s fault! –What if escrow database stolen?

7 Key Escrow Scandal…political opponents, critics of intelligence or law enforcement agencies What if signature keys were also encrypted? Will authenticity of signatures based on escrowed keys be acceptable in court? What recourse would you have if authorities used your signature key?

8 Digital Cash Great social need for Digital Cash Digital Money presumes an audit trail –Won’t ever happen! Why? Several protocols exist that can work… –Cheating is possible but difficult…penalties must be sever enough to deter cheating.

9 Digital Cash Protocol # 1 –100 money orders for $1000, sealed with carbon paper inside. –Bank selects 99 to open, confirms each is for $1000, signs the 100th through the envelope –Hands back the 100th envelope and deducts $1K from your account.

10 Digital Cash –You spend it at some merchant, which redeems it at the bank, without the bank knowing who it came from. 1% chance of cheating Protocol #2 –Double spending problem…photocopy the signed money order –Works the same as #1 but… –A long unique string of numbers on each check

11 Digital Cash –When cashed, bank checks number against db for duplicates Protocol #3 –Same as above but…protects the bank from cheaters and identifies them –you are asked to provide an identity string when giving the merchant the MO.

12 Digital Cash –The uniqueness string will be checked by the bank for reuse –The ID string will tell if the merchant tried to copy the MO or if the user tried to copy it Still, this and the others can be cheated But Digital Cash is necessary –Independence - security of cash not dependent on a physical location

13 Digital Cash –Security - cannot be copied and reused –Privacy - untraceability, no relationship between user and his purchases –Off-line Payment - protocol between user and merchant is executed off-line –Transferability -digital cash can be transferred –Divisibility- a piece of digital cash can be subdivided

Download ppt "Information Assurance Management Key Escrow Digital Cash Week 12-1."

Similar presentations

Chapter 10 Encryption: A Matter of Trust. Awad –Electronic Commerce 1/e © 2002 Prentice Hall 2 OBJECTIVES What is Encryption? Basic Cryptographic Algorithm.

Chapter 10 Encryption: A Matter of Trust. Awad –Electronic Commerce 1/e © 2002 Prentice Hall 2 OBJECTIVES What is Encryption? Basic Cryptographic Algorithm.
Securing the Worlds Information Secure Dynamic Credit and Debit Cards Stop Credit Card and Identity Theft Andre Brisson Stephen Boren Co founders/ Co.

Securing the Worlds Information Secure Dynamic Credit and Debit Cards Stop Credit Card and Identity Theft Andre Brisson Stephen Boren Co founders/ Co.
Key Management. Shared Key Exchange Problem How do Alice and Bob exchange a shared secret? Offline – Doesnt scale Using public key cryptography (possible)

Key Management. Shared Key Exchange Problem How do Alice and Bob exchange a shared secret? Offline – Doesnt scale Using public key cryptography (possible)
Key distribution and certification In the case of public key encryption model the authenticity of the public key of each partner in the communication must.

Key distribution and certification In the case of public key encryption model the authenticity of the public key of each partner in the communication must.
CP3397 ECommerce.

CP3397 ECommerce.
Chapter 6 E-commerce Payment Systems. Traditional Payment Systems Cash Checking Transfers Credit Card Accounts Stored Value Accounts Accumulating Balance.

Chapter 6 E-commerce Payment Systems. Traditional Payment Systems Cash Checking Transfers Credit Card Accounts Stored Value Accounts Accumulating Balance.
David Evans CS588: Cryptography University of Virginia Computer Science Lecture 18: Money

David Evans CS588: Cryptography University of Virginia Computer Science Lecture 18: Money
SECURITY IN E-COMMERCE VARNA FREE UNIVERSITY Prof. Teodora Bakardjieva.

SECURITY IN E-COMMERCE VARNA FREE UNIVERSITY Prof. Teodora Bakardjieva.
Understanding Networked Applications: A First Course Chapter 14 by David G. Messerschmitt.

Understanding Networked Applications: A First Course Chapter 14 by David G. Messerschmitt.
Digital Cash Present By Kevin, Hiren, Amit, Kai. What is Digital Cash?  A payment message bearing a digital signature which functions as a medium of.

Digital Cash Present By Kevin, Hiren, Amit, Kai. What is Digital Cash?  A payment message bearing a digital signature which functions as a medium of.
Payment Systems 1. Electronic Payment Schemes Schemes for electronic payment are multi-party protocols Payment instrument modeled by electronic coin that.

Payment Systems 1. Electronic Payment Schemes Schemes for electronic payment are multi-party protocols Payment instrument modeled by electronic coin that.
Introduction to Modern Cryptography, Lecture 13 Money Related Issues ($$$) and Odds and Ends.

Introduction to Modern Cryptography, Lecture 13 Money Related Issues ($$$) and Odds and Ends.
Introduction to PKI Seminar What is PKI? Robert Brentrup July 13, 2004.

Introduction to PKI Seminar What is PKI? Robert Brentrup July 13, 2004.
Quantum Cryptography Qingqing Yuan. Outline No-Cloning Theorem BB84 Cryptography Protocol Quantum Digital Signature.

Quantum Cryptography Qingqing Yuan. Outline No-Cloning Theorem BB84 Cryptography Protocol Quantum Digital Signature.
Cryptographic Technologies

Cryptographic Technologies
Encryption An Overview. Fundamental problems Internet traffic goes through many networks and routers Many of those networks are broadcast media Sniffing.

Encryption An Overview. Fundamental problems Internet traffic goes through many networks and routers Many of those networks are broadcast media Sniffing.
Digital Cash Damodar Nagapuram. Overview ► Monetary Freedom ► Digital Cash and its importance ► Achieving Digital Cash ► Disadvantages with digital cash.

Digital Cash Damodar Nagapuram. Overview ► Monetary Freedom ► Digital Cash and its importance ► Achieving Digital Cash ► Disadvantages with digital cash.
Introduction to Public Key Infrastructure (PKI) Office of Information Security The University of Texas at Brownsville & Texas Southmost College.

Introduction to Public Key Infrastructure (PKI) Office of Information Security The University of Texas at Brownsville & Texas Southmost College.
“Electronic Payment System”

“Electronic Payment System”
Electronic Payment Systems. Transaction reconciliation –Cash or check.

Electronic Payment Systems. Transaction reconciliation –Cash or check.

Similar presentations

Ads by Google