Presentation is loading. Please wait.

Presentation is loading. Please wait.

Authors:Weimin Lang, Zongkai Yang, Gan Liu, Wenqing Cheng and Yunmeng Tan Source:Ninth International Symposium on Computers and Communications 2004, Proceedings.

Published byGervase Collins Modified over 9 years ago

Similar presentations

Presentation on theme: "Authors:Weimin Lang, Zongkai Yang, Gan Liu, Wenqing Cheng and Yunmeng Tan Source:Ninth International Symposium on Computers and Communications 2004, Proceedings."— Presentation transcript:

1 Authors:Weimin Lang, Zongkai Yang, Gan Liu, Wenqing Cheng and Yunmeng Tan Source:Ninth International Symposium on Computers and Communications 2004, Proceedings on ISCC 2004, Volume 1, 28 June - 1 July 2004, Pages 50–55 Date:2005/05/05 Presenter: Jung-wen Lo( 駱榮問 ) A New Efficient Micropayment Scheme Against Overspanding

2 2 Outline Introduction PayWord Scheme New Scheme Example Performance Analysis Comments

3 3 Introduction Types On-line system Protect customers from Double Spending & Overspending Ex. Millicent. Off-line system More efficient Ex. PayWord Adachi et al.(2003) Customer certificate abuse attack => Cannot prevent double spending & Overspending New scheme Based on probabilistic polling Loss shared by bank and merchant

4 4 Adachi et al. scheme Title: The Security Problems of Rivest and Shamir's PayWord Scheme Authors: Adachi, N., Aoki, S., Komano, Y. and Ohta, K. Source: IEEE International Conference on E- Commerce, 2003(CEC 2003), 24-27 June 2003, Pages: 20 – 23 When a customer exceeds his credit –Bank take full charge –Bank and shop share the damage Attacks: –Customer certificate abuse attack Use the same cetificate at another shop and exceed the credit –Bank falsification attack Bank damage the shops

5 5 PayWord Scheme Customer(C)Bank(B)Store(S) 1.Request 6.Verify M,C C 2.C C ={I B,I C,Addr C,PK C,E,Info} SK B E: Expired date Info: Information 3.Verify C C 4. Random w n w 0 =h n (w n ) w i-1 =h(w i ) 5.M={I S,C C,w 0,D,n} SK C 7.Order, (i,w i )8. h i (w i )?=w 0 9.Goods/Service 10. (i,w i ),M 11.Verify M,C C 12.Update DB ※ Payword n: {w 0,w 1, w 2, …, w n }

6 6 New Scheme(1/3) Bank(B) Customer(C) Cert C ={ID B,ID C,A C,PK C,Expiry,Add} SK B P C ={M C,X C,L C } ={10,0,{.}} Stage Bank Initialization Registration Withdraw M C =10 : Credit limit X C =0 : Counter of polling message L C ={.} : Merchants records Order Request f C =K/M C =5/10 =0.2 Cert C ={ID B,ID C,A C,PK C,Expiry,f C } SK B Random w n w 0 =H n (w n ) w i-1 =H(w i ) K=2 : Expect # of polling (eg.2-10) T=5: Threshold value for suspecting (eg.5-30)

7 7 New Scheme(2/3) Bank(B)Customer(C) Commit={ID M,Cert C,w 0,V C,Expiry,Add} SK C Merchant(M) Stage Payment ID C,V C X C =X C +1 IF X C <T=5 Otherwise Verify L C ← M (i,w i ) w 0 =h i (w i ) V C ×f C ≦ 1 Commit Acknowledgement Broadcast to L C Halt Accept V C =4: Dollar value of the payment IF X C <T Otherwise Acknowledgement Broadcast to L C Halt Accept Goods/Service Based on p=V C ×f C =V C ×K/M C =4×0.2 ≦ 1 V C ×f C >1 Halt

8 8 New Scheme(3/3) Bank(B)Customer(C)Merchant(M) Stage Deposit Loss shared by B and M all L C : M C ×X M /X C Compute Z C per day IF Z C >M C THEN Freeze C’s account (i,w i ),Commit Z C : Total value of the payments of C on a day X M : The number of M report

9 9 Performance Analysis Security No Forgery & Invalid spending => RSA cryptography & H() Overspending => Probabilistic polling Fairness Bank shares loss with merchant More fair than PayWord Efficiency Modest increase communication overhead Computational cost almost the same as PayWord Restricted Anonymity ID C is not the real identity => M cannot determine

10 10 Comments 結合 On-line & Off-line system 的優點 利用機率來進行 on-line check Performance 問題 Polling Broadcast to L C Bank 須紀錄 L C (Store List)

Download ppt "Authors:Weimin Lang, Zongkai Yang, Gan Liu, Wenqing Cheng and Yunmeng Tan Source:Ninth International Symposium on Computers and Communications 2004, Proceedings."

Similar presentations

Internet payment systems

Internet payment systems
_______________________________________________________________________________________________________________ E-Commerce: Fundamentals and Applications1.

_______________________________________________________________________________________________________________ E-Commerce: Fundamentals and Applications1.
PAYWORD, MICROMINT -TWO MICROPAYMENT SCHEMES PROJECT OF CS 265 SPRING, 2004 WRITTEN BY JIAN DAI.

PAYWORD, MICROMINT -TWO MICROPAYMENT SCHEMES PROJECT OF CS 265 SPRING, 2004 WRITTEN BY JIAN DAI.
Recoverable and Untraceable E-Cash Dr. Joseph K. Liu The Chinese University of HongKong.

Recoverable and Untraceable E-Cash Dr. Joseph K. Liu The Chinese University of HongKong.
1 Secure Credit Card Transactions on an Untrusted Channel Source: Information Sciences in review Presenter: Tsuei-Hung Sun ( 孫翠鴻 ) Date: 2010/9/24.

1 Secure Credit Card Transactions on an Untrusted Channel Source: Information Sciences in review Presenter: Tsuei-Hung Sun ( 孫翠鴻 ) Date: 2010/9/24.
Lect. 18: Cryptographic Protocols. 2 1.Cryptographic Protocols 2.Special Signatures 3.Secret Sharing and Threshold Cryptography 4.Zero-knowledge Proofs.

Lect. 18: Cryptographic Protocols. 2 1.Cryptographic Protocols 2.Special Signatures 3.Secret Sharing and Threshold Cryptography 4.Zero-knowledge Proofs.
Basic Banking Services - Activity 1

Basic Banking Services - Activity 1
Digital Cash Present By Kevin, Hiren, Amit, Kai. What is Digital Cash?  A payment message bearing a digital signature which functions as a medium of.

Digital Cash Present By Kevin, Hiren, Amit, Kai. What is Digital Cash?  A payment message bearing a digital signature which functions as a medium of.
Copyright 1996 RSA Data Security, Inc. All rights reserved.Revised 1/1/96 PayWord and MicroMint: Two Simple MicroPayment Schemes Ronald L. Rivest (MIT)

Copyright 1996 RSA Data Security, Inc. All rights reserved.Revised 1/1/96 PayWord and MicroMint: Two Simple MicroPayment Schemes Ronald L. Rivest (MIT)
Slide 1 Vitaly Shmatikov CS 378 Digital Cash. slide 2 Digital Cash: Properties uDigital “payment message” with properties of cash uUnforgeable Users cannot.

Slide 1 Vitaly Shmatikov CS 378 Digital Cash. slide 2 Digital Cash: Properties uDigital “payment message” with properties of cash uUnforgeable Users cannot.
Payment Systems 1. Electronic Payment Schemes Schemes for electronic payment are multi-party protocols Payment instrument modeled by electronic coin that.

Payment Systems 1. Electronic Payment Schemes Schemes for electronic payment are multi-party protocols Payment instrument modeled by electronic coin that.
Mutual Authentication and Key Exchange Protocol (MAKEP) Reporter: Jung-Wen Lo ( 駱榮問 ) Date: 2008/4/18.

Mutual Authentication and Key Exchange Protocol (MAKEP) Reporter: Jung-Wen Lo ( 駱榮問 ) Date: 2008/4/18.
Introduction to Modern Cryptography, Lecture 13 Money Related Issues ($$$) and Odds and Ends.

Introduction to Modern Cryptography, Lecture 13 Money Related Issues ($$$) and Odds and Ends.
Micro-Payment Protocols and Systems Speaker: Jerry Gao Ph.D. San Jose State University URL:

Micro-Payment Protocols and Systems Speaker: Jerry Gao Ph.D. San Jose State University URL:
1 Formal Specification and Verification of a Micropayment Protocol Alex X. Liu The University of Texas at Austin, U.S.A. October 13, 2004 Co-author: Mohamed.

1 Formal Specification and Verification of a Micropayment Protocol Alex X. Liu The University of Texas at Austin, U.S.A. October 13, 2004 Co-author: Mohamed.
20-763 ELECTRONIC PAYMENT SYSTEMSFALL 2001COPYRIGHT © 2001 MICHAEL I. SHAMOS eCommerce Technology 20-763 Lecture 10 Micropayments I.

ELECTRONIC PAYMENT SYSTEMSFALL 2001COPYRIGHT © 2001 MICHAEL I. SHAMOS eCommerce Technology Lecture 10 Micropayments I.
A Server-aided Signature Scheme Based on Secret Sharing for Mobile Commerce Source: Journal of Computers, Vol.19, No.1, April 2008 Author: Chin-Ling Chen,

A Server-aided Signature Scheme Based on Secret Sharing for Mobile Commerce Source: Journal of Computers, Vol.19, No.1, April 2008 Author: Chin-Ling Chen,
1 Applications of Computers Lecture-3 2 E-Commerce 4 Almost all major companies have their homes on the web, mainly for advertising 4 Companies were.

1 Applications of Computers Lecture-3 2 E-Commerce 4 Almost all major companies have their homes on the web, mainly for advertising 4 Companies were.
Digital Cash Damodar Nagapuram. Overview ► Monetary Freedom ► Digital Cash and its importance ► Achieving Digital Cash ► Disadvantages with digital cash.

Digital Cash Damodar Nagapuram. Overview ► Monetary Freedom ► Digital Cash and its importance ► Achieving Digital Cash ► Disadvantages with digital cash.
1 A practical off-line digital money system with partially blind signatures based on the discrete logarithm problem From: IEICE TRANS. FUNDAMENTALS, VOL.E83-A,No.1.

1 A practical off-line digital money system with partially blind signatures based on the discrete logarithm problem From: IEICE TRANS. FUNDAMENTALS, VOL.E83-A,No.1.

Similar presentations

Ads by Google