Solving Bao's Colluding Attack in Wang's Fair Payment Protocol.

Autor: Meersman, Robert, Tari, Zahir, Herrero, Pilar, Payeras-Capellà, M. Magdalena, Gomila, Josep L. Ferrer, Rotger, Llorenç Huguet
Zdroj: On the Move to Meaningful Internet Systems 2006: OTM 2006 Workshops; 2006, p460-468, 9p
Abstrakt: An electronic purchase is an essential operation of electronic commerce. Fairness in the exchange of money and product, as well as anonymity of the buyer, are desirable features. In Asiacrypt 2003, C.H. Wang [8] presented a purchase protocol satisfying both anonymity and fairness, adapting the anonymous payment system of Brands [2], using a restrictive confirmation signature scheme. Later, In Asiacrypt 2004, Feng Bao [1] demonstrated that Wang's protocol [8] can be vulnerable to attacks produced by colluding users, and he affirmed that the protocol cannot be corrected due to the anonymity of the protocol. We will show that it is possible to correct Wang's protocol in order to avoid colluding attacks. We present a solution that modifies slightly the original protocol, maintaining the anonymity and untraceability of the original version. Finally, we discuss the convenience to achieve the property of timeliness. [ABSTRACT FROM AUTHOR]
Databáze: Complementary Index