ITB Journal-May-2003 - Institute of Technology Blanchardstown

More documents

Recommendations

Info

ITB Journal the goods are encrypted so that during this phase the customer cannot access the goods. 3. The customer and the bank co-operate and enable the customer to decrypt the electronic goods and thus allow the customer to access the goods. The iBank protocol is designed to achieve the following main objectives. These are common objectives which well-known schemes such as iKp[3] and NetBill[4] payment systems attempt to achieve: 1. The customer and the merchant are able to agree on the details of the transaction. 2. The customer can only receive the specified goods if she has paid for them. 3. The customer and merchant have proof that a successful transaction has occurred. 4. The customer is able to protect her identity from the merchant. 5. The transaction cannot be adversely affected by external threats. This means that a malicious party (which is not included as part of the payment model) cannot prevent the transaction from succeeding. This can either be by causing the merchant not to be paid or preventing the customer from receiving the goods. 6. The transaction is efficient in terms of processing and in the number of messages required to complete the protocol. 3 The iBank Protocol The protocol description will use the notation i. X Y to indicate that the i th message of the protocol is transmitted by entity X to entity Y. The customer entity is represented by C, the merchant entity is represented by M and the bank or notary is represented by B. The basic voucher protocol consists of five steps: M B : Request key B M : Return key M C : Distribute voucher C B : Redeem Voucher B C : Release Goods The horizontal line after the first two steps separates the protocol part that need be preformed only once, in an offline exchange between bank and merchant. The remaining steps may be run repeatedly with different customers at any time. Thus the merchant engages in no online processing. Issue Number 7, May 2003 Page 80
ITB Journal • Objective 1 is achieved in steps 3 and 4 of the protocol. The merchant determines the price for his goods and sets this in the merchant signed voucher. The customer agrees to this price by cashing in the voucher. • The customer can only decrypt the goods by using the secret key. The customer receives this after the bank has determined that the transaction should go ahead and the funds have been transferred from the customer’s account. Thus objective 2 is realized. • The goods decryption key received by the customer is her proof that the bank has successful conducted the transaction. The merchant’s proof of transaction is the bank signed product identification code sent in step 5 of the protocol. Objective 3 has been achieved. • The customer’s identity is protected from the merchant because the customer does not transmit any messages directly to the merchant. Also even if the customer does have a voucher, she is under no obligation to cash in the voucher and decrypt the goods. Thus objective 4 is attained. Note that while anonymity from the merchant is obtained, complete anonymity for the customer is not obtained because the bank will be able to identity the customer and the goods that she purchases. • Objective 5 is achieved because no message within the protocol contains data that is either unsigned or unencrypted. • Objective 6 is discussed in later sections. But steps 1 and 2 of the protocol are performed offline and only need to be conducted occasionally and do not need to be conducted for every transaction. This decreases the number of messages required for an average transaction. The iBank payment scheme only requires 1 signature from each entity (the merchant does not even need to do this online) and a one way hash calculation from the bank and the merchant. 3.1 Notation The following notation is used to denote cryptographic operations. X and Y always represent communicating parties. K always represents a cipher key. When describing the following protocols, the sequence of messages is exchanged among three parties: C, the customer, M, the merchant: and B the bank, acquirer or notary entity. Exy(Message), Message, encrypted with the key XY using symmetric key cryptography. It is assumed that only X and Y knows the key, and that only these entities may know the contents of Message. Issue Number 7, May 2003 Page 81
Page 1 and 2:
ITB Journal Issue Number 7, May 200
Page 3 and 4:
ITB Journal Editorial I am delighte
Page 5 and 6:
ITB Journal The ability to deliver
Page 7 and 8:
ITB Journal • Proprietary LAN-bas
Page 9 and 10:
ITB Journal the client. Message que
Page 11 and 12:
ITB Journal across the different co
Page 13 and 14:
ITB Journal functionality of this m
Page 15 and 16:
ITB Journal Another advantage of th
Page 17 and 18:
ITB Journal The Process And Problem
Page 19 and 20:
ITB Journal Weich (1979) defined
Page 21 and 22:
ITB Journal 2.1.2 Population Ecolog
Page 23 and 24:
ITB Journal 2.3 Early Approaches to
Page 25 and 26:
ITB Journal up creation process is
Page 27 and 28:
ITB Journal 2.6.2 Katz & Gartner Fr
Page 29 and 30: ITB Journal operate, it emphasizes
Page 31 and 32: ITB Journal empirical evidence, in
Page 33 and 34: ITB Journal An interesting study ex
Page 35 and 36: ITB Journal Many entrepreneurs, who
Page 37 and 38: ITB Journal than with an establishe
Page 39 and 40: ITB Journal linear step-by step pro
Page 41 and 42: ITB Journal Catalunya, num.8. May-A
Page 43 and 44: ITB Journal The structure of this p
Page 45 and 46: ITB Journal strengths and its abili
Page 47 and 48: ITB Journal The second and third qu
Page 49 and 50: ITB Journal Prior to the survey, th
Page 51 and 52: ITB Journal After the system specif
Page 53 and 54: ITB Journal Modelling Modelling can
Page 55 and 56: ITB Journal • Programming constru
Page 57 and 58: ITB Journal 3. Hardware Description
Page 59 and 60: ITB Journal improvement in the cost
Page 61 and 62: ITB Journal • State-register •
Page 63 and 64: ITB Journal communication between h
Page 65 and 66: ITB Journal methodology that is mai
Page 67 and 68: ITB Journal [24]. Frank Vahid and D
Page 69 and 70: ITB Journal Integration of a Stereo
Page 71 and 72: ITB Journal young children. Video a
Page 73 and 74: ITB Journal 3 Results The mobile un
Page 75 and 76: ITB Journal A Secure Payment Protoc
Page 77 and 78: ITB Journal complex software valued
Page 79: ITB Journal user, and debits the cu
Page 83 and 84: ITB Journal K is the key provided b
Page 85 and 86: ITB Journal The bank now makes a de
Page 87 and 88: ITB Journal that the merchant assig
Page 89 and 90: ITB Journal October, 1994. [4] Chau
show all

ITB Journal-May-2003 - Institute of Technology Blanchardstown

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?