Title :
Efficient commerce protocols based on one-time pads
Author :
Schneider, Michael A. ; Felten, Edward W.
Author_Institution :
Dept. of Comput. Sci., Princeton Univ., NJ, USA
Abstract :
Presents a new commerce protocol that allows customers and merchants to conduct face-to-face credit-card authorizations with a credit card company securely, with the option of anonymity for the customer, the merchant, or both. Our protocol guarantees that both parties agree to and know the outcome of each transaction. Our protocol has three advantages over others. First, we need only two message authentication code (MAC) operations per party per transaction, fewer than most popular protocols. Second, our own MAC function, OTPMAC (One-Time Pad MAC), does not rely on the existence of one-way functions or on any other unproven hypothesis. Third, our protocol generates a new one-time identifier per party per transaction, preventing the linkage of multiple transactions to a single party. Additionally, the protocol can operate in modes using alternatives to the one-time pad, including cryptographic pseudo-random number generators and conventional cryptographic MAC functions
Keywords :
authorisation; business data processing; codes; credit transactions; cryptography; message authentication; protocols; random number generation; transaction processing; OTPMAC function; anonymity; commerce protocol; cryptographic MAC functions; cryptographic pseudo-random number generators; face-to-face credit card authorizations; message authentication code; one-time identifier; one-time pad; security; transaction outcome agreement; Atherosclerosis; Authorization; Business; Credit cards; Cryptographic protocols; Cryptography; Media Access Protocol; Message authentication; Random number generation; Security;
Conference_Titel :
Computer Security Applications, 2000. ACSAC '00. 16th Annual Conference
Conference_Location :
New Orleans, LA
Print_ISBN :
0-7695-0859-6
DOI :
10.1109/ACSAC.2000.898886
