An Anonymous Fair- Exchange E-Commerce Protocol Indrajit Ray Computer Science Department Colorado...
-
Upload
clemence-tyler -
Category
Documents
-
view
215 -
download
0
Transcript of An Anonymous Fair- Exchange E-Commerce Protocol Indrajit Ray Computer Science Department Colorado...
![Page 1: An Anonymous Fair- Exchange E-Commerce Protocol Indrajit Ray Computer Science Department Colorado State University indrajit@cs.colostate.edu.](https://reader036.fdocuments.us/reader036/viewer/2022062421/56649db05503460f94a9e608/html5/thumbnails/1.jpg)
An Anonymous Fair-Exchange E-
Commerce Protocol
Indrajit RayComputer Science
DepartmentColorado State [email protected]
![Page 2: An Anonymous Fair- Exchange E-Commerce Protocol Indrajit Ray Computer Science Department Colorado State University indrajit@cs.colostate.edu.](https://reader036.fdocuments.us/reader036/viewer/2022062421/56649db05503460f94a9e608/html5/thumbnails/2.jpg)
Outline Motivation
Fair-exchange Cross-validation Anonymity
Background Protocol Description Conclusion
![Page 3: An Anonymous Fair- Exchange E-Commerce Protocol Indrajit Ray Computer Science Department Colorado State University indrajit@cs.colostate.edu.](https://reader036.fdocuments.us/reader036/viewer/2022062421/56649db05503460f94a9e608/html5/thumbnails/3.jpg)
Motivation
Fair Exchange
![Page 4: An Anonymous Fair- Exchange E-Commerce Protocol Indrajit Ray Computer Science Department Colorado State University indrajit@cs.colostate.edu.](https://reader036.fdocuments.us/reader036/viewer/2022062421/56649db05503460f94a9e608/html5/thumbnails/4.jpg)
The ProblemI want to purchase Mento Madness
No problem! That will be $25
Your financial info is 128 bit
SSL encrypted
Okay here is an e-check for $25
![Page 5: An Anonymous Fair- Exchange E-Commerce Protocol Indrajit Ray Computer Science Department Colorado State University indrajit@cs.colostate.edu.](https://reader036.fdocuments.us/reader036/viewer/2022062421/56649db05503460f94a9e608/html5/thumbnails/5.jpg)
The Problem
He! He! That’s my 10thvictim today. Bye Bye
![Page 6: An Anonymous Fair- Exchange E-Commerce Protocol Indrajit Ray Computer Science Department Colorado State University indrajit@cs.colostate.edu.](https://reader036.fdocuments.us/reader036/viewer/2022062421/56649db05503460f94a9e608/html5/thumbnails/6.jpg)
Tough luck lady! We cannot trace
him!!
The Problem
Complain! Complain!
![Page 7: An Anonymous Fair- Exchange E-Commerce Protocol Indrajit Ray Computer Science Department Colorado State University indrajit@cs.colostate.edu.](https://reader036.fdocuments.us/reader036/viewer/2022062421/56649db05503460f94a9e608/html5/thumbnails/7.jpg)
What’s Needed? – Fair Exchange Must ensure that no player suffers
owing to the malicious behavior of the other player Either both players receive each other’s
commodities or none doStrong or true fair-exchange
Gather enough evidence so that wrong doer can be brought to justice
Weak fair-exchange
![Page 8: An Anonymous Fair- Exchange E-Commerce Protocol Indrajit Ray Computer Science Department Colorado State University indrajit@cs.colostate.edu.](https://reader036.fdocuments.us/reader036/viewer/2022062421/56649db05503460f94a9e608/html5/thumbnails/8.jpg)
Motivation (2)
Cross Validation
![Page 9: An Anonymous Fair- Exchange E-Commerce Protocol Indrajit Ray Computer Science Department Colorado State University indrajit@cs.colostate.edu.](https://reader036.fdocuments.us/reader036/viewer/2022062421/56649db05503460f94a9e608/html5/thumbnails/9.jpg)
The ProblemI want to purchase Mento Madness
No problem! That will be $25
Your financial info is 128 bit
SSL encrypted
Good!! Here is Mento Madness
Okay here is $25
![Page 10: An Anonymous Fair- Exchange E-Commerce Protocol Indrajit Ray Computer Science Department Colorado State University indrajit@cs.colostate.edu.](https://reader036.fdocuments.us/reader036/viewer/2022062421/56649db05503460f94a9e608/html5/thumbnails/10.jpg)
The Problem
He! He! That’s my 20thvictim today. This is
Getting better all the time
![Page 11: An Anonymous Fair- Exchange E-Commerce Protocol Indrajit Ray Computer Science Department Colorado State University indrajit@cs.colostate.edu.](https://reader036.fdocuments.us/reader036/viewer/2022062421/56649db05503460f94a9e608/html5/thumbnails/11.jpg)
The Problem
This is not Mento Madness!! This is
garbage!!!!
Tough luck lady! We cannot trace
him!!
Complain! Complain!
![Page 12: An Anonymous Fair- Exchange E-Commerce Protocol Indrajit Ray Computer Science Department Colorado State University indrajit@cs.colostate.edu.](https://reader036.fdocuments.us/reader036/viewer/2022062421/56649db05503460f94a9e608/html5/thumbnails/12.jpg)
The Solution – Cross Validation Ensure (somehow) that the product the
customer is about to receive from the merchant is indeed the product he is paying for
![Page 13: An Anonymous Fair- Exchange E-Commerce Protocol Indrajit Ray Computer Science Department Colorado State University indrajit@cs.colostate.edu.](https://reader036.fdocuments.us/reader036/viewer/2022062421/56649db05503460f94a9e608/html5/thumbnails/13.jpg)
Motivation (3)
Anonymity
![Page 14: An Anonymous Fair- Exchange E-Commerce Protocol Indrajit Ray Computer Science Department Colorado State University indrajit@cs.colostate.edu.](https://reader036.fdocuments.us/reader036/viewer/2022062421/56649db05503460f94a9e608/html5/thumbnails/14.jpg)
The ProblemI want to purchase Mento Madness
No problem! That will be $25
Good!! Here is Mento Madness
Here is my guarantee
Thank you – here is $25
![Page 15: An Anonymous Fair- Exchange E-Commerce Protocol Indrajit Ray Computer Science Department Colorado State University indrajit@cs.colostate.edu.](https://reader036.fdocuments.us/reader036/viewer/2022062421/56649db05503460f94a9e608/html5/thumbnails/15.jpg)
The Problem
This lady likes Jamaican music!!
Spam her with other offers
![Page 16: An Anonymous Fair- Exchange E-Commerce Protocol Indrajit Ray Computer Science Department Colorado State University indrajit@cs.colostate.edu.](https://reader036.fdocuments.us/reader036/viewer/2022062421/56649db05503460f94a9e608/html5/thumbnails/16.jpg)
The Problem
I am receiving zillions of SPAM
Tough luck lady! You missed the
fine prints. This is not SPAM
Complain! Complain!
![Page 17: An Anonymous Fair- Exchange E-Commerce Protocol Indrajit Ray Computer Science Department Colorado State University indrajit@cs.colostate.edu.](https://reader036.fdocuments.us/reader036/viewer/2022062421/56649db05503460f94a9e608/html5/thumbnails/17.jpg)
The Solution Ensure that a transaction cannot be
linked to or traced back to a particular customer
Optionally ensure the same for the merchant
![Page 18: An Anonymous Fair- Exchange E-Commerce Protocol Indrajit Ray Computer Science Department Colorado State University indrajit@cs.colostate.edu.](https://reader036.fdocuments.us/reader036/viewer/2022062421/56649db05503460f94a9e608/html5/thumbnails/18.jpg)
Background
Theory of Cross Validation
![Page 19: An Anonymous Fair- Exchange E-Commerce Protocol Indrajit Ray Computer Science Department Colorado State University indrajit@cs.colostate.edu.](https://reader036.fdocuments.us/reader036/viewer/2022062421/56649db05503460f94a9e608/html5/thumbnails/19.jpg)
Nature of Keys Used Asymmetric keys
Two keys K1 and K2 are said to be compatible if
K1 e,N1 , K2 e,N2 share the same exponent e
N1 and N2 are relatively prime
e is relatively prime to N1 and N2
K i e,N i ,K i 1 d,N i such that ed 1mod N i
and e is relatively prime to N i
![Page 20: An Anonymous Fair- Exchange E-Commerce Protocol Indrajit Ray Computer Science Department Colorado State University indrajit@cs.colostate.edu.](https://reader036.fdocuments.us/reader036/viewer/2022062421/56649db05503460f94a9e608/html5/thumbnails/20.jpg)
Nature of Keys Used (2) The product of two compatible keys K1
and K2 is defined as
Used by customer for product validation
K1 K2 e,N1 N2
m,K i me mod N i
mKKKmKKKm 1221
1121 ,,,,
m,K1 K2 ˆ m ,K1 modN1 iff m ˆ m
![Page 21: An Anonymous Fair- Exchange E-Commerce Protocol Indrajit Ray Computer Science Department Colorado State University indrajit@cs.colostate.edu.](https://reader036.fdocuments.us/reader036/viewer/2022062421/56649db05503460f94a9e608/html5/thumbnails/21.jpg)
Protocol - The Actors Customer
For this transaction assumes a pseudo identity C
![Page 22: An Anonymous Fair- Exchange E-Commerce Protocol Indrajit Ray Computer Science Department Colorado State University indrajit@cs.colostate.edu.](https://reader036.fdocuments.us/reader036/viewer/2022062421/56649db05503460f94a9e608/html5/thumbnails/22.jpg)
Protocol - The Actors Customer Merchant
![Page 23: An Anonymous Fair- Exchange E-Commerce Protocol Indrajit Ray Computer Science Department Colorado State University indrajit@cs.colostate.edu.](https://reader036.fdocuments.us/reader036/viewer/2022062421/56649db05503460f94a9e608/html5/thumbnails/23.jpg)
Protocol - The Actors Customer Merchant Customer’s bank
![Page 24: An Anonymous Fair- Exchange E-Commerce Protocol Indrajit Ray Computer Science Department Colorado State University indrajit@cs.colostate.edu.](https://reader036.fdocuments.us/reader036/viewer/2022062421/56649db05503460f94a9e608/html5/thumbnails/24.jpg)
Protocol - The Actors Customer Merchant Customer’s bank Merchant’s bank
![Page 25: An Anonymous Fair- Exchange E-Commerce Protocol Indrajit Ray Computer Science Department Colorado State University indrajit@cs.colostate.edu.](https://reader036.fdocuments.us/reader036/viewer/2022062421/56649db05503460f94a9e608/html5/thumbnails/25.jpg)
Protocol - The Actors Customer Merchant Customer’s bank Merchant’s bank Trusted third party
![Page 26: An Anonymous Fair- Exchange E-Commerce Protocol Indrajit Ray Computer Science Department Colorado State University indrajit@cs.colostate.edu.](https://reader036.fdocuments.us/reader036/viewer/2022062421/56649db05503460f94a9e608/html5/thumbnails/26.jpg)
Protocol - Step 0 Merchant registers
with third party Sends the product
(m), its description (d) and keys
Third party validates description against product
Third party uploads to its web site
K1,K1 1
m,K1
![Page 27: An Anonymous Fair- Exchange E-Commerce Protocol Indrajit Ray Computer Science Department Colorado State University indrajit@cs.colostate.edu.](https://reader036.fdocuments.us/reader036/viewer/2022062421/56649db05503460f94a9e608/html5/thumbnails/27.jpg)
Protocol - Step 0 Customer selects a
product m, to download based on the description Downloads
Customer generates a one time public / private key pair
m,K1
Cipub ,Ciprv
![Page 28: An Anonymous Fair- Exchange E-Commerce Protocol Indrajit Ray Computer Science Department Colorado State University indrajit@cs.colostate.edu.](https://reader036.fdocuments.us/reader036/viewer/2022062421/56649db05503460f94a9e608/html5/thumbnails/28.jpg)
Protocol - Step 1 Customer indicates
intent to purchase by sending Signed Purchase
order Pseudo identity C
and one time public key, Cipub
Digest of PO signed by one time private key
CC PO ,Ciprv
PO,Ciprv
![Page 29: An Anonymous Fair- Exchange E-Commerce Protocol Indrajit Ray Computer Science Department Colorado State University indrajit@cs.colostate.edu.](https://reader036.fdocuments.us/reader036/viewer/2022062421/56649db05503460f94a9e608/html5/thumbnails/29.jpg)
Protocol - Step 2 Merchant sends to
customer Counter signed digest
of PO Product m encrypted
with key
Merchant’s bank account information encrypted with merchant’s bank’s public key
CC PO ,Ciprv ,M prv
K1 K2, namely,
m,K1 K2
Macct ,MBpub
![Page 30: An Anonymous Fair- Exchange E-Commerce Protocol Indrajit Ray Computer Science Department Colorado State University indrajit@cs.colostate.edu.](https://reader036.fdocuments.us/reader036/viewer/2022062421/56649db05503460f94a9e608/html5/thumbnails/30.jpg)
Protocol - Step 3 Customer validates
product Compares downloaded
product with that received from merchant
Sends money transfer instruction to bank Customer’s account
number (Cacct) and amount to be transferred to encrypted account
m,K1
m,K1 K2
Macct ,MBpub
![Page 31: An Anonymous Fair- Exchange E-Commerce Protocol Indrajit Ray Computer Science Department Colorado State University indrajit@cs.colostate.edu.](https://reader036.fdocuments.us/reader036/viewer/2022062421/56649db05503460f94a9e608/html5/thumbnails/31.jpg)
Protocol - Step 4 Bank debits
customer’s account and sends signed payment token to customer
Payment token, P contains Amount paid Nonce to prevent
replays Signed checksum of P
Macct ,MBpub
CC P ,Bprv
![Page 32: An Anonymous Fair- Exchange E-Commerce Protocol Indrajit Ray Computer Science Department Colorado State University indrajit@cs.colostate.edu.](https://reader036.fdocuments.us/reader036/viewer/2022062421/56649db05503460f94a9e608/html5/thumbnails/32.jpg)
Protocol - Steps 5 & 6 Customer sends
signed payment token to Merchant
Merchant forwards signed payment token to its bank
![Page 33: An Anonymous Fair- Exchange E-Commerce Protocol Indrajit Ray Computer Science Department Colorado State University indrajit@cs.colostate.edu.](https://reader036.fdocuments.us/reader036/viewer/2022062421/56649db05503460f94a9e608/html5/thumbnails/33.jpg)
Protocol - Step 7 Merchant’s bank
Verifies CB’s signature on payment token
Decrypts Credits merchant’s
account by amount given in payment token
Sends acknowledgment to merchant
Macct , MBpub
![Page 34: An Anonymous Fair- Exchange E-Commerce Protocol Indrajit Ray Computer Science Department Colorado State University indrajit@cs.colostate.edu.](https://reader036.fdocuments.us/reader036/viewer/2022062421/56649db05503460f94a9e608/html5/thumbnails/34.jpg)
Protocol - Step 8 Merchant sends
product decryption key, , encrypted with customer’s one time public key,
K2 1
Cipub
K2 1,Cipub
![Page 35: An Anonymous Fair- Exchange E-Commerce Protocol Indrajit Ray Computer Science Department Colorado State University indrajit@cs.colostate.edu.](https://reader036.fdocuments.us/reader036/viewer/2022062421/56649db05503460f94a9e608/html5/thumbnails/35.jpg)
Analysis of Fair Exchange Customer’s misbehavior does not
create problem Unless proper amount is credited to
merchant’s bank, merchant does not send decryption key
If customer maliciously claims merchant’s misbehavior, customer needs to produce
PO,Ciprv , CC PO ,Ciprv , CC PO ,Ciprv ,M prv ,P,Bprv , CC P ,Bprv
![Page 36: An Anonymous Fair- Exchange E-Commerce Protocol Indrajit Ray Computer Science Department Colorado State University indrajit@cs.colostate.edu.](https://reader036.fdocuments.us/reader036/viewer/2022062421/56649db05503460f94a9e608/html5/thumbnails/36.jpg)
Analysis of Fair Exchange Merchant may not send decryption key
after receiving payment Customer complains to trusted third
party by producing
If claim substantiated, trusted third party can provide customer with m
PO,Ciprv , CC PO ,Ciprv , CC PO ,Ciprv ,M prv ,P,Bprv , CC P ,Bprv
![Page 37: An Anonymous Fair- Exchange E-Commerce Protocol Indrajit Ray Computer Science Department Colorado State University indrajit@cs.colostate.edu.](https://reader036.fdocuments.us/reader036/viewer/2022062421/56649db05503460f94a9e608/html5/thumbnails/37.jpg)
Analysis of Cross-Validation Customer validates ,downloaded
from trusted third party with received from merchant Recall
Pays if and only if the validation is successful
m,K1 K2 ˆ m ,K1 modN1 iff m ˆ m
m,K1
m,K1 K2
![Page 38: An Anonymous Fair- Exchange E-Commerce Protocol Indrajit Ray Computer Science Department Colorado State University indrajit@cs.colostate.edu.](https://reader036.fdocuments.us/reader036/viewer/2022062421/56649db05503460f94a9e608/html5/thumbnails/38.jpg)
Analysis of Anonymity No single party has enough information
to link customer to merchant No collusion is possible which will result
in the disclosure of this information. To collude, two parties Must know each other’s identity and Must have some common piece of
information pertaining to the transaction
![Page 39: An Anonymous Fair- Exchange E-Commerce Protocol Indrajit Ray Computer Science Department Colorado State University indrajit@cs.colostate.edu.](https://reader036.fdocuments.us/reader036/viewer/2022062421/56649db05503460f94a9e608/html5/thumbnails/39.jpg)
Analysis of AnonymityInformation Customer’s Bank Merchant’s Bank Merchant Third Party
Customer’s ID Yes No No No
Cust. Bank’s ID Yes Yes No No
Merc. Bank’s ID No Yes Yes No
Merchant’s ID No Yes Yes No
Third Party’s ID No No Yes Yes
Cust. Account Yes No No No
Merc. Account No Yes Yes No
Purchase Order No No Yes Maybe
Cipub No No Yes Maybe
Cpub Yes No No No
No No Yes Maybe
No No Yes Yes
No No Yes Maybe
Payment token Yes Yes Yes Maybe
m,K1 K2
K1,K1 1
K2 1
![Page 40: An Anonymous Fair- Exchange E-Commerce Protocol Indrajit Ray Computer Science Department Colorado State University indrajit@cs.colostate.edu.](https://reader036.fdocuments.us/reader036/viewer/2022062421/56649db05503460f94a9e608/html5/thumbnails/40.jpg)
Conclusions Fair Exchange protocol that ensures
cross validation of product as well as anonymity of customer
Minimal use of trusted third party Used only when something goes wrong
![Page 41: An Anonymous Fair- Exchange E-Commerce Protocol Indrajit Ray Computer Science Department Colorado State University indrajit@cs.colostate.edu.](https://reader036.fdocuments.us/reader036/viewer/2022062421/56649db05503460f94a9e608/html5/thumbnails/41.jpg)
Questions