Digital Payment System Using X - ANUcourses.cecs.anu.edu.au/courses/CS_PROJECTS/10S2/Final...

Digital Payment System Using X.509

Supervisor: Ken Taylor (CSIRO)

Student: Tim Mathas

What makes up a single point of control payment system?

Redeemer Creator

Transaction Database

Buyer Seller


What makes up a decentralised payment system?

Registrar

Token Owner


Redeemer

Exchanger

Creator

Assigner

Decentralised payment system

Payment system properties

Authentication

Integrity

Prevention of double spending

Single ownership

Digital Payment System With X.509

What is X.509?

Establishes trust for web sites

Certificate Issuer: A Subject: B

Certificate Issuer: B Subject: D

Certificate Issuer: B Subject: C

Certificate Issuer: B Subject: E

endorses 1

3 4 2


What is X.509?

Contents

Certificate Data

Subject Information

Issuer Information

Hash algorithm

Extensions

Certificate Signature Algorithm

Certificate Signature


What is X.509?

Contents Digital Signature Creation

Certificate Data

Subject Information

Issuer Information

Hash algorithm

Extensions

Certificate Signature Algorithm

Certificate Signature

H

E

Issuer’s

private

key

Issuer

Unsigned certificate- Contents: <any data>, user’s public key

Hash of unsigned certificate

Signed certificate- Recipient can verify signature using Issuer’s public key


What is X.509?

Creation Verification

H

E

Issuer’s

private

key

Issuer

Unsigned certificate- Contents: <any data>, user’s public key

Hash of unsigned certificate


H

Issuer’s

public key Hash of unsigned certificate


D


How good a fit is X.509 for payment systems?

Authentication

Integrity


Single ownership


How good a fit is X.509 for payments systems?

Authentication

Integrity


Single ownership


First attempt

Certificate Issuer: CA Subject: CA

Certificate Issuer: CA Subject: Ian

a

d

b

Issuer Certificates

Certificate

Token

Issuer: Ian #1001 Subject: Simon

Certificate

Certificate

c

Issuer: CA Subject: Simon

e

Token Creation Certificate

Issuer: Ian Subject: Ian #1001 Token Type: IanToken Token Qty: 200 … other information …

Token Chain Certificates


Registrar: Double spending example

Certificate Issuer: Alex Subject: Alex

Certificate

Token

Issuer: Alex Subject: Alex #1001 Token Type: AlToken Token Qty: 200 … other information …

Issuer: Alex #1001 Subject: Bob

a

b

c d

Certificate

Id

Certificate

Id

Issuer: Alex #1001 Subject: Claire

Alex attempting to issue the same certificate to Bob and Claire


Problem with first attempt


Certificate

Token

Certificate

Token





a

c b

d e

f

Certificate

Certificate

Certificate Issuer: Bob Subject: Claire

Chain: C1

Chain: C2


Second attempt


Certificate

Token

Certificate

Token



Issuer: Alex #1001 Subject: Bob Id: <Alex, Alex #1001>

a

c b

d e

f

Certificate

Id

Certificate

Id

Issuer: Bob Subject: Claire Id: <Alex #1001 pub key>

Chain: C1

Chain: C2

Certificate

Id

Issuer: Alex #1002 Subject: Bob Id: <Alex #1002 pub key>


Final attempt


Certificate

Token

Certificate

Token



Issuer: Alex #1001 Subject: Bob Id: <Alex, Alex #1001> PositionInChain: 1

a

c b

d e

f

Certificate

Id

Certificate

Id

Issuer: Bob Subject: Claire Id: <Alex #1001 pub key> PositionInChain: 2

Chain: C1

Chain: C2

Certificate

Id

Issuer: Alex #1002 Subject: Bob Id: <Alex #1002 pub key> PositionInChain: 1


How good a fit is our modified X.509 for payment systems?

Authentication

Integrity


Single ownership


Digital Payment System Using X - ANUcourses.cecs.anu.edu.au/courses/CS_PROJECTS/10S2/Final...

Documents

Transcript of Digital Payment System Using X - ANUcourses.cecs.anu.edu.au/courses/CS_PROJECTS/10S2/Final...