Design, implementation, and deployment of the iKP secure electronic payment system (2000) [19 citations — 3 self]

Download:

by Mihir Bellare, Juan A. Garay, Ralf Hauser, Amir Herzberg, Hugo Krawczyk, Gene Tsudik, Els Van Herreweghen, Michael Waidner, Michael Steiner, Michael Steiner, Fachbereich Informatik, Universitit Des Saarl

IEEE Journal on Selected Areas in Communications

http://www.semper.org//sirene//lit/../publ/BGHH_00iKPZIP.ps.gz

Add To MetaCart

Popular Tags

No tags have been applied to this document.

BibTeX | Add To MetaCart

@ARTICLE{Bellare00design,implementation,,
    author = {Mihir Bellare and Juan A. Garay and Ralf Hauser and Amir Herzberg and Hugo Krawczyk and Gene Tsudik and Els Van Herreweghen and Michael Waidner and Michael Steiner and Michael Steiner and Fachbereich Informatik and Universitit Des Saarl},
    title = {Design, implementation, and deployment of the iKP secure electronic payment system},
    journal = {IEEE Journal on Selected Areas in Communications},
    year = {2000},
    volume = {18},
    pages = {611--627}
}

Abstract:

the Abstract--This paper discusses the design implementation and deployment of a secure and practical payment system for electronic commerce on the Internet. The system is based on the iKP family of protocols- i---- 1,2, 3- developed at IBM Research. The protocols implement credit cardbased transactions between buyers and merchants while the existing financial network is used for payment clearing and authorization. The protocols are extensible and can be readily applied to other account-based payment models such as debit cards. They are based on careful and minimal use of public-key cryptography and can be implemented in either software or hardware. Individual protocols differ in both complexity and degree of security. In addition to being both a pre-cursor and a direct ancestor

Citations

906	Security Architecture for the Internet Protocol – Kent, Atkinson - 1998
547	The MD5 Message-Digest Algorithm – RIVEST - 1992
374	A practical public key cryptosystem provably secure against adaptive chosen ciphertext attack – Cramer, Shoup - 1998
352	Keying hash functions for message authentication – Bellare, Canetti, et al. - 1996
243	The TLS Protocol Version 1.0 – Dierks, Allen - 1999
235	Why cryptosystems fail – Anderson - 1994
211	Optimistic fair exchange of digital signatures – Asokan, Shoup, et al. - 1998
167	Firewalls and Internet Security: Repelling the Wily Hacker – Cheswick, Bellovin - 1994
151	Optimal Asymmetric Encryption – How to Encrypt with RSA – Bellare, Rogaway - 1995
115	Asynchronous protocols for optimistic fair exchange – Asokan, Shoup, et al. - 1998
113	unknown title – ISOIEC - 1994
111	The ssl protocol version 3.0 – Freier, Karlton, et al. - 1996
89	The MD5 message-digest algorithm. Internet Request for Comments – Rivest - 1992
88	Public-key cryptography and password protocols – Halevi, Krawczyk - 1999
83	The Millicent protocol for inexpensive electronic commerce – Glassman, Manasse, et al. - 1995
51	Fairness in Electronic Commerce – Asokan - 1998
45	Micro-payments based on iKP – Hauser, Steiner, et al. - 1996
40	The state of the art in electronic payment systems – Asokan, Janson, et al. - 1997
28	unknown title – NIST - 1995
18	Development of a Secure Electronic Marketplace for Europe – Waidner - 1996
9	Design and implementation of modular key management protocol and IP secure tunnel on AIX – Chen, Garay, et al. - 1995
8	Secure Electronic Transactions Protocol, version 1.0 edition – Mastercard, Visa - 1997
3	Blinding of credit card numbers in the SET protocol – Krawczyk
3	iKP Prototype (ZIP): iKP Transaction Layer Functional Specification – Larsen, Zurich - 1996
3	iKP Prototype (ZIP): Cryptographic Library Specification", Working document, available from M. Steiner: sti@zurich.ibm.com [5] E. Van Herreweghen, "Zurich iKP Prototype (ZIP): Certificate Library Specification", Working document, available – Steiner, Zurich - 1996
2	Joint electronic payment initiative (jepi),” White paper, JEPI – Chung, Dardailler - 1997
2	Cyber view: How to steal millions in champ change – Wallich - 1999
2	Final report of project SEMPER," Deliverable D13 of ACTS project AC026 – Consortium - 1999
2	Tsudik, "Zfirich iKP prototype: Protocol specification document – Gene - 1996
2	is an associate professor at the Department of Electrical Engineering, Technion, Israel, and a visiting scientist at the IBM T.J. Watson Research Center. He received his Ph.D. in Computer Science from the Technion – Krawczyk - 1990
2	Caray received his Ph.D. in Computer Science from Penn State University in 1989. He also holds the degree of Electrical Engineer from the Universidad Nacional de Rosario in Argentina, and a Master's in EE from the Netherlands Universities Foundation (PII) – Juan - 1998
2	received the B.Sc. (Computer Engineering), M.Sc. (Electrical Engineering) and D.Sc – Herzberg - 1982
2	he is with the IBM Research Division, currently as manager of the EBusiness and Security Department at the Haifa Research Lab. Previously he managed Network Security at the Watson Research Center. He has authored numerous papers and patents. His research – Since - 1991
2	received a Diplorn in computer science from the Swiss Federal Institute of Technology (ETH) in 1992 and expects to receive a Ph.D. in computer science from the Universit&t des Saarlandes, Saarbrbcken. Gene Tsudlk is a project leader at USC/ISI and a resea – He
2	received a Ph.D. in Computer Science from USC in 1991 and spent the next five years at IBM Research working on secure systems, protocols, mobile networks and electronic commerce. At USC, he teaches courses in Cryptography, Computer Security and Wireless N – He
2	Herreweghen received a degree in Chemical Engineering (Ingenieur Scheikunde en Landbouwindustrien) and a Master's degree – Van - 1992
2	she has been a Research Staff Member in the Network Security group at the IBM Zurich Research Laboratory, Switzerland. Her current research focuses on security issues related to electronic commerce. Michael Waidner is the manager of the network security r – Since - 1992
2	Design, Implementation and Deployment of the iKP – AL - 1998
2	iKP prototype: Protocol speci cation document – Tsudik, \Zurich - 1996
2	holds a M.Sc. in Computer Science from the University ofToronto and a Ph.D. from the University of Zurich. From 1992-1995 he worked as a researcher with the IBM Research Laboratory in Zurich in the eld of network security and since, he is a consultant wit – Hauser - 1998
2	received a Diplom in computer science from the Swiss Federal Institute of Technology (ETH) in 1992 and expects to receive a Ph.D. in computer science from the Universitat des Saarlandes, Saarbrucken. Gene Tsudik is a project leader at USC/ISI and a resear – He
1	1] Paul Wallich, “Cyber view: How to steal millions in champ At Europay’s Annual Members’ Meeting in Seville – Deployment - 1996
1	The SSL pre-loaded Europay CLIP purse card to make secure internet payments from a card reader-equipped terminal. The payment scheme used was an integration of CLIP card [4] protocol: Version 3.0 – Freier, Kariton, et al. - 1996
1	State of the art in electronic payment systems,” IEEE Coma trial with 5 on-line merchants and 2000 users. Each user puter – Asokan, Janson, et al. - 1997
1	also the payment technology behind the I-Pay payment product offered by Interpay Nederland and the [8] William R – is - 1994
1	I-Pay was launched as a trial in June 1996, offering debit-type purchases from twenty on-line shops, using ZiP-3KP. Later, Eurocard/Mastercard credit card pay[9] Pau-Chen – banks
1	An errata sheet, distributed at the conference, is available at [32 – Asokan, Shoup, et al.
1	number 1403 [11] N – EUROCRYPT - 1998
1	Blinding of credit card numbers in the SET II History and Related Work 2 protocol – Krawczyk
1	The iKP Protocol Family 6 [17] Ronald Cramer and Victor Shoup, “A practical public key V-A 1KP – unknown authors - 1998

View or Download | Add to My Collection | Correct Errors