On the security of a multi-party certified email protocol (2004) [4 citations — 1 self]
Abstract:
As a value-added service to deliver important data over the Internet with guaranteed receipt for each successful delivery, certified email has been discussed for years and a number of research papers appeared in the literature. But most of them deal with the two-party scenarios, i.e., there are only one sender and one recipient. In some applications, however, the same certified message may need to be sent to a set of recipients. In ISC’02, Ferrer-Gomila et. al. presented a multi-party certified email protocol [5]. It has two major features. A sender could notify multiple recipients of the same information while only those recipients who acknowledged are able to get the information. In addition, its exchange protocol is optimized, which has only three steps. In this paper, we demonstrate some flaws and weaknesses in that protocol, and propose an improved version which is robust against the identified attacks while preserving the features of the original protocol.
Citations
| 788 | A public key cryptosystem and a signature scheme based on discrete logarithms – Elgamal - 1985 |
| 110 | A fair non-repudiation protocol – Zhou, Gollmann - 1996 |
| 55 | Practical protocols for certified electronic mail – Deng, Gong, et al. - 1996 |
| 23 | Certified electronic mail – Zhou, Gollmann - 1996 |
| 22 | Certified email with a light on-line trusted third party: Design and implementation – Abadi, Glew, et al. - 2002 |
| 15 | TRICERT: A distributed certified E-mail scheme – Ateniese, Medeiros, et al. - 2001 |
| 10 | A multi-party non-repudiation protocol – Kremer, Markowitch - 2000 |
| 8 | A multi-party optimistic non-repudiation protocol – Markowitch, Kremer - 2000 |
| 5 | A Realistic Protocol for Multi-Party Certified Electronic Mail – Ferrer-Gomila, Payeras-Capella, et al. - 2002 |
| 3 | Certified electronic mail protocol resistant to a minority of malicious third parties – Mut-Puigserver, Ferrer-Gomila, et al. - 2000 |
