Presentation is loading. Please wait.

Presentation is loading. Please wait.

IKP: i-Key-Protocol Christopher Hsu 2/23/2019.

Published byAlyson Hudson Modified over 5 years ago

Similar presentations

Presentation on theme: "IKP: i-Key-Protocol Christopher Hsu 2/23/2019."— Presentation transcript:

1 iKP: i-Key-Protocol Christopher Hsu 2/23/2019

2 What is iKP? i-Key-Protocol, i = 1, 2, 3, … Family of protocols
Secure electronic payment Based on credit card payments Can be extended to debit card and check payments 2/23/2019

3 History of iKP 1995, IBM Research Labs Zurich and Watson Research Centre Open industry standard Incorporated into SEPP, SET ZiP: fully operational prototype Did not become commercial product But has been deployed in some businesses 2/23/2019

4 Initial Assumptions Only partial privacy is emphasized
Encryption not used in protocol Can be implemented by other means Or protocol can be extended iKP emphasizes the payment Assumes purchase order is already known 2/23/2019

5 Parties and Attackers Three parties: Acquirer (A), Merchant (M), Customer (C) Three attackers: eavesdropper, active attacker, insider 2/23/2019

6 Acquirer Requirements
A1. Proof of transaction authorization of customer A2. Proof of transaction authorization by merchant 2/23/2019

7 Merchant Requirements
M1. Proof of transaction authorization by acquirer M2. Proof of transaction authorization by customer 2/23/2019

8 Customer Requirements
C1. Unauthorized payment is impossible C2. Proof of transaction authorization by acquirer C3. Certification and authentication of merchant C4. Receipt from merchant 2/23/2019

9 Extra Customer Requirements
C5. Privacy C6. Anonymity 2/23/2019

10 Components of the Protocol
Keys: PKX, SKX, CERTX Cryptography: H(.), EX(.), SX(.) Quantities: SALTC, PRICE, DATE, NONCEM, IDM, TIDM, DESC, CAN, RC, CID, Y/N, PIN, V Discuss 1KP in detail, comparison with 2KP and 3KP 2/23/2019

11 1KP Protocol Flow Initiate: CM Invoice: CM Payment: CM
Auth-Request: MA Auth-Response: MA Confirm: CM SALTC, CID Clear EncSlip Clear, H(DESC,SALTC), EncSlip Y/N, SigA Common: PRICE, IDM, TIDM, DATE, NONCEM, CID, H(DESC,SALTC) Clear: IDM, TIDM, DATE, NONCEM, H(Common) SLIP: PRICE, H(Common), CAN, RC, [PIN] EncSlip: EA(SLIP) SigA: SA(Y/N, H(Common)) 2/23/2019

12 Removing Nonce and Date
Initiate: CM Invoice: CM Payment: CM Auth-Request: MA Auth-Response: MA Confirm: CM SALTC, CID Clear EncSlip* Clear, H(DESC,SALTC), EncSlip* Y/N, SigA Common: PRICE, IDM, TIDM, DATE, NONCEM, CID, H(DESC,SALTC) Clear: IDM, TIDM, DATE, NONCEM, H(Common) SLIP: PRICE, H(Common), CAN, RC, [PIN] EncSlip: EA(SLIP) SigA: SA(Y/N, H(Common)) 2/23/2019

13 Removing SALTC Initiate: CM Invoice: CM Payment: CM
Auth-Request: MA Auth-Response: MA Confirm: CM SALTC, CID Clear EncSlip Clear, H(DESC,SALTC), EncSlip Y/N, SigA Common: PRICE, IDM, TIDM, DATE, NONCEM, CID, H(DESC,SALTC) Clear: IDM, TIDM, DATE, NONCEM, H(Common) SLIP: PRICE, H(Common), CAN, RC, [PIN] EncSlip: EA(SLIP) SigA: SA(Y/N, H(Common)) 2/23/2019

14 Removing SALTC: Invariant
-- Intruder never knows desc and salt from same customer invariant "Intruder does not know DESC" forall i: IntruderId do forall j: CustomerId do !int[i].descs[j] | !int[i].salts[j] end end; 2/23/2019

15 What is not fulfilled? Acquirer’s proof of transaction authorization by merchant Merchant’s proof of transaction authorization by customer Customer’s certification and authentication of merchant Customer’s receipt from merchant 2/23/2019

16 2KP and 3KP Satisfies deficiencies of 1KP
Differs in the number of public keys available Guarantees more undeniable receipts for the transaction 2/23/2019

17 2KP Protocol Flow Initiate: CM Invoice: CM Payment: CM
Auth-Request: MA Auth-Response: MA Confirm: CM SALTC, CID Clear, SigM, CERTM EncSlip Clear, H(DESC,SALTC), EncSlip, SigM, CERTM Y/N, SigA Y/N, V, SigA Common: PRICE, IDM, TIDM, DATE, NONCEM, CID, H(DESC,SALTC), H(V) Clear: IDM, TIDM, DATE, NONCEM, H(V), H(Common) SLIP: PRICE, H(Common), CAN, RC EncSlip: EA(SLIP) SigA: SA(Y/N, H(Common)) SigM: SM(H(Common), H(V)) 2/23/2019

18 2KP Additions Merchant has public/private key and certificate
Acquirer has certification and authentication of merchant Customer has certification and authentication of merchant Customer has receipt from merchant 2/23/2019

19 3KP Protocol Flow Initiate: CM Invoice: CM Payment: CM
Auth-Request: MA Auth-Response: MA Confirm: CM SALTC, CID, CERTC Clear, SigM EncSlip, SigC Clear, H(DESC,SALTC), EncSlip, SigM, SigC Y/N, SigA Y/N, V, SigA Common: PRICE, IDM, TIDM, DATE, NONCEM, CID, H(DESC,SALTC), H(V) Clear: IDM, TIDM, DATE, NONCEM, H(V), H(Common) SLIP: PRICE, H(Common), CAN, RC EncSlip: EA(SLIP) SigA: SA(Y/N, H(Common)) SigM: SM(H(Common), H(V)) SigC: SC(EncSlip, H(Common)) 2/23/2019

20 3KP Additions Customer has public/private key and certificate
Merchant has proof of transaction authorization by customer 2/23/2019

21 iKP Comparison Overview
Requirements / Protocols 1KP 2KP 3KP A1. Proof of Transaction Authorization by Customer * ** A2. Proof of Transaction Authorization by Merchant M1. Proof of Transaction Authorization by Acquirer M2. Proof of Transaction Authorization by Customer C1. Unauthorized Payment is Impossible C2. Proof of transaction Authorization by Acquirer C3. Certification and Authentication of Merchant C4. Receipt from Merchant 2/23/2019

22 iKP Summary 1KP: simple, merchant is not authenticated, order and receipt are deniable 2KP: merchant is authenticated 3KP: non-repudiation for all messages Intended for gradual deployment 2/23/2019

23 Bibliography Bellare, Mihir et al. Design, Implementation and Deployment of the iKP Secure Electronic Payment System. IEEE Journal of Selected Areas in Communications, VOL 18, NO. 4, April 2000. Bellare, Mihir et al. iKP – A Family of Secure Electronic Payment Protocols 2/23/2019

Download ppt "IKP: i-Key-Protocol Christopher Hsu 2/23/2019."

Similar presentations

Chapter 10 Encryption: A Matter of Trust. Awad –Electronic Commerce 1/e © 2002 Prentice Hall 2 OBJECTIVES What is Encryption? Basic Cryptographic Algorithm.

Chapter 10 Encryption: A Matter of Trust. Awad –Electronic Commerce 1/e © 2002 Prentice Hall 2 OBJECTIVES What is Encryption? Basic Cryptographic Algorithm.
Atomic Transactions CS523 - Spring 2006 - Brian Schmidt.

Atomic Transactions CS523 - Spring Brian Schmidt.
Zenith Visa Web Acquiring A quick over view. Web Acquiring Allows merchants to receive payments for goods and services through the Internet Allows customers.

Zenith Visa Web Acquiring A quick over view. Web Acquiring Allows merchants to receive payments for goods and services through the Internet Allows customers.
Cryptography and Network Security

Cryptography and Network Security
SECURITY IN E-COMMERCE VARNA FREE UNIVERSITY Prof. Teodora Bakardjieva.

SECURITY IN E-COMMERCE VARNA FREE UNIVERSITY Prof. Teodora Bakardjieva.
Chapter 13 Paying Via The Net. Agenda Digital Payment Requirements Fraud Detection Online Payment Methods Online Payment Types The Future Payment.

Chapter 13 Paying Via The Net. Agenda Digital Payment Requirements Fraud Detection Online Payment Methods Online Payment Types The Future Payment.
Electronic Transaction Security (E-Commerce)

Electronic Transaction Security (E-Commerce)
Chapter 8 Web Security.

Chapter 8 Web Security.
Electronic Commerce. On-line ordering---an e-commerce application On-line ordering assumes that: A company publishes its catalog on the Internet; Customers.

Electronic Commerce. On-line ordering---an e-commerce application On-line ordering assumes that: A company publishes its catalog on the Internet; Customers.
Secure Electronic Transactions (SET). SET SET is an encryption and security specification designed to protect credit card transactions on the Internet.

Secure Electronic Transactions (SET). SET SET is an encryption and security specification designed to protect credit card transactions on the Internet.
IKP Secure Electronic Payment System Presented by Jinping Li.

IKP Secure Electronic Payment System Presented by Jinping Li.
1 Design, Implementation and Deployment of the iKP Secure Electronic Payment System Mihir Bellare, Juan A. Garay et al. “ … At this day and age it is hardly.

1 Design, Implementation and Deployment of the iKP Secure Electronic Payment System Mihir Bellare, Juan A. Garay et al. “ … At this day and age it is hardly.
Supporting Technologies III: Security 11/16 Lecture Notes.

Supporting Technologies III: Security 11/16 Lecture Notes.
BZUPAGES.COM Electronic Payment Systems Most of the electronic payment systems on internet use cryptography in one way or the other to ensure confidentiality.

BZUPAGES.COM Electronic Payment Systems Most of the electronic payment systems on internet use cryptography in one way or the other to ensure confidentiality.
May 28, 2002Mårten Trolin1 Protocols for e-commerce Traditional credit cards SET SPA/UCAF 3D-Secure Temporary card numbers Direct Payments.

May 28, 2002Mårten Trolin1 Protocols for e-commerce Traditional credit cards SET SPA/UCAF 3D-Secure Temporary card numbers Direct Payments.
Secure Electronic Transaction (SET)

Secure Electronic Transaction (SET)
1 Web Security Web now widely used by business, government, individuals but Internet & Web are vulnerable have a variety of threats –integrity –confidentiality.

1 Web Security Web now widely used by business, government, individuals but Internet & Web are vulnerable have a variety of threats –integrity –confidentiality.
Network Security Lecture 26 Presented by: Dr. Munam Ali Shah.

Network Security Lecture 26 Presented by: Dr. Munam Ali Shah.
Chapter 4 Getting Paid. Objectives Understand electronic payment systems Know why you need a merchant account Know how to get a merchant account Explain.

Chapter 4 Getting Paid. Objectives Understand electronic payment systems Know why you need a merchant account Know how to get a merchant account Explain.
E-Commerce Security Professor: Morteza Anvari Student: Xiaoli Li Student ID: 102088 March 10, 2001.

E-Commerce Security Professor: Morteza Anvari Student: Xiaoli Li Student ID: March 10, 2001.

Similar presentations

Ads by Google