research-article

Anonymous Split E-Cash—Toward Mobile Anonymous Payments

Authors:

Ingrid VerbauwhedeAuthors Info & Claims

ACM Transactions on Embedded Computing Systems (TECS), Volume 14, Issue 4

Article No.: 85, Pages 1 - 25

https://doi.org/10.1145/2783439

Published: 09 September 2015 Publication History

Abstract

Anonymous E-Cash was first introduced in 1982 as a digital, privacy-preserving alternative to physical cash. A lot of research has since then been devoted to extend and improve its properties, leading to the appearance of multiple schemes. Despite this progress, the practical feasibility of E-Cash systems is still today an open question. Payment tokens are typically portable hardware devices in smart card form, resource constrained due to their size, and therefore not suited to support largely complex protocols such as E-Cash. Migrating to more powerful mobile platforms, for instance, smartphones, seems a natural alternative. However, this implies moving computations from trusted and dedicated execution environments to generic multiapplication platforms, which may result in security vulnerabilities. In this work, we propose a new anonymous E-Cash system to overcome this limitation. Motivated by existing payment schemes based on MTM (Mobile Trusted Module) architectures, we consider at design time a model in which user payment tokens are composed of two modules: an untrusted but powerful execution platform (e.g., smartphone) and a trusted but constrained platform (e.g., secure element). We show how the protocol’s computational complexity can be relaxed by a secure split of computations: nonsensitive operations are delegated to the powerful platform, while sensitive computations are kept in a secure environment. We provide a full construction of our proposed Anonymous Split E-Cash scheme and show that it fully complies with the main properties of an ideal E-Cash system. Finally, we test its performance by implementing it on an Android smartphone equipped with a Java-Card-compatible secure element.

References

[1]

Federal Information Processing Standards Publication 197. 2001. Specification for the Advanced Encryption Standard (AES). Retrieved from http://csrc.nist.gov/publications/fips/fips197/fips-197.pdf.

[2]

Josep Balasch. 2008. Smart Card Implementation of Anonymous Credentials. Master’s thesis. Katholieke Universiteit Leuven (KU Leuven).

[3]

Lejla Batina, Jaap-Henk Hoepman, Bart Jacobs, Wojciech Mostowski, and Pim Vullers. 2010. Developing efficient blinded attribute certificates on smart cards via pairings. In Smart Card Research and Advanced Application (CARDIS’10) (Lecture Notes in Computer Science), Dieter Gollmann, Jean-Louis Lanet, and Julien Iguchi-Cartigny (Eds.), Vol. 6035. Springer, 209--222.

Digital Library

[4]

Patrik Bichsel, Jan Camenisch, Thomas Groß, and Victor Shoup. 2009. Anonymous credentials on a standard Java Card. In Conference on Computer and Communications Security (CCS’09), Ehab Al-Shaer, Somesh Jha, and Angelos D. Keromytis (Eds.). ACM, 600--610.

Digital Library

[5]

Stefan Brands. 1994. Untraceable Off-line Cash in Wallets with Observers (Extended Abstract). In Advances in Cryptology (CRYPTO’93) (LNCS), Douglas R. Stinson (Ed.), Vol. 773. Springer, 302--318.

Digital Library

[6]

Stefan Brands. 2000. Rethinking Public Key Infrastructures and Digital Certificates: Building in Privacy. Master’s thesis. MIT Press.

Digital Library

[7]

Ernest F. Brickell, Jan Camenisch, and Liqun Chen. 2004. Direct anonymous attestation. In ACM Conference on Computer and Communications Security. 132--145.

Digital Library

[8]

Jan Camenisch and Els Van Herreweghen. 2002. Design and implementation of the idemix anonymous credential system. In Conference on Computer and Communications Security (CCS’02), Vijayalakshmi Atluri (Ed.). ACM, 21--30.

Digital Library

[9]

Jan Camenisch, Susan Hohenberger, and Anna Lysyanskaya. 2005. Compact E-Cash. In Advances in Cryptology (EUROCRYPT’05) (LNCS), Ronald Cramer (Ed.), Vol. 3494. Springer, 302--321.

Digital Library

[10]

Jan Camenisch, Anja Lehmann, Gregory Neven, and Alfredo Rial. 2014. Privacy-preserving auditing for attribute-based credentials. In Computer Security (ESORICS’14). Springer, 109--127.

[11]

Jan Camenisch and Anna Lysyanskaya. 2001. An efficient system for non-transferable anonymous credentials with optional anonymity revocation. In Advances in Cryptology (EUROCRYPT’01), International Conference on the Theory and Application of Cryptographic Techniques, Innsbruck, Austria, May 6-10, 2001, Proceeding (Lecture Notes in Computer Science), Birgit Pfitzmann (Ed.), Vol. 2045. Springer, 93--118.

Digital Library

[12]

Jan Camenisch, Anna Lysyanskaya, and Mira Meyerovich. 2007. Endorsed E-Cash. In IEEE Symposium on Security and Privacy. IEEE Computer Society, 101--115.

Digital Library

[13]

Sébastien Canard and Aline Gouget. 2007. Divisible E-Cash systems can be truly anonymous. In Advances in Cryptology (EUROCRYPT’07) (LNCS), Moni Naor (Ed.), Vol. 4515. Springer, 482--497.

Digital Library

[14]

Sébastien Canard and Aline Gouget. 2008. Anonymity in transferable E-cash. In ACNS (Lecture Notes in Computer Science), Steven M. Bellovin, Rosario Gennaro, Angelos D. Keromytis, and Moti Yung (Eds.), Vol. 5037. 207--223.

Digital Library

[15]

Sébastien Canard, Aline Gouget, and Jacques Traoré. 2008. Improvement of efficiency in (unconditional) anonymous transferable E-Cash. In Financial Cryptography (Lecture Notes in Computer Science), Gene Tsudik (Ed.), Vol. 5143. Springer, 202--214.

Digital Library

[16]

David Chaum. 1983. Blind signatures for untraceable payments. In Advances in Cryptology: Proceedings of CRYPTO’82, David Chaum, Ronald L. Rivest, and Alan T. Sherman (Eds.). Plenum Press, 199--203.

[17]

Chipknip. 2014. An offline smartcard payment system. Retrieved from http://www.chipknip.nl.

[18]

Efrén Clemente-Cuervo, Francisco Rodríguez-Henríquez, Daniel Ortiz Arroyo, and Levent Ertaul. 2007. A PDA implementation of an off-line E-Cash protocol. In Proceedings of the 2007 International Conference on Security and Management (SAM’07), Selim Aissi and Hamid R. Arabnia (Eds.). CSREA Press, 452--458.

[19]

Common Criteria. 2014. Homepage. Retreived from: http://www.commoncriteriaportal.org.

[20]

Ivan Damgård and Eiichiro Fujisaki. 2002. A statistically-hiding integer commitment scheme based on groups with hidden order. In ASIACRYPT. 125--142.

Digital Library

[21]

David Derler, Klaus Potzmader, Johannes Winter, and Kurt Dietrich. 2011. Anonymous ticketing for NFC-enabled mobile phones. In Trusted Systems (INTRUST’11) (Lecture Notes in Computer Science), Liqun Chen, Moti Yung, and Liehuang Zhu (Eds.), Vol. 7222. Springer, 66--83.

Digital Library

[22]

Yevgeniy Dodis and Aleksandr Yampolskiy. 2005. A verifiable random function with short proofs and keys. In Public Key Cryptography. 416--431.

Digital Library

[23]

EMVCo. 2014. The EMV standards body. Retrieved from http://www.emvco.com.

[24]

Geldkarte. 2014. An offline smartcard payment system. Retrieved from http://www.geldkarte.de.

[25]

Gesine Hinterwälder, Christof Paar, and Wayne P. Burleson. 2013a. Privacy preserving payments on computational RFID devices with application in intelligent transportation systems. In Radio Frequency Identification. Security and Privacy Issues (RFIDSec’12) (Lecture Notes in Computer Science), Jaap-Henk Hoepman and Ingrid Verbauwhede (Eds.), Vol. 7739. Springer, 109--122.

Digital Library

[26]

Gesine Hinterwälder, Christian T. Zenger, Foteini Baldimtsi, Anna Lysyanskaya, Christof Paar, and Wayne P. Burleson. 2013b. Efficient E-Cash in practice: NFC-based payments for public transportation systems. In Privacy Enhancing Technologies (PETS’13) (Lecture Notes in Computer Science), Emiliano De Cristofaro and Matthew Wright (Eds.), Vol. 7981. Springer, 40--59.

[27]

Benjamin Ransford, Kevin Fu, Hong Zhang, Jeremy Gummeson. 2011. Moo: A Batteryless Computational RFID and Sensing Platform. Technical Report. University of Massachusetts Computer Science.

[28]

ISO 7816-3. 2006. Smart card standard: Cards with contacts. Electrical interface and transmission protocols. (last updated: 2006).

[29]

ISO 7816-4. 2005. Smart card standard: Organization, security and commands for interchange. (last updated: 2005).

[30]

Paul C. Kocher, Joshua Jaffe, and Benjamin Jun. 1999. Differential power analysis. In Proceedings of the 19th Annual International Cryptology Conference on Advances in Cryptology (CRYPTO’99). Springer-Verlag, 388--397.

Digital Library

[31]

Alfred J. Menezes, Scott A. Vanstone, and Paul C. Van Oorschot. 1996. Handbook of Applied Cryptography. CRC Press, Boca Raton, FL.

Digital Library

[32]

Wojciech Mostowski and Pim Vullers. 2011. Efficient U-prove implementation for anonymous credentials on smart cards. In Security and Privacy in Communication Networks (SecureComm’11) (Lecture Notes of the Institute for Computer Sciences, Social Informatics and Telecommunications Engineering), Muttukrishnan Rajarajan, Fred Piper, Haining Wang, and George Kesidis (Eds.), Vol. 96. Springer, 243--260.

[33]

Tatsuaki Okamoto. 1995. An efficient divisible electronic cash scheme. In CRYPTO (Lecture Notes in Computer Science), Don Coppersmith (Ed.), Vol. 963. Springer, 438--451.

Digital Library

[34]

PROTON. 2014. An offline smartcard payment system. Retrieved from http://mypaymentsolution.be/index/en_US/5118014/5126207/Proton.htm.

[35]

SEEK. 2014. Secure Element Evaluation Kit for the Android platform. Retrieved from http://code.google.com/p/seek-for-android.

[36]

Michal Sterckx, Benedikt Gierlichs, Bart Preneel, and Ingrid Verbauwhede. 2009. Efficient implementation of anonymous credentials on Java Card smart cards. In 1st IEEE International Workshop on Information Forensics and Security (WIFS’09). IEEE, 106--110.

[37]

Eric R. Verheul. 2001. Self-blindable credential certificates from the Weil pairing. In Advances in Cryptology (ASIACRYPT’01) (Lecture Notes in Computer Science), Colin Boyd (Ed.), Vol. 2248. Springer, 533--551.

Digital Library

[38]

Visa payWave. 2014. Mobile payments. Retrieved from https://developer.visa.com/paywavemobile.

Cited By

Leszczyna R(2024)Activity-based payments: alternative (anonymous) online payment modelInternational Journal of Information Security10.1007/s10207-024-00816-023:3(1741-1759)Online publication date: 3-Feb-2024
https://dl.acm.org/doi/10.1007/s10207-024-00816-0
Ni JAu MWu WLuo XLin XShen X(2023)Dual-Anonymous Off-Line Electronic Cash for Mobile PaymentIEEE Transactions on Mobile Computing10.1109/TMC.2021.313530122:6(3303-3317)Online publication date: 1-Jun-2023
https://dl.acm.org/doi/10.1109/TMC.2021.3135301
LIN ICHANG CCHIANG H(2022)A Novel e-Cash Payment System with Divisibility Based on Proxy Blind Signature in Web of ThingsIEICE Transactions on Information and Systems10.1587/transinf.2022EDP7081E105.D:12(2092-2103)Online publication date: 1-Dec-2022
https://doi.org/10.1587/transinf.2022EDP7081
Show More Cited By

Index Terms

Anonymous Split E-Cash—Toward Mobile Anonymous Payments
1. Information systems
  1. World Wide Web
    1. Web applications
      1. Electronic commerce
        Digital cash
2. Security and privacy
  1. Security in hardware
    1. Hardware security implementation
      1. Hardware-based security protocols
  2. Security services
    1. Privacy-preserving protocols

Recommendations

A Lattice-Based Anonymous Distributed E-Cash from Bitcoin
Provable Security
Abstract
Although Bitcoin was the first widely adopted cryptographic currency system, it provides a limited form of anonymity and privacy. To protect the anonymity and privacy of Bitcoin transactions, many Bitcoin-based cryptocurrency extensions were ...
Anonymity on blockchain based e-cash protocols—A survey
Abstract
The transactions in blockchain framework, based cryptocurrencies are publicly available, thereby accessible to all users by design. However, the anonymity of blockchain transactions is necessary for acceptance of such frameworks. There ...
A fair e-cash payment scheme based on credit
ICEC '05: Proceedings of the 7th international conference on Electronic commerce

A new fair e-cash payment scheme based on credit is present in this paper. In the scheme, an overdraft credit certificate is issued to user by bank. Using the overdraft credit certificate, user can produce e-cash himself to pay in exchanges. Merchant ...

Comments

Information & Contributors

Information

Published In

cover image ACM Transactions on Embedded Computing Systems

ACM Transactions on Embedded Computing Systems Volume 14, Issue 4

December 2015

604 pages

ISSN:1539-9087

EISSN:1558-3465

DOI:10.1145/2821757

Editor:
Sandeep K. Shukla
Virginia Tech, USA

Issue’s Table of Contents

Copyright © 2015 ACM.

Permission to make digital or hard copies of all or part of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for components of this work owned by others than ACM must be honored. Abstracting with credit is permitted. To copy otherwise, or republish, to post on servers or to redistribute to lists, requires prior specific permission and/or a fee. Request permissions from [email protected]

Publisher

Association for Computing Machinery

New York, NY, United States

Journal Family

ACM Journals for the Design of Smart and Connected Systems

Publication History

Published: 09 September 2015

Accepted: 01 May 2015

Revised: 01 March 2015

Received: 01 July 2014

Published in TECS Volume 14, Issue 4

Permissions

Request permissions for this article.

Request Permissions

Check for updates

Author Tags

Qualifiers

Research-article
Research
Refereed

Funding Sources

FWO
Flemish Government
Research Council KU Leuven: GOA TENSE
COSIC group of Departement Elektrotechniek (ESAT)

Contributors

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

9
Total Citations
View Citations
359
Total Downloads

Downloads (Last 12 months)9
Downloads (Last 6 weeks)1

Reflects downloads up to 03 Jan 2025

Other Metrics

View Author Metrics

Citations

Cited By

Leszczyna R(2024)Activity-based payments: alternative (anonymous) online payment modelInternational Journal of Information Security10.1007/s10207-024-00816-023:3(1741-1759)Online publication date: 3-Feb-2024
https://dl.acm.org/doi/10.1007/s10207-024-00816-0
Ni JAu MWu WLuo XLin XShen X(2023)Dual-Anonymous Off-Line Electronic Cash for Mobile PaymentIEEE Transactions on Mobile Computing10.1109/TMC.2021.313530122:6(3303-3317)Online publication date: 1-Jun-2023
https://dl.acm.org/doi/10.1109/TMC.2021.3135301
LIN ICHANG CCHIANG H(2022)A Novel e-Cash Payment System with Divisibility Based on Proxy Blind Signature in Web of ThingsIEICE Transactions on Information and Systems10.1587/transinf.2022EDP7081E105.D:12(2092-2103)Online publication date: 1-Dec-2022
https://doi.org/10.1587/transinf.2022EDP7081
Yulianton HWarnars HSoewito BGaol FAbdurachman E(2020)Web Security and Vulnerability: A Literature ReviewJournal of Physics: Conference Series10.1088/1742-6596/1477/2/0220281477:2(022028)Online publication date: 1-Mar-2020
https://doi.org/10.1088/1742-6596/1477/2/022028
Wang YZhu HLi F(2020)Research on Blind Signature Based Anonymous Electronic Cash SchemeMachine Learning for Cyber Security10.1007/978-3-030-62223-7_33(386-392)Online publication date: 8-Oct-2020
https://dl.acm.org/doi/10.1007/978-3-030-62223-7_33
Blazy OBossuat ABultel XFouque POnete CPagnin E(2019)SAID: Reshaping Signal into an Identity-Based Asynchronous Messaging Protocol with Authenticated Ratcheting2019 IEEE European Symposium on Security and Privacy (EuroS&P)10.1109/EuroSP.2019.00030(294-309)Online publication date: Jun-2019
https://doi.org/10.1109/EuroSP.2019.00030
Xie SNiu XZhang J(2019)An Improved Quantum E-Payment SystemInternational Journal of Theoretical Physics10.1007/s10773-019-04338-759:2(445-453)Online publication date: 2-Dec-2019
https://doi.org/10.1007/s10773-019-04338-7
Batten LYi X(2019)Off-line digital cash schemes providing untraceability, anonymity and changeElectronic Commerce Research10.1007/s10660-018-9289-819:1(81-110)Online publication date: 1-Mar-2019
https://dl.acm.org/doi/10.1007/s10660-018-9289-8
PARK KBAEK S(2017)OPERA: A Complete Offline and Anonymous Digital Cash Transaction System with a One-Time Readable MemoryIEICE Transactions on Information and Systems10.1587/transinf.2016INP0008E100.D:10(2348-2356)Online publication date: 2017
https://doi.org/10.1587/transinf.2016INP0008

View Options

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Full Access

Get this Article

View options

PDF

View or Download as a PDF file.

eReader

View online with eReader.

Media

Figures

Other

Tables

View Issue’s Table of Contents