e ticketing scheme for mobile devices with exculpability
play

E-Ticketing scheme for mobile devices with exculpability Arnau - PowerPoint PPT Presentation

Dec 22, 2023 •209 likes •467 views

E-Ticketing scheme for mobile devices with exculpability Arnau Vives-Guasch 1 , Magdalena Payeras-Capella 2 , Maci` a Mut-Puigserver 2 and Jordi Castell` a-Roca 1 1 Dept. de Ingenier a Inform atica y Matem aticas Universitat Rovira i

  1. E-Ticketing scheme for mobile devices with exculpability Arnau Vives-Guasch 1 , Magdalena Payeras-Capella 2 , Maci` a Mut-Puigserver 2 and Jordi Castell` a-Roca 1 1 Dept. de Ingenier´ ıa Inform´ atica y Matem´ aticas Universitat Rovira i Virgili, Spain email: { arnau.vives, jordi.castella } @urv.cat 2 Dept. de Ciencias Matem´ aticas e Inform´ atica Universitat de les Illes Balears, Spain email: { mpayeras, macia.mut } @uib.es Data Privacy Management - 5th International Workshop Athens, Greece. September 23, 2010 Vives, Payeras, Mut, Castell` a (URV-UIB) DPM 2010 1 / 24

  2. 1 Introduction 2 Previous works 3 Contribution 4 e-Ticketing scheme 5 Conclusions and further work Vives, Payeras, Mut, Castell` a (URV-UIB) DPM 2010 2 / 24

  3. Introduction 1 Introduction 2 Previous works 3 Contribution 4 e-Ticketing scheme 5 Conclusions and further work Vives, Payeras, Mut, Castell` a (URV-UIB) DPM 2010 3 / 24

  4. Introduction Electronic ticket An electronic ticket is a contract, in digital format, between the user and the service provider. Information technologies (IT) are becoming usual in our society as they progressively replace the use of paper in many of our common operations. IT help to reduce both economic costs and time in many services such as air travel industries or public transport . The security of the system has to be strongly guaranteed, as well as the privacy of their users. Traditionally, smart-cards have been widely used in these systems. Nowadays, mobile devices are becoming more increasingly used. Vives, Payeras, Mut, Castell` a (URV-UIB) DPM 2010 4 / 24

  5. Previous works 1 Introduction 2 Previous works 3 Contribution 4 e-Ticketing scheme 5 Conclusions and further work Vives, Payeras, Mut, Castell` a (URV-UIB) DPM 2010 5 / 24

  6. Previous works Security requirements Authenticity Reusability Non-repudiation Anonymity Integrity Online/Offline Expiry date Exculpability The service provider can not falsely accuse the user of ticket overspending, and the user is able to demonstrate that she has already validated the ticket before using it. Vives, Payeras, Mut, Castell` a (URV-UIB) DPM 2010 6 / 24

  7. Previous works Classification of proposals Smart-card based proposals Smart-card-based proposals [3, 5, 9, 8, 10, 14, 13] establish a communication channel with the verification system for the most sensitive operations. The smart-card verifies each operation, so that users can not perform any non-allowed action: considered tamper-proof devices. Non-smart-card based proposals Non-smart-card-based systems [11, 4, 1, 6, 12, 7, 2] allow to perform applications with high computation requirements, offering high storage capacity and wireless short-range communication resources. High-level cryptographic protection is needed in order to assure the protocol is correctly executed: considered non-tamper-proof devices. Non-Anonymous: [4, 1] Revocable-Anonymous: [11, 6, 12, 7, 2] Vives, Payeras, Mut, Castell` a (URV-UIB) DPM 2010 7 / 24

  8. Contribution 1 Introduction 2 Previous works 3 Contribution 4 e-Ticketing scheme 5 Conclusions and further work Vives, Payeras, Mut, Castell` a (URV-UIB) DPM 2010 8 / 24

  9. Contribution We present an e-ticketing system that: Provides revocable anonymity to users Introduces exculpability as a security requirement Use of crossed one-way collision-resistant hash functions. Only one provider is able to give a certain service (for simplicity): offline verification. Is designed for its application with mobile devices for users Reduce computation requirements in the user side Vives, Payeras, Mut, Castell` a (URV-UIB) DPM 2010 9 / 24

  10. e-Ticketing scheme 1 Introduction 2 Previous works 3 Contribution 4 e-Ticketing scheme 5 Conclusions and further work Vives, Payeras, Mut, Castell` a (URV-UIB) DPM 2010 10 / 24

  11. e-Ticketing scheme Participants User ( U ) Pays for the ticket and receives the service. Service provider ( P ) Gives the service to U . Ticket issuer ( I ) Sends a valid ticket to U in order to further receive the according service. Trusted Third Party ( T ) Preserves U ’s anonymity, and also gives a valid non-identity-linkable pseudonym to U . Vives, Payeras, Mut, Castell` a (URV-UIB) DPM 2010 11 / 24

  12. e-Ticketing scheme Security Requirements Authenticity Non-overspending Non-repudiation Revocable Anonymity Integrity Offline verification Exculpability Expiry date Vives, Payeras, Mut, Castell` a (URV-UIB) DPM 2010 12 / 24

  13. e-Ticketing scheme Tickets’ Information Ticket Information ( T ) Serial number Sn Issuer Is Service Sv Terms and conditions Tc User pseudonym Pseu U Attributes At Type of ticket Ty Encrypted verification data δ T , P Validity time Tv Date of issue Ti Exculpability ( U ) h r U Exculpability ( P ) h r I Digital signature of I Sign I (T) Receipt Information ( R ) Encrypted exculpability ( P ) A P Timestamp τ i Ticket serial number T . Sn Digital signature of P Sign P (R) Vives, Payeras, Mut, Castell` a (URV-UIB) DPM 2010 13 / 24

  14. e-Ticketing scheme System Phases Pseudonym Renewal U obtains a new temporal pseudonym from T to be used in the system without linkage to user’s identity (if user behaves correctly). Ticket Purchase U pays for the service and receives the ticket from the ticket issuer I . Ticket Verification U shows the ticket to the service provider P in order to verify that ticket and receive the service. Claims Dispute resolution protocols in case of misbehaviour of any actor to preserve system security. They can contact the TTP T with: Claim m 2 Not Received (m 2 : Ticket acceptance by P ) Claim m 3 Not Received (m 3 : U ’s exculpability proof) Claim m 4 Not Received (m 4 : P ’s exculpability proof (Receipt)) Vives, Payeras, Mut, Castell` a (URV-UIB) DPM 2010 14 / 24

  15. e-Ticketing scheme System Phases Pseudonym Renewal Vives, Payeras, Mut, Castell` a (URV-UIB) DPM 2010 15 / 24

  16. e-Ticketing scheme System Phases Ticket Purchase Vives, Payeras, Mut, Castell` a (URV-UIB) DPM 2010 16 / 24

  17. e-Ticketing scheme System Phases Ticket Verification Vives, Payeras, Mut, Castell` a (URV-UIB) DPM 2010 17 / 24

  18. e-Ticketing scheme System Phases Claim m 2 not Received (m 2 : Ticket acceptance by P ) U can contact T if m 1 has been sent and m 2 has not been received from P U sends the m 1 to T . If valid, T signs the information with a timestamp and gives the proof to U and P . P is requested to follow the protocol. Claim m 3 not Received (m 3 : U ’s exculpability proof) P blocks till the reception of m 3 by U . P could contact T if U repeatedly misbehaves. Claim m 4 not Received (m 4 : P ’s exculpability proof (Receipt)) U can contact T if m 3 has been sent and m 4 has not been received from P U sends ( m 1 , m 2 , m 3 ) to T . If valid, T signs the information with (A U , A P ) and a timestamp and gives the proof to U . U can obtain the r I . Vives, Payeras, Mut, Castell` a (URV-UIB) DPM 2010 18 / 24

  19. e-Ticketing scheme Multiple providers Multiple providers Multiple providers could give the same service with the ticket. Online verification between all the providers to avoid ticket overspending. Special care to the distribution and control of used tickets (existence of r U in a central DB). Expired tickets removed from the database for storage efficiency. Vives, Payeras, Mut, Castell` a (URV-UIB) DPM 2010 19 / 24

  20. e-Ticketing scheme System security and privacy System security In the security analysis of the paper, we detail how the security requirements have been achieved: authenticity , non-repudiation , integrity , expiry date , non-overspending , offline verification, and also exculpability . Users’ privacy In the security analysis of the paper, we detail how the revocable anonymity has been achieved for honest users by using temporal pseudonyms. Vives, Payeras, Mut, Castell` a (URV-UIB) DPM 2010 20 / 24

  21. Conclusions and further work 1 Introduction 2 Previous works 3 Contribution 4 e-Ticketing scheme 5 Conclusions and further work Vives, Payeras, Mut, Castell` a (URV-UIB) DPM 2010 21 / 24

  22. Conclusions and further work Conclusions We have presented an e-ticketing scheme with revocable anonymity , and exculpability as a novel security requirement. Use of personal mobile devices. Only one provider is able to give a certain service: offline verification. Further work Develop a prototype for mobile devices with short-range contactless communication (Near Field Communication) . Vives, Payeras, Mut, Castell` a (URV-UIB) DPM 2010 22 / 24

  23. Conclusions and further work E-Ticketing scheme for mobile devices with exculpability Arnau Vives-Guasch 1 , Magdalena Payeras-Capella 2 , Maci` a Mut-Puigserver 2 and Jordi Castell` a-Roca 1 1 Dept. de Ingenier´ ıa Inform´ atica y Matem´ aticas Universitat Rovira i Virgili, Spain email: { arnau.vives, jordi.castella } @urv.cat 2 Dept. de Ciencias Matem´ aticas e Inform´ atica Universitat de les Illes Balears, Spain email: { mpayeras, macia.mut } @uib.es Data Privacy Management - 5th International Workshop Athens, Greece. September 23, 2010 Vives, Payeras, Mut, Castell` a (URV-UIB) DPM 2010 23 / 24

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Mobile Ticketing for All Transit Agencies By Sam Daly Founder, Token Transit Presentation

Mobile Ticketing for All Transit Agencies By Sam Daly Founder, Token Transit Presentation

Mobile Ticketing for All Transit Agencies By Sam Daly Founder, Token Transit Presentation Overview 1- Why mobile ticketing 2- Mobile ticketing launch learnings 3- Case Studies from Reno, Humboldt County and Lincoln, NE Dispel a few questions

435 views • 30 slides
Anonymous and Transferable Electronic Ticketing Scheme Data Privacy Management, 8th

Anonymous and Transferable Electronic Ticketing Scheme Data Privacy Management, 8th

Anonymous and Transferable Electronic Ticketing Scheme Data Privacy Management, 8th International Workshop Arnau Vives-Guasch 1 a 2 M. Magdalena Payeras-Capell` a Mut-Puigserver 2 a-Roca 1 Maci` Jordi Castell` s Ferrer-Gomila 2

605 views • 27 slides
Localization ocalization of mobile devices of mobile devices L Seminar: Mobile Computing IFW

Localization ocalization of mobile devices of mobile devices L Seminar: Mobile Computing IFW

Localization ocalization of mobile devices of mobile devices L Seminar: Mobile Computing IFW C42 Tuesday, 29th May 2001 Roger Zimmermann Overview Overview Introduction Why Technologies Absolute Positioning Relative

314 views • 30 slides
Threats to Mobile Devices Possible attack threats to mobile devices Network exploit

Threats to Mobile Devices Possible attack threats to mobile devices Network exploit

Threats to Mobile Devices Possible attack threats to mobile devices Network exploit Hackers takes advantage of vulnerability or flaw of users web browser on mobile device in WiFi communication to attack victims. Hackers send

464 views • 30 slides
Transit Mobile Ticketing and Fare Card Interoperability Bid V1380512P1 Company Confidential

Transit Mobile Ticketing and Fare Card Interoperability Bid V1380512P1 Company Confidential

Transit Mobile Ticketing and Fare Card Interoperability Bid V1380512P1 Company Confidential April 15, 2016 Introductions Roy Purnell Director of Sales, Southeastern Region Robert Antonio Program Manager Joining via teleconference: Kim Green

548 views • 21 slides
University of Hertfordshire Mobile Ticketing Project U-MOB Conference Krakow, Poland 13 th /14

University of Hertfordshire Mobile Ticketing Project U-MOB Conference Krakow, Poland 13 th /14

University of Hertfordshire Mobile Ticketing Project U-MOB Conference Krakow, Poland 13 th /14 th March 2019 Dr Scott Copsey / Nick Reed / Dr Richard Southern County of Hertfordshire/ University Mix of rural villages & large towns

727 views • 19 slides
Using Mobile Ticketing Data to Estimate an Origin-Destination Matrix for New York City Ferry

Using Mobile Ticketing Data to Estimate an Origin-Destination Matrix for New York City Ferry

Using Mobile Ticketing Data to Estimate an Origin-Destination Matrix for New York City Ferry Service Subrina Rahman, Graduate Student, CCNY James Wong, Vice President/Director of Ferries, NYC EDC Candace Brakewood, PhD, Assistant Professor,

175 views • 14 slides
Mobile Devices Mobile Devices NAGTRI Webinar Series NCJRL / NAAG Objectives Objectives

Mobile Devices Mobile Devices NAGTRI Webinar Series NCJRL / NAAG Objectives Objectives

Mobile Devices Mobile Devices NAGTRI Webinar Series NCJRL / NAAG Objectives Objectives Identify mobile devices Identify mobile devices Learn how mobile devices obtain and transmit information transmit information Identify

863 views • 68 slides
devices Im going to be talking about how we hold and interact our mobile devices And how

devices Im going to be talking about how we hold and interact our mobile devices And how

Im going to be introducing you to ergonomics More specifically ergonomics in terms of designing touch interfaces for mobile devices Im going to be talking about how we hold and interact our mobile devices And how you can use

1.12k views • 62 slides
Tutorial: Development of Interactive Applications for Mobile Devices 7th International Conference

Tutorial: Development of Interactive Applications for Mobile Devices 7th International Conference

Tutorial: Development of Interactive Applications for Mobile Devices 7th International Conference on Human Computer Interaction with Mobile Devices and Services (Mobile HCI 2005) Enrico Rukzio (Media Informatics Group, University of Munich )

641 views • 24 slides
Characteristics of Mobile Web Content Felix Nwaobasi Text Block #3 Contact, Department, or

Characteristics of Mobile Web Content Felix Nwaobasi Text Block #3 Contact, Department, or

Characteristics of Mobile Web Content Felix Nwaobasi Text Block #3 Contact, Department, or Other Information Background 2 Worcester Polytechnic Institute Mobile vs. Non-Mobile Devices Non-mobile devices Mobile devices Great

333 views • 20 slides
MOBILE DEVICES USING WIFI NETWORK JOAQUIN BERENGUER 30 MINUTES IMAGES OF IOT CONTENT

MOBILE DEVICES USING WIFI NETWORK JOAQUIN BERENGUER 30 MINUTES IMAGES OF IOT CONTENT

SERVER FOR IOT DEVICES AND MOBILE DEVICES USING WIFI NETWORK JOAQUIN BERENGUER 30 MINUTES IMAGES OF IOT CONTENT Environment Architecture Server Functionality Security IoT Devices Mobile and Desktop Devices Events

904 views • 23 slides
Smart Mobile Devices Registration System THE PURPOSES OF THE SYSTEM To detect illegally imported

Smart Mobile Devices Registration System THE PURPOSES OF THE SYSTEM To detect illegally imported

Smart Mobile Devices Registration System THE PURPOSES OF THE SYSTEM To detect illegally imported and/or uncertifjed To detect and prevent usage of mobile devices 1 5 devices within mobile operator network in with cloned and/or invalid

241 views • 10 slides
Interaction Devices Mobile Keyboard Animation, Speech and Displays

Interaction Devices Mobile Keyboard Animation, Speech and Displays

Interaction Devices Mobile Keyboard Animation, Speech and Displays Small Pointing Novel device image, and Layouts auditory and Large Devices devices display s video interfaces

194 views • 7 slides
Using Mobile Devices Meeting 2012 with RIS Workflow Richard Bulmer 1 Is there a need for

Using Mobile Devices Meeting 2012 with RIS Workflow Richard Bulmer 1 Is there a need for

UK Imaging Informatics Spring Using Mobile Devices Meeting 2012 with RIS Workflow Richard Bulmer 1 Is there a need for mobile devices with RIS? Pros Ease of use Portability Being able to reduce paper/paperless department workflow

507 views • 13 slides
Mobile Communications Original design motivation was not so much mobility support Mobility

Mobile Communications Original design motivation was not so much mobility support Mobility

Motivation Mobility support needed to be able to use mobile devices in the Internet Mobile devices need IP address for their communication Applications would like to communicate while being on the move DHCP Mobile Communications

217 views • 8 slides
Radio Operators Class Yolo County ARES Yolo County Berryessa Amateur Yolo Amateur ARES Radio

Radio Operators Class Yolo County ARES Yolo County Berryessa Amateur Yolo Amateur ARES Radio

Radio Operators Class Yolo County ARES Yolo County Berryessa Amateur Yolo Amateur ARES Radio Klub- BARK Radio Society 1 Class Overview Yolo County ARES Part 1 Getting started Part 2 Hands on stations Part 3 Mentor

622 views • 34 slides
An indefinite inverse spectral problem of Stieltjes type Andreas Fleige, OTIND 2016 (joint work

An indefinite inverse spectral problem of Stieltjes type Andreas Fleige, OTIND 2016 (joint work

An indefinite inverse spectral problem of Stieltjes type Andreas Fleige, OTIND 2016 (joint work with Henrik Winkler) direct problem: given an operator, examine its spectral properties inverse problem: given some spectral properties, reconstruct

138 views • 13 slides
Error-bounded Graph Anomaly Loss for GNNs Tong Zhao, Chuchen Deng, Kaifeng Yu, Tianwen Jiang,

Error-bounded Graph Anomaly Loss for GNNs Tong Zhao, Chuchen Deng, Kaifeng Yu, Tianwen Jiang,

Error-bounded Graph Anomaly Loss for GNNs Tong Zhao, Chuchen Deng, Kaifeng Yu, Tianwen Jiang, Daheng Wang, Meng Jiang Department of Computer Science and Engineering University of Notre Dame, Notre Dame, IN 46556, USA Graph Outliers.

372 views • 11 slides
Lecture 13: Architecture and Design Patterns . (simplified) object constraint logic (OCL) may

Lecture 13: Architecture and Design Patterns . (simplified) object constraint logic (OCL) may

Topic Area Architecture & Design: Content Once Again, Please Introduction and Vocabulary VL 11 Interface Software Modelling n . a s . model; views / viewpoints; 4+1 view consists of 1 or more has i Softwaretechnik /

411 views • 10 slides
CS 220: Discrete Structures and their Applications counting by complement, inclusion exclusion,

CS 220: Discrete Structures and their Applications counting by complement, inclusion exclusion,

CS 220: Discrete Structures and their Applications counting by complement, inclusion exclusion, the pigeonhole principle zybooks 7.8 7.10 example problem How many 6-bit strings have at least one 0? You can count them directly: Number of

424 views • 15 slides
Application oriented vehicle problems in public bus transportation Gbor Galambos University

Application oriented vehicle problems in public bus transportation Gbor Galambos University

Application oriented vehicle problems in public bus transportation Gbor Galambos University of Szeged, Hungary Joint work with Viktor rgiln, Jnos Balogh, Jzsef Bksi, Balzs Dvid, Mikls Krsz, Attila Tth Workshop on

881 views • 49 slides
Modeling and Computation of Phase Equilibrium Using Interval Methods Mark A. Stadtherr

Modeling and Computation of Phase Equilibrium Using Interval Methods Mark A. Stadtherr

Modeling and Computation of Phase Equilibrium Using Interval Methods Mark A. Stadtherr Department of Chemical and Biomolecular Engineering, University of Notre Dame Notre Dame, IN, USA 2nd Scandinavian Workshop on Interval Methods And Their

506 views • 46 slides
1 2 3 4 5 6 7 8 9 10 11 12

1 2 3 4 5 6 7 8 9 10 11 12

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 Appendix C

743 views • 72 slides

More recommend