E-Ticketing scheme for mobile devices with exculpability Arnau - - PowerPoint PPT Presentation

e ticketing scheme for mobile devices with exculpability
SMART_READER_LITE
LIVE PREVIEW

E-Ticketing scheme for mobile devices with exculpability Arnau - - PowerPoint PPT Presentation

Dec 22, 2023 209 likes •472 views

E-Ticketing scheme for mobile devices with exculpability Arnau Vives-Guasch 1 , Magdalena Payeras-Capella 2 , Maci` a Mut-Puigserver 2 and Jordi Castell` a-Roca 1 1 Dept. de Ingenier a Inform atica y Matem aticas Universitat Rovira i

slide-1
SLIDE 1

E-Ticketing scheme for mobile devices with exculpability

Arnau Vives-Guasch1, Magdalena Payeras-Capella2, Maci` a Mut-Puigserver2 and Jordi Castell` a-Roca1

  • 1Dept. de Ingenier´

ıa Inform´ atica y Matem´ aticas Universitat Rovira i Virgili, Spain email: {arnau.vives, jordi.castella}@urv.cat

  • 2Dept. de Ciencias Matem´

aticas e Inform´ atica Universitat de les Illes Balears, Spain email: {mpayeras, macia.mut}@uib.es

Data Privacy Management - 5th International Workshop Athens, Greece. September 23, 2010

Vives, Payeras, Mut, Castell` a (URV-UIB) DPM 2010 1 / 24

slide-2
SLIDE 2

1 Introduction 2 Previous works 3 Contribution 4 e-Ticketing scheme 5 Conclusions and further work

Vives, Payeras, Mut, Castell` a (URV-UIB) DPM 2010 2 / 24

slide-3
SLIDE 3

Introduction

1 Introduction 2 Previous works 3 Contribution 4 e-Ticketing scheme 5 Conclusions and further work

Vives, Payeras, Mut, Castell` a (URV-UIB) DPM 2010 3 / 24

slide-4
SLIDE 4

Introduction

Electronic ticket An electronic ticket is a contract, in digital format, between the user and the service provider. Information technologies (IT) are becoming usual in our society as they progressively replace the use of paper in many of our common operations. IT help to reduce both economic costs and time in many services such as air travel industries or public transport. The security of the system has to be strongly guaranteed, as well as the privacy of their users. Traditionally, smart-cards have been widely used in these systems. Nowadays, mobile devices are becoming more increasingly used.

Vives, Payeras, Mut, Castell` a (URV-UIB) DPM 2010 4 / 24

slide-5
SLIDE 5

Previous works

1 Introduction 2 Previous works 3 Contribution 4 e-Ticketing scheme 5 Conclusions and further work

Vives, Payeras, Mut, Castell` a (URV-UIB) DPM 2010 5 / 24

slide-6
SLIDE 6

Previous works Security requirements

Authenticity Non-repudiation Integrity Expiry date Reusability Anonymity Online/Offline Exculpability The service provider can not falsely accuse the user of ticket overspending, and the user is able to demonstrate that she has already validated the ticket before using it.

Vives, Payeras, Mut, Castell` a (URV-UIB) DPM 2010 6 / 24

slide-7
SLIDE 7

Previous works Classification of proposals

Smart-card based proposals Smart-card-based proposals [3, 5, 9, 8, 10, 14, 13] establish a communication channel with the verification system for the most sensitive

  • perations.

The smart-card verifies each operation, so that users can not perform any non-allowed action: considered tamper-proof devices. Non-smart-card based proposals Non-smart-card-based systems [11, 4, 1, 6, 12, 7, 2] allow to perform applications with high computation requirements, offering high storage capacity and wireless short-range communication resources. High-level cryptographic protection is needed in order to assure the protocol is correctly executed: considered non-tamper-proof devices.

Non-Anonymous: [4, 1] Revocable-Anonymous: [11, 6, 12, 7, 2]

Vives, Payeras, Mut, Castell` a (URV-UIB) DPM 2010 7 / 24

slide-8
SLIDE 8

Contribution

1 Introduction 2 Previous works 3 Contribution 4 e-Ticketing scheme 5 Conclusions and further work

Vives, Payeras, Mut, Castell` a (URV-UIB) DPM 2010 8 / 24

slide-9
SLIDE 9

Contribution

We present an e-ticketing system that: Provides revocable anonymity to users Introduces exculpability as a security requirement

Use of crossed one-way collision-resistant hash functions.

Only one provider is able to give a certain service (for simplicity): offline verification. Is designed for its application with mobile devices for users

Reduce computation requirements in the user side

Vives, Payeras, Mut, Castell` a (URV-UIB) DPM 2010 9 / 24

slide-10
SLIDE 10

e-Ticketing scheme

1 Introduction 2 Previous works 3 Contribution 4 e-Ticketing scheme 5 Conclusions and further work

Vives, Payeras, Mut, Castell` a (URV-UIB) DPM 2010 10 / 24

slide-11
SLIDE 11

e-Ticketing scheme Participants

User (U) Pays for the ticket and receives the service. Service provider (P) Gives the service to U. Ticket issuer (I) Sends a valid ticket to U in order to further receive the according service. Trusted Third Party (T ) Preserves U’s anonymity, and also gives a valid non-identity-linkable pseudonym to U.

Vives, Payeras, Mut, Castell` a (URV-UIB) DPM 2010 11 / 24

slide-12
SLIDE 12

e-Ticketing scheme Security Requirements

Authenticity Non-repudiation Integrity Expiry date Non-overspending Revocable Anonymity Offline verification Exculpability

Vives, Payeras, Mut, Castell` a (URV-UIB) DPM 2010 12 / 24

slide-13
SLIDE 13

e-Ticketing scheme Tickets’ Information

Ticket Information (T) Serial number Sn Issuer Is Service Sv Terms and conditions Tc User pseudonym PseuU Attributes At Type of ticket Ty Encrypted verification data δT ,P Validity time Tv Date of issue Ti Exculpability (U) hrU Exculpability (P) hrI Digital signature of I SignI(T) Receipt Information (R) Encrypted exculpability (P) AP Timestamp τi Ticket serial number T.Sn Digital signature of P SignP(R)

Vives, Payeras, Mut, Castell` a (URV-UIB) DPM 2010 13 / 24

slide-14
SLIDE 14

e-Ticketing scheme System Phases

Pseudonym Renewal U obtains a new temporal pseudonym from T to be used in the system without linkage to user’s identity (if user behaves correctly). Ticket Purchase U pays for the service and receives the ticket from the ticket issuer I. Ticket Verification U shows the ticket to the service provider P in order to verify that ticket and receive the service. Claims Dispute resolution protocols in case of misbehaviour of any actor to preserve system security. They can contact the TTP T with: Claim m2 Not Received (m2: Ticket acceptance by P) Claim m3 Not Received (m3: U’s exculpability proof) Claim m4 Not Received (m4: P’s exculpability proof (Receipt))

Vives, Payeras, Mut, Castell` a (URV-UIB) DPM 2010 14 / 24

slide-15
SLIDE 15

e-Ticketing scheme System Phases

Pseudonym Renewal

Vives, Payeras, Mut, Castell` a (URV-UIB) DPM 2010 15 / 24

slide-16
SLIDE 16

e-Ticketing scheme System Phases

Ticket Purchase

Vives, Payeras, Mut, Castell` a (URV-UIB) DPM 2010 16 / 24

slide-17
SLIDE 17

e-Ticketing scheme System Phases

Ticket Verification

Vives, Payeras, Mut, Castell` a (URV-UIB) DPM 2010 17 / 24

slide-18
SLIDE 18

e-Ticketing scheme System Phases

Claim m2 not Received (m2: Ticket acceptance by P) U can contact T if m1 has been sent and m2 has not been received from P U sends the m1 to T . If valid, T signs the information with a timestamp and gives the proof to U and P. P is requested to follow the protocol. Claim m3 not Received (m3: U’s exculpability proof) P blocks till the reception of m3 by U. P could contact T if U repeatedly misbehaves. Claim m4 not Received (m4: P’s exculpability proof (Receipt)) U can contact T if m3 has been sent and m4 has not been received from P U sends (m1, m2, m3) to T . If valid, T signs the information with (AU, AP) and a timestamp and gives the proof to U. U can obtain the rI.

Vives, Payeras, Mut, Castell` a (URV-UIB) DPM 2010 18 / 24

slide-19
SLIDE 19

e-Ticketing scheme Multiple providers

Multiple providers Multiple providers could give the same service with the ticket. Online verification between all the providers to avoid ticket overspending. Special care to the distribution and control of used tickets (existence of rU in a central DB). Expired tickets removed from the database for storage efficiency.

Vives, Payeras, Mut, Castell` a (URV-UIB) DPM 2010 19 / 24

slide-20
SLIDE 20

e-Ticketing scheme System security and privacy

System security In the security analysis of the paper, we detail how the security requirements have been achieved: authenticity, non-repudiation, integrity, expiry date, non-overspending, offline verification, and also exculpability. Users’ privacy In the security analysis of the paper, we detail how the revocable anonymity has been achieved for honest users by using temporal pseudonyms.

Vives, Payeras, Mut, Castell` a (URV-UIB) DPM 2010 20 / 24

slide-21
SLIDE 21

Conclusions and further work

1 Introduction 2 Previous works 3 Contribution 4 e-Ticketing scheme 5 Conclusions and further work

Vives, Payeras, Mut, Castell` a (URV-UIB) DPM 2010 21 / 24

slide-22
SLIDE 22

Conclusions and further work

Conclusions We have presented an e-ticketing scheme with revocable anonymity, and exculpability as a novel security requirement. Use of personal mobile devices. Only one provider is able to give a certain service: offline verification. Further work Develop a prototype for mobile devices with short-range contactless communication (Near Field Communication).

Vives, Payeras, Mut, Castell` a (URV-UIB) DPM 2010 22 / 24

slide-23
SLIDE 23

Conclusions and further work

E-Ticketing scheme for mobile devices with exculpability

Arnau Vives-Guasch1, Magdalena Payeras-Capella2, Maci` a Mut-Puigserver2 and Jordi Castell` a-Roca1

  • 1Dept. de Ingenier´

ıa Inform´ atica y Matem´ aticas Universitat Rovira i Virgili, Spain email: {arnau.vives, jordi.castella}@urv.cat

  • 2Dept. de Ciencias Matem´

aticas e Inform´ atica Universitat de les Illes Balears, Spain email: {mpayeras, macia.mut}@uib.es

Data Privacy Management - 5th International Workshop Athens, Greece. September 23, 2010

Vives, Payeras, Mut, Castell` a (URV-UIB) DPM 2010 23 / 24

slide-24
SLIDE 24

Conclusions and further work

  • F. Bao.

A scheme of digital ticket for personal trusted device. 15th IEEE International Symposium on Personal, Indoor and Mobile Radio Communications (PIMRC04), 4:3065–3069, 2004. IEEE.

Yu-Yi Chen, Chin-Ling Chen, and Jinn-Ke Jan. A mobile ticket system based on personal trusted device. Wireless Personal Communications: An International Journal, 40(4):569–578, 2007.

  • J. Elliot.

The one-card trick multi-application smart card e-commerce prototypes. Computing & Control Engineering Journal, 10(3):121–128, 1999. IET.

  • K. Fujimura, H. Kuno, M. Terada, K. Matsuyama, Y. Mizuno, and J. Sekine.

Digital-ticket-controlled digital ticket circulation. 8th USENIX Security Symposium, pages 229–240, 1999. USENIX.

  • D. Haneberg.

Electronic ticketing: risks in e-commerce applications. Digital excellence, pages 55–66, 2008. Springer-Verlag, ISBN 3540726209.

Dominik Haneberg, Kurt Stenzel, and Wolfgang Reif. Electronic-onboard-ticketing: Software challenges of an state-of-the-art m-commerce application. In K.Pousttchi and K.Turowski, editors, Workshop Mobile Commerce, volume 42 of Lecture Notes in Informatics (LNI), pages 103–113. Gesellschaft f¨ ur Informatik (GI), 2004.

Thomas S. Heydt-Benjamin, Hee-Jin Chae, Benessa Defend, and Kevin Fu. Privacy for public transportation. In 6th Workshop on Privacy Enhancing Technologies (PET 2006), pages 1–19, 2006. LNCS 4258.

  • K. Kuramitsu and K. Sakamura.

Electronic tickets on contactless smartcard database. In Proceedings of the 13th International Conference on Database and Expert Systems Applications, pages 392–402, 2002. LNCS 2453.

Kimio Kuramitsu, Tadashi Murakami, Hajime Matsuda, and Ken Sakamura. Ttp: Secure acid transfer protocol for electronic ticket between personal tamper-proof devices. In 24th Annual International Computer Software and Applications Conference (COMPSAC2000), pages 87–92, Taipei, Taiwan, Oct 2000.

  • vol. 24.

  • S. Matsuo and W. Ogata.

Electronic ticket scheme for its. IEICE Transactions on Fundamentals of Electronics Communications and Computer Sciences, E86A(1):142–150, 2003.

Vives, Payeras, Mut, Castell` a (URV-UIB) DPM 2010 24 / 24