Attack and revision of an electronic auction protocol using OFMC

Ksiezopolski, Bogdan; Lafourcade, Pascal

doi:https://doi.org/10.3929/ethz-a-006785432

Attack and revision of an electronic auction protocol using OFMC

OPEN ACCESS

Downloads

Full text (PDF, 175.99 KB)

Author / Producer

Ksiezopolski, Bogdan

Lafourcade, Pascal

Date

2011

Publication Type

Report

ETH Bibliography

yes

OPEN ACCESS

Downloads

Full text (PDF, 175.99 KB)

Rights / License

In Copyright - Non-Commercial Use Permitted north_east

Abstract

In the article we show an attack on the cryptographic proto col of electronic auction with extended requirements [KK04]. The found attack consists of authentication breach and secret retrieval. It is a kind of “man in the middle attack”. The intruder impersonates an agent and learns some secret information. We have discovered this flaw unsing OFMC an automatic tool of cryptographic protocol verification. After a description of this attack, we propose a new version of the e-auction pro tocol. We also check with OFMC the secrecy for the new protocol and give an informal proof of the other properties that this new e-auction protocol has to guarantee.

Permanent link

https://doi.org/10.3929/ethz-a-006785432

Publication status

published

Journal / series

D-INFK Technical Report north_east

Volume

549

Publisher

ETH Zurich, Department of Computer Science

Organisational unit

02150 - Dep. Informatik / Dep. of Computer Science

More

Show all metadata

Attack and revision of an electronic auction protocol using OFMC

Downloads

Author / Producer

Date

Publication Type

ETH Bibliography

Citations

Altmetric

Downloads

Data

Rights / License

Abstract

Permanent link

Publication status

External links

Editor

Book title

Journal / series

Volume

Pages / Article No.

Publisher

Event

Edition / version

Methods

Software

Geographic location

Date collected

Date created

Subject

Organisational unit

Notes

Funding

Related publications and datasets

More