基于Offline-TTP的电子支付协议公平性分析

计算机应用 ›› 2009, Vol. 29 ›› Issue (07): 1839-1843.

基于Offline-TTP的电子支付协议公平性分析

田树华¹,陈立佳²,李建茹¹

1. 唐山学院
2.

收稿日期:2009-02-05 修回日期:2009-03-23 发布日期:2009-07-01 出版日期:2009-07-01
通讯作者: 田树华
基金资助:
其他

Fairness analysis of electronic payment protocol based on offline-TTP

Received:2009-02-05 Revised:2009-03-23 Online:2009-07-01 Published:2009-07-01

摘要/Abstract

摘要：

基于Offline-TTP的电子支付协议通常具有复杂结构，由多个子协议组合而成，与传统认证协议具有显著不同，主要表现在协议目标和攻击者模型两个方面。电子支付协议最主要目的是实现买卖双方的公平交换，同时假定交换双方都可能是不诚实的，需要考虑来自协议合法实体的内部攻击。在重新定义协议公平性和攻击者模型的基础上，提出扩展的串空间模型，以一个真实的电子支付协议为对象，演示了基于串空间理论的电子支付协议公平性形式化模型和分析方法，并指出该协议存在安全缺陷，提出改进意见。

关键词: 公平性;串空间;电子支付协议

Abstract:

The electronic payment protocol based on offline-TTP is made up of multiple sub-protocols, and is significantly different from traditional authentication protocol, especially on protocol goal and penetrator model. The main purpose of the electronic payment protocol is to realize fair exchange between both buyers and sellers who are assumed to be dishonest. That is, it is necessary for those buyers and sellers to prevent the internal attack. Based on redefining protocol fairness and penetrator model, an extended strand space model which takes an electronic payment protocol as an object is proposed to demonstrate a fairness formal analysis method. The security vulnerabilities and improvement suggestions of the electronic payment protocol are also discussed.

Key words: fairness;strand space;electronic payment protocol

田树华陈立佳李建茹. 基于Offline-TTP的电子支付协议公平性分析[J]. 计算机应用, 2009, 29(07): 1839-1843.