| Presentation | 2008-09-12 Security Analysis on Electronic Money Systems Including Compromise of Cryptographic Algorithms and/or Devices Masataka SUZUKI, Katsuhisa HIROKAWA, |
|---|---|
| PDF Download Page |  PDF download Page Link |
| Abstract(in Japanese) | (See Japanese page) |
| Abstract(in English) | This paper mainly focuses on note-based types of prepaid electronic money systems. Assuming compromise of cryptographic algorithms and/or devices used in such electronic money systems, we evaluate the security against forgery of payment data and discuss operational countermeasures against such a forgery attack. As the results, we clarify that the note-based systems are more secure than the balance-based ones against the attack if the features of the systems, e.g. online/offline and open/closed-loop, are the same in these systems. We also find that the condition of payment data verification, i.e. online/offline, has a significant impact on the successfulness of the forgery attack. Moreover we discuss the limitation of effects of the operational countermeasures in the note-based systems under the assumption that the cryptographic algorithms and/or devices are compromised. |
| Keyword(in Japanese) | (See Japanese page) |
| Keyword(in English) | electronic money / security evaluation / risk management / cryptographic algorithm / smart card / compromise |
| Paper # | ISEC2008-69 |
| Date of Issue |
| Conference Information | |
| Committee | ISEC |
|---|---|
| Conference Date | 2008/9/5(1days) |
| Place (in Japanese) | (See Japanese page) |
| Place (in English) | |
| Topics (in Japanese) | (See Japanese page) |
| Topics (in English) | |
| Chair | |
| Vice Chair | |
| Secretary | |
| Assistant | |
| Paper Information | |
| Registration To | Information Security (ISEC) |
|---|---|
| Language | JPN |
| Title (in Japanese) | (See Japanese page) |
| Sub Title (in Japanese) | (See Japanese page) |
| Title (in English) | Security Analysis on Electronic Money Systems Including Compromise of Cryptographic Algorithms and/or Devices |
| Sub Title (in English) | |
| Keyword(1) | electronic money |
| Keyword(2) | security evaluation |
| Keyword(3) | risk management |
| Keyword(4) | cryptographic algorithm |
| Keyword(5) | smart card |
| Keyword(6) | compromise |
| 1st Author's Name | Masataka SUZUKI |
| 1st Author's Affiliation | Center for Information Technology Studies, Institute for Monetary and Economic Studies, Bank of Japan() |
| 2nd Author's Name | Katsuhisa HIROKAWA |
| 2nd Author's Affiliation | Center for Information Technology Studies, Institute for Monetary and Economic Studies, Bank of Japan |
| Date | 2008-09-12 |
| Paper # | ISEC2008-69 |
| Volume (vol) | vol.108 |
| Number (no) | 207 |
| Page | pp.pp.- |
| #Pages | 8 |
| Date of Issue | |