On the Joint Security of Encryption and Signature in EMV

Jean-Paul Degabriele 1 Anja Lehmann 2 Kenneth G. Paterson 1 Nigel P. Smart 3 Mario Strefler 4
1 Department of Computer Science [Royal Holloway]
2 IBM Research Laboratory [Zurich]
3 Department of Computer Science [Bristol]
4 CASCADE - Construction and Analysis of Systems for Confidentiality and Authenticity of Data and Entities
DI-ENS - Département d'informatique de l'École normale supérieure, Inria Paris-Rocquencourt, CNRS - Centre National de la Recherche Scientifique : UMR 8548
Abstract : We provide an analysis of current and future algorithms for signature and encryption in the EMV standards in the case where a single key-pair is used for both signature and encryption. We give a theoretical attack for EMV’s current RSA-based algorithms, showing how access to a partial decryption oracle can be used to forge a signature on a freely chosen message. We show how the attack might be integrated into EMV’s CDA protocol flow, enabling an attacker with a wedge device to complete an offline transaction without knowing the cardholder’s PIN. Finally, the elliptic curve signature and encryption algorithms that are likely to be adopted in a forthcoming version of the EMV standards are analyzed in the single key-pair setting, and shown to be secure.
Type de document :
Communication dans un congrès
Orr Dunkelman. CT-RSA 2012 - The Cryptographers’ Track at the RSA Conference, Feb 2012, San Francisco, CA, United States. Springer, LNCS - Lecture Notes in Computer Science, 7178, pp.116-135, Topics in Cryptology – CT-RSA 2012. 〈10.1007/978-3-642-27954-6_8〉
Liste complète des métadonnées
https://hal.inria.fr/hal-01111635
Contributeur : Brigitte Briot <>
Soumis le : vendredi 30 janvier 2015 - 16:41:49
Dernière modification le : vendredi 25 mai 2018 - 12:02:05

Lien texte intégral

openaccess

Identifiants

Collections

INRIA | ENS-PARIS | PSL

Citation

Jean-Paul Degabriele, Anja Lehmann, Kenneth G. Paterson, Nigel P. Smart, Mario Strefler. On the Joint Security of Encryption and Signature in EMV. Orr Dunkelman. CT-RSA 2012 - The Cryptographers’ Track at the RSA Conference, Feb 2012, San Francisco, CA, United States. Springer, LNCS - Lecture Notes in Computer Science, 7178, pp.116-135, Topics in Cryptology – CT-RSA 2012. 〈10.1007/978-3-642-27954-6_8〉. 〈hal-01111635〉

Exporter

BibTeX TEI DC DCterms EndNote

Partager

Métriques

Consultations de la notice

124

Contact


archive-ouverte@inria.fr