Avoiding Man-in-the-Middle Attacks When Verifying Public Terminals

Abstract : An individual who intends to engage in sensitive transactions using a public terminal such as an ATM needs to trust that (a) all communications are indeed carried out with the intended terminal, (b) such communications are confidential, and (c) the terminal’s integrity is guaranteed. Satisfying such requirements prevents man-in-the-middle attacks and eavesdropping.We have analysed several existing transaction schemes and concluded that they tend not to meet all requirements during the entire transaction. We propose a new, generic protocol that provides (a) optional terminal identification, (b) key establishment, and (c) customisable integrity assurance.
Type de document :
Communication dans un congrès
Jan Camenisch; Bruno Crispo; Simone Fischer-Hübner; Ronald Leenes; Giovanni Russello. 7th PrimeLife International Summer School (PRIMELIFE), Sep 2011, Trento, Italy. Springer, IFIP Advances in Information and Communication Technology, AICT-375, pp.261-273, 2012, Privacy and Identity Management for Life. 〈10.1007/978-3-642-31668-5_20〉
Liste complète des métadonnées

Littérature citée [12 références]  Voir  Masquer  Télécharger

https://hal.inria.fr/hal-01517599
Contributeur : Hal Ifip <>
Soumis le : mercredi 3 mai 2017 - 14:28:04
Dernière modification le : mercredi 3 mai 2017 - 14:53:40
Document(s) archivé(s) le : vendredi 4 août 2017 - 13:44:52

Fichier

978-3-642-31668-5_20_Chapter.p...
Fichiers produits par l'(les) auteur(s)

Licence


Distributed under a Creative Commons Paternité 4.0 International License

Identifiants

Citation

Gergely Alpár, Jaap-Henk Hoepman. Avoiding Man-in-the-Middle Attacks When Verifying Public Terminals. Jan Camenisch; Bruno Crispo; Simone Fischer-Hübner; Ronald Leenes; Giovanni Russello. 7th PrimeLife International Summer School (PRIMELIFE), Sep 2011, Trento, Italy. Springer, IFIP Advances in Information and Communication Technology, AICT-375, pp.261-273, 2012, Privacy and Identity Management for Life. 〈10.1007/978-3-642-31668-5_20〉. 〈hal-01517599〉

Partager

Métriques

Consultations de la notice

47

Téléchargements de fichiers

24