Reference : Unlinkability of an Improved Key Agreement Protocol for EMV 2nd Gen Payments
Scientific congresses, symposiums and conference proceedings : Unpublished conference
Engineering, computing & technology : Computer science
Security, Reliability and Trust
http://hdl.handle.net/10993/51374
Unlinkability of an Improved Key Agreement Protocol for EMV 2nd Gen Payments
English
Horne, Ross James mailto [University of Luxembourg > Faculty of Science, Technology and Medicine (FSTM) > Department of Computer Science (DCS) >]
Mauw, Sjouke mailto [University of Luxembourg > Faculty of Science, Technology and Medicine (FSTM) > Department of Computer Science (DCS) >]
Yurkov, Semen mailto [University of Luxembourg > Faculty of Science, Technology and Medicine (FSTM) > Department of Computer Science (DCS) >]
10-Aug-2022
16
Yes
International
35th IEEE Computer Security Foundations Symposium (CSF)
from 07-08-2022 to 10-08-2022
Haifa
Israel
[en] unlinkability ; authentication ; key agreement ; protocols ; bisimilarity
[en] To address known privacy problems with the EMV standard, EMVCo have proposed a Blinded Diffie-Hellman key establishment protocol, which is intended to be part of a future 2nd Gen EMV protocol. We point out that active attackers were not previously accounted for in the privacy requirements of this proposal protocol, and demonstrate that an active attacker can compromise unlinkability within a distance of 100cm. Here, we adopt a strong definition of unlinkability that does account for active attackers and propose an enhancement of the protocol proposed by EMVCo. We prove that our protocol does satisfy strong unlinkability, while preserving authentication.
Fonds National de la Recherche - FnR
Researchers ; Professionals ; General public
http://hdl.handle.net/10993/51374
FnR ; FNR10621687 > Sjouke Mauw > SPsquared > Security And Privacy For System Protection > 01/01/2017 > 30/06/2023 > 2015

File(s) associated to this reference

Fulltext file(s):

FileCommentaryVersionSizeAccess
Open access
main.pdfAuthor postprint439.58 kBView/Open

Bookmark and Share SFX Query

All documents in ORBilu are protected by a user license.