Risk Management for E-Cash Systems with Partial Real-Time Audit

We analyze “coin-wallet” and “balance-wallet” under partial real-time audit, and compute upper bounds on theft due to the fact that not all the transactions are audited in real time, assuming that everything else is perfect. In particular, we assume that the audit regime holds for innocent payees. Let v be the maximum allowed balance in a wallet, and 0≤μ≤1 be the fraction of transactions that are audited in real time in an audit round. Assume one unit transactions. We show that the upper bound on expected theft for coin-wallet is lim μ→0μ−2, while for plausible (similar) parameter choice the bound for a balance-wallet is O(exp (mvμ)), where 1<m. The former is nicely bounded for small transactions, however, the bound for balance-wallet can become huge in those cases where we require very small false alarm probability. We conclude that partial audit, may be suitable for coin-wallets with low denomination coins, and possibly for balance-wallet, when we may tolerate a relatively high false alarm rate, but it may be too risky for balance-wallet, where very low false alarm rate is required.

[1]  David Chaum,et al.  Achieving Electronic Privacy , 1992 .

[2]  Ralph C. Merkle,et al.  Protocols for Public Key Cryptosystems , 1980, 1980 IEEE Symposium on Security and Privacy.

[3]  Rajeev Motwani,et al.  Randomized algorithms , 1996, CSUR.

[4]  Amos Fiat,et al.  Untraceable Electronic Cash , 1990, CRYPTO.

[5]  Yacov Yacobi Risk Management for E-Cash Systems with Partial Real-Time Audit , 1999, Financial Cryptography.

[6]  Noga Alon,et al.  The Probabilistic Method , 2015, Fundamentals of Ramsey Theory.

[7]  Matthew K. Franklin,et al.  Secure and Efficient Off-Line Digital Money (Extended Abstract) , 1993, ICALP.

[8]  Yacov Yacobi Efficient Electronic Money (Extended Abstract) , 1994, ASIACRYPT.

[9]  Tatsuaki Okamoto,et al.  An Efficient Divisible Electronic Cash Scheme , 1995, CRYPTO.

[10]  David Wheeler,et al.  Transactions Using Bets , 1996, Security Protocols Workshop.

[11]  Ronald L. Rivest,et al.  Electronic Lottery Tickets as Micropayments , 1997, Financial Cryptography.

[12]  Daniel R. Simon,et al.  Anonymous Communication and Anonymous Cash , 1996, CRYPTO.

[13]  Kazuo Ohta,et al.  Disposable Zero-Knowledge Authentications and Their Applications to Untraceable Electronic Cash , 1989, CRYPTO.

[14]  Yacov Yacobi On the Continuum Between On-line and Off-line E-cash Systems - 1 , 1997, Financial Cryptography.

[15]  E. Gabber,et al.  Agora: a minimal distributed protocol for electronic commerce , 1996 .

[16]  Stanislaw Jarecki,et al.  An Efficient Micropayment System Based on Probabilistic Polling , 1997, Financial Cryptography.

[17]  Tatsuaki Okamoto,et al.  Universal Electronic Cash , 1991, CRYPTO.