An Improved E-Commerce Protocol for Fair Exchange

In this paper, an improved fair exchange protocol for e-commerce has been presented. The new protocol builds upon a previously published one by Ray & Ray [12]. After discussing the protocol and related fairness, four weaknesses have been found, viz., Fairness Problem: Advantage Merchant, Fairness Problem: Advantage Customer, Possibility of Man in the Middle Attack and Possibility of Malicious Bank. Our modified fair exchange e-commerce protocol is able to handle these weaknesses. The proposed protocol does not involve third party to ensure the fairness.

[1]  Jianying Zhou,et al.  An intensive survey of fair non-repudiation protocols , 2002, Comput. Commun..

[2]  Oded Goldreich,et al.  A randomized protocol for signing contracts , 1985, CACM.

[3]  Steve A. Schneider,et al.  Formal analysis of a non-repudiation protocol , 1998, Proceedings. 11th IEEE Computer Security Foundations Workshop (Cat. No.98TB100238).

[4]  Thomas A. Henzinger,et al.  MOCHA: Modularity in Model Checking , 1998, CAV.

[5]  Jianying Zhou,et al.  Analysis and Improvement of Micali's Fair Contract Signing Protocol , 2004, ACISP.

[6]  N. Asokan,et al.  Optimistic protocols for fair exchange , 1997, CCS '97.

[7]  Jonathan K. Millen,et al.  Three systems for cryptographic protocol analysis , 1994, Journal of Cryptology.

[8]  Silvio Micali,et al.  Simple and fast optimistic protocols for fair electronic exchange , 2003, PODC '03.

[9]  Catherine A. Meadows,et al.  The NRL Protocol Analyzer: An Overview , 1996, J. Log. Program..

[10]  N. Asokan,et al.  Asynchronous protocols for optimistic fair exchange , 1998, Proceedings. 1998 IEEE Symposium on Security and Privacy (Cat. No.98CB36186).

[11]  Catherine A. Meadows,et al.  Analyzing the Needham-Schroeder Public-Key Protocol: A Comparison of Two Approaches , 1996, ESORICS.

[12]  Javier López,et al.  Non-repudiation protocols for multiple entities , 2004, Comput. Commun..

[13]  Jianying Zhou Achieving Fair Nonrepudiation in Electronic Transactions , 2001, J. Organ. Comput. Electron. Commer..

[14]  Indrajit Ray,et al.  An anonymous fair exchange e-commerce protocol , 2001, Proceedings 15th International Parallel and Distributed Processing Symposium. IPDPS 2001.