On-Line E-Wallet System with Decentralized Credential Keepers

We propose a generalization of the architecture of an electronic wallet, as first developed in the seminal European research project CAFE. With this model you can leave most of the content of your electronic wallet at the security of your residential electronic keeper, while roaming with your favorite mobile terminals. Emerging mobile handsets with both short range Bluetooth and cellular GPRS communications provide a sufficient communication platform for this electronic wallet architecture. However, new security requirements must be addressed, and new threats of attack must be carefully analyzed and met with appropriate security protocols. The proposed approach is fundamentally distinct from the remote wallet proposals, in that it protects important user requirements and takes a multiparty security approach using a fully decentralized architecture. Technically, the user remains in control of the input/output and usage of his credentials, likely carried by smart cards. At the same time, the model provides a solution to the pressing practical problem of the multitude of special-branded cards the user has to carry and sort. Currently used magnetic stripe and chip cards with applications such as debit and credit transactions are easily included within the architecture with minor enhancement to these legacy systems and their functionality. We show in this paper how an account-based payment system can be solved with the proposed architecture. Our claim is that users achieve payment mobility and independence of both terminals and payment service providers while maintaining secure access to their payment authorization credentials.

[1]  Birgit Pfitzmann,et al.  Trusting Mobile User Devices and Security Modules , 1997, Computer.

[2]  Joseph H. Silverman,et al.  NSS: An NTRU Lattice-Based Signature Scheme , 2001, EUROCRYPT.

[3]  David Chaum,et al.  Wallet Databases with Observers , 1992, CRYPTO.

[4]  Alfred Menezes,et al.  Handbook of Applied Cryptography , 2018 .

[5]  Chunming Rong,et al.  Localized credentials for server assisted mobile wallet , 2001, Proceedings 2001 International Conference on Computer Networks and Mobile Computing.

[6]  C. H. Fancher In your pocket: smartcards , 1997 .

[7]  Mike Just,et al.  Securely Available Credentials (SACRED) - Credential Server Framework , 2004, RFC.

[8]  Marcel Adam Just,et al.  Securely available credentials---credential server framework , 2001 .

[9]  F. Daoud,et al.  Strategies for provisioning and operating VHE services in multi-access networks , 2002 .

[10]  Ronald Cramer,et al.  The ESPRIT Project CAFE - High Security Digital Payment Systems , 1994, ESORICS.

[11]  Philippe A. Janson,et al.  The State of the Art in Electronic Payment Systems , 1997, Computer.

[12]  Stig Fr. Mjølsnes,et al.  Open transnational system for digital currency payments , 1997, Proceedings of the Thirtieth Hawaii International Conference on System Sciences.

[13]  C. R. Holliday The residential gateway , 1997 .

[14]  Jan Camenisch,et al.  An Efficient System for Non-transferable Anonymous Credentials with Optional Anonymity Revocation , 2001, IACR Cryptol. ePrint Arch..