Forum for Science, Industry and Business

Sponsored by:     3M 
Search our Site:

 

Secure payment without leaving a trace

26.10.2017

Conventional electronic payment systems offer minimum data security -- KIT scientists have developed safe protocol to guarantee privacy

No matter whether payment of the public passenger transport ticket is made via a smartphone app or whether a prepaid card is used for the public swimming pool or a bonus card for the supermarket: Many people already open their "electronic purses" every day.


Paying public passenger transport tickets with a smartphone becomes increasingly popular. But is it secure?

Photo: Gabi Zachmann/KIT

However, most of them are not aware of the fact that by doing so, they largely lose privacy. Researchers of Karlsruhe Institute of Technology (KIT) have developed a secure and anonymous system for daily use. It will be presented at the ACM CCS 2017 conference in the USA.

Computer scientist Andy Rupp, member of the "Cryptography and Security" working group of KIT, is always surprised about lacking problem awareness: "I observed that only few users are aware of the fact that by using such bonus or payment systems they disclose in detail how and what they consume or which routes they have taken."

To prevent manipulation of the accounts by dishonest users, customer data and account balances of payment and bonus systems are usually administrated with the help of a central database. In every payment transaction, the customer is identified and the details of her/his transaction are transmitted to the central database. This repeated identification process produces a data trace that might be misused by the provider or third parties.

The cryptography expert did not want to resign himself to this apparent conflict of privacy and security. Together with Gunnar Hartung and Matthias Nagel of KIT and Max Hoffmann of Ruhr-Universität Bochum, he has now presented the basics of an "electronic purse" that works anonymously, but prevents misuse at the same time.

The "black-box accumulation plus" (BBA+) protocol developed by them transfers all necessary account data to the card used or the smartphone and guarantees their confidentiality with the help of cryptographic methods. At the same time, BBA+ offers security guarantees for the operator of the bonus or payment system: The protocol guarantees a correct account balance and is mathematically constructed such that the identity of the user is disclosed as soon as the attempt is made to pay with a manipulated account.

The new protocol is a further development of an anonymous bonus card system that was also designed by the KIT research group. For collecting and redeeming points, however, it required an internet connection to prevent misuse. "Our new protocol guarantees privacy and security for customers during offline operation as well," Andy Rupp says.

"This is needed for ensuring the payment system's suitability for daily use. Think of a subway turnstile or a toll bridge. There you may have no internet connection at all or it is very slow." Also its high efficiency makes the protocol suited for everyday use: During first test runs, researchers executed payments within about one second.

###

More about research in this area: http://crypto.iti.kit.edu/index.php?id=cyphycrypt&L=2

https://homepage.ruhr-uni-bochum.de/andy.rupp/papers/bbap_ccs17.pdf

More about the conference: https://www.sigsac.org/ccs/CCS2017/agenda.html

More about the KIT Information · Systems · Technologies Center: http://www.kcist.kit.edu

For further information, please contact:

Martin Heidelberger, Editor, Phone: 49-721-608-21169, Email: martin.heidelberger@kit.edu

Being "The Research University in the Helmholtz Association," KIT creates and imparts knowledge for the society and the environment. It is the objective to make significant contributions to the global challenges in the fields of energy, mobility and information. For this, about 9,300 employees cooperate in a broad range of disciplines in natural sciences, engineering sciences, economics, and the humanities and social sciences. KIT prepares its 26,000 students for responsible tasks in society, industry, and science by offering research-based study programs. Innovation efforts at KIT build a bridge between important scientific findings and their application for the benefit of society, economic prosperity, and the preservation of our natural basis of life.

Since 2010, the KIT has been certified as a family-friendly university.

This press release is available on the internet at http://www.sek.kit.edu/english/press_office.php.

Media Contact

Monika Landgraf
presse@kit.edu
49-721-608-47414

 @KITKarlsruhe

http://www.kit.edu/index.php 

Monika Landgraf | EurekAlert!

More articles from Information Technology:

nachricht Research on light-matter interaction could improve electronic and optoelectronic devices
11.10.2018 | Rensselaer Polytechnic Institute

nachricht Unique Deep Learning Infrastructure - DFKI receives first NVIDIA DGX-2 supercomputer in Europe
11.10.2018 | Deutsches Forschungszentrum für Künstliche Intelligenz GmbH, DFKI

All articles from Information Technology >>>

The most recent press releases about innovation >>>

Die letzten 5 Focus-News des innovations-reports im Überblick:

Im Focus: Storage & Transport of highly volatile Gases made safer & cheaper by the use of “Kinetic Trapping"

Augsburg chemists present a new technology for compressing, storing and transporting highly volatile gases in porous frameworks/New prospects for gas-powered vehicles

Storage of highly volatile gases has always been a major technological challenge, not least for use in the automotive sector, for, for example, methane or...

Im Focus: Disrupting crystalline order to restore superfluidity

When we put water in a freezer, water molecules crystallize and form ice. This change from one phase of matter to another is called a phase transition. While this transition, and countless others that occur in nature, typically takes place at the same fixed conditions, such as the freezing point, one can ask how it can be influenced in a controlled way.

We are all familiar with such control of the freezing transition, as it is an essential ingredient in the art of making a sorbet or a slushy. To make a cold...

Im Focus: Micro energy harvesters for the Internet of Things

Fraunhofer IWS Dresden scientists print electronic layers with polymer ink

Thin organic layers provide machines and equipment with new functions. They enable, for example, tiny energy recuperators. In future, these will be installed...

Im Focus: Dynamik einzelner Proteine

Neue Messmethode erlaubt es Forschenden, die Bewegung von Molekülen lange und genau zu verfolgen

Das Zusammenspiel aus Struktur und Dynamik bestimmt die Funktion von Proteinen, den molekularen Werkzeugen der Zelle. Durch Fortschritte in der...

Im Focus: Dynamics of individual proteins

New measurement method allows researchers to precisely follow the movement of individual molecules over long periods of time

The function of proteins – the molecular tools of the cell – is governed by the interplay of their structure and dynamics. Advances in electron microscopy have...

All Focus news of the innovation-report >>>

Anzeige

Anzeige

VideoLinks
Industry & Economy
Event News

5th International Conference on Cellular Materials (CellMAT), Scientific Programme online

02.10.2018 | Event News

Major Project: The New Silk Road

01.10.2018 | Event News

"Boston calling": TU Berlin and the Weizenbaum Institute organize a conference in USA

21.09.2018 | Event News

 
Latest News

Physics: Not everything is where it seems to be

15.10.2018 | Physics and Astronomy

Microfluidic molecular exchanger helps control therapeutic cell manufacturing

15.10.2018 | Life Sciences

Link between Gut Flora and Multiple Sclerosis Discovered

15.10.2018 | Life Sciences

VideoLinks
Science & Research
Overview of more VideoLinks >>>