The Security Problems of Rivest and Shamir's PayWord Scheme

	This Article
	Subscribers, please Login Purchase article: $19 PDF IEEE Xplore Subscribers RSS feed
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/Endnote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Norio Adachi Articles by Yuichi Komano Articles by Satoshi Aoki Articles by Kazuo Ohta

2003 IEEE International Conference on E-Commerce Technology (CEC'03)

Newport Beach, California

June 24-June 27

ISBN: 0-7695-1969-5

	ASCII Text	x
	Norio Adachi, Yuichi Komano, Satoshi Aoki, Kazuo Ohta, "The Security Problems of Rivest and Shamir's PayWord Scheme," E-Commerce Technology, IEEE International Conference on, pp. 20, 2003 IEEE International Conference on E-Commerce Technology (CEC'03), 2003.

	BibTex	x
	@article{ 10.1109/COEC.2003.1210226, author = {Norio Adachi and Yuichi Komano and Satoshi Aoki and Kazuo Ohta}, title = {The Security Problems of Rivest and Shamir's PayWord Scheme}, journal ={E-Commerce Technology, IEEE International Conference on}, volume = {0}, year = {2003}, isbn = {0-7695-1969-5}, pages = {20}, doi = {http://doi.ieeecomputersociety.org/10.1109/COEC.2003.1210226}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - E-Commerce Technology, IEEE International Conference on TI - The Security Problems of Rivest and Shamir's PayWord Scheme SN - 0-7695-1969-5 SP EP A1 - Norio Adachi, A1 - Yuichi Komano, A1 - Satoshi Aoki, A1 - Kazuo Ohta, PY - 2003 KW - null VL - 0 JA - E-Commerce Technology, IEEE International Conference on ER -

Norio Adachi, Waseda University

Yuichi Komano, Toshiba

Satoshi Aoki, NEC

Kazuo Ohta, The University of Electro-Communications

DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/COEC.2003.1210226

The PayWord Scheme was proposed by Rivest and Shamir for micropayments. This paper points out that it has the following problem: a malicious customer can damage the bank by purchasing in excess of the customer's credit which the bank has guaranteed by issuing the certificate. In general, there are two positions of the bank with regard to the certificate. Position 1: the bank takes full responsibility for the certificate and compensates all payments created by the customer's purchases; and Position 2: the bank doesn't redeem payments exceeding a limit set for the customer and shares the loss with the shop if trouble occurs.

In the PayWord Scheme, the bank can reduce its risk by adopting Position 2 rather than Position 1. However, this paper points out that the bank can damamge the shop in Position 2 by impersonating an imaginary customer and making the shop share the loss with the bank.

Citation:

Norio Adachi, Yuichi Komano, Satoshi Aoki, Kazuo Ohta, "The Security Problems of Rivest and Shamir's PayWord Scheme," cec, pp.20, 2003 IEEE International Conference on E-Commerce Technology (CEC'03), 2003

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.