The KIPS Transactions:PartD (정보처리학회논문지D)

Korea Information Processing Society (한국정보처리학회)
권호 표지
DOI QR코드

DOI QR Code

Hash-Chain based Micropayment without Disclosing Privacy Information

사생활 정보가 노출되지 않는 해쉬체인 기반 소액지불시스템

  • 정윤수 (충북대학교 이공대학 전자계산학과) ;
  • 백승호 (충북대학교 전기전자컴퓨터공학부 전자계산학과) ;
  • 황윤철 (충북대학교 전기전자컴퓨터공학부 전자계산학과) ;
  • 이상호 (충북대학교 전기전자컴퓨터공학부&컴퓨터정보통신연구소)
  • Published : 2005.06.01
Download PDF
⟨ Previous Next ⟩

Abstract

A hash chain is a structure organized by hash function with high speed in computation. Systems using the hash chain are using extensively in various cryptography applications such as one-time passwords, server-supported signatures and micropayments. However, the most hash chain based on the system using pre-paid method provides anonymity but has the problem to increase payment cost. In this paper, we propose a new hash chain based on the micropayment system to keep user anonymity safe through blind signature in the withdrawal process of the root value without disclosing privacy information, and to improve efficiency by using secret key instead of public key in the system without the role of certificate.

해쉬체인은 계산속도가 빠른 해쉬함수를 이용하여 체인을 구성하는 구조이다. 이 구조를 이용하여 one-time 패스워드, 서버지원 서명(signature) 그리고 소액지불과 같은 다양한 암호학 응용에 사용되고 있다. 그러나 선불방식에 사용하고 있는 대부분의 해쉬 체인기반 시스템들은 익명성을 지원하지만 익명성으로 인하여 지불비용이 증가하는 문제점을 가지고 있다. 따라서, 이 논문에서는 고객의 사생활 보호에 중점을 두면서 루트값이 인출되는 과정에서 한번만 은닉서명을 하여 사용자의 익명성을 보장하고, 시스템에 사용하는 공개키 대신 비밀키를 사용하여 인증서의 역할을 수행하지 않도록 효율성을 향상시킨 새로운 해쉬체인 기반 소액지불시스템을 제안한다.

Keywords

References

  1. M. S. Manasse, 'The Millicent Protocols for Electronic Commerce,' Proc. of the 1st USENIX Workshop on Electronic Commerce, pp.117-123, Jul., 1995
  2. A. Herzberg and H. Yochai, 'Mini-pay: Charging per Click on the Web,' Proc. of the 6th Int. World Wide Web Conf., Apr., 1997
  3. C. Jutla and M. Yung, 'PayTree: Amortized-Signature for Flexible MicroPayments,' Proc. of the 2nd USENIX Workshop on Electronic Commerce, pp. 213-221, Nov. 1996
  4. R. L. Rivest and A. Shamir, 'PayWord and MicroMint Two Simple Micropayment Schemes,' Proc. of 1996 Int. Workshop on Security Protocols, LNCS 1189, pp.69-87, Apr., 1996 https://doi.org/10.1007/3-540-62494-5_6
  5. Y. Mu, V. Varadharajan, and L. Y. X. Lin 'New Micropayment Schemes Based on PayWords,' In Proceedings of 2nd Australasian Conference on Information Security and Privacy(ACISP '97), Lecture Notes in Computer Science 1270, pp.283-293, Springer-verlag, 1997
  6. K. Q. Nguyen, Y. Mu, and V. Varadharajan, 'Micro-Digital Money for Electronic Commerce,' Proc. of the 13th IEEE ACSAC, pp.2-8, Dec., 1997 https://doi.org/10.1109/CSAC.1997.646167
  7. W. Mao, 'Lightweight Micro-Cash for the Internet,' Proc. of the ESORICS'96, LNCS 1146, pp.15-32, Sep., 1996 https://doi.org/10.1007/3-540-61770-1_25
  8. K. Q. Nguyen, Y Mu, and V. Varadharajan, 'Secure and Efficient Digital Coins,' Proc. of the 13th IEEE ACSAC, pp. 9-15, Dec., 1997 https://doi.org/10.1109/CSAC.1997.646168
  9. S. brands, 'Untraceable Off-line Cash in Wallets with Observers,' Crypto'93, LNCS 773, pp.302-318, Aug., 1993
  10. A. De Solages and J. Traore, 'An Efficient Fair Off-Line Electronic Cash System with Extensions to Checks and Wallets with Observers,' Proc. of the 2nd Int. Conf. on Financial Cryptography, :NCS 1465, pp.275-295, Feb., 1998 https://doi.org/10.1007/BFb0055489
  11. Q. N. Khanh, Y. Mu and V. Varadharajan, 'Digital Coins based on Hash Chain,' In proceeding of the ACM SIGMOD conference on Management of Data, pp.169-180, Philadelphia, 1999
  12. T. Okamoto, 'An Efficient Divisivle Electronic Cash Scheme,' In Proceedings of Crypto'95, Lecture Notes in Computer Science, pp.438-451, Springer-Verlag, Berlin, Germany, 1995
  13. T. Okamoto and K. Ohta, 'Universal Electronic Cash,' In proceedings of Crypto'91, Lecture Notes in Computer Science 576, pp.324-337, Springer-Verlag, Berlin, Germany, 1992 https://doi.org/10.1007/3-540-46766-1_27
  14. Chan, A., Frankel, Y., and Tsiounis, Y., 'Easy Come - Easy Go Divisible Cash,' Advances in Cryptology, Eurocrypt 1998, LNCS 1403, pp.561-575, Springer, 1998 https://doi.org/10.1007/BFb0054154
  15. Nakanishi, T. and Sugiyama, Y., 'Unlinkable Divisible Electronic Cash,' Proc. of the 3rd Int. Workshop on Information Security, ISW 2000, LNCS 1975, pp.121-134, Springer, 2000
  16. de Solages, A. and Traore, J., 'An Efficient Fair Off-line Electronic Cash System with Extensions to Checks and Wallets with Observers,' Proc. of the 2nd Int. Conf. on Financial Cryptography, FC 1998, LNCS 1465, pp.275-295, Springer, 1998 https://doi.org/10.1007/BFb0055489
  17. Schnorr, C.P., 'Efficient Signature Generation by Smart Cards' J. of Cryptology, Vol.4, No.3, pp.161-174, 1991
  18. Jing-Jang Hwang, Tzu-Chang Yeh, Jung-Bin Lie, 'Securing on-line credit card payments without disclosing privacy information,' computer Standards & Interfaces 25, pp.119-129, 2003 https://doi.org/10.1016/S0920-5489(02)00102-2
  19. Network Working Group, 'AAA Authorization Appllication Examples,' RFC 2905, http://www.faqs.org/rfcs/rfc2905.html