Brandt's Fully Private Auction Protocol Revisited

Jannik Dreier 1, * Jean-Guillaume Dumas 2, * Pascal Lafourcade 1, *
* Auteur correspondant
1 Distributed and Complex Systems
VERIMAG - IMAG - VERIMAG
Abstract : Auctions have a long history, having been recorded as early as 500 B.C. Nowadays, electronic auctions have been a great success and are increasingly used. Many cryptographic protocols have been proposed to address the various security requirements of these electronic transactions, in particular to ensure privacy. Brandt developed a protocol that computes the winner using homomorphic operations on a distributed ElGamal encryption of the bids. He claimed that it ensures full privacy of the bidders, i.e. no information apart from the winner and the winning price is leaked. We first show that this protocol -- when using malleable interactive zero-knowledge proofs -- is vulnerable to attacks by dishonest bidders. Such bidders can manipulate the publicly available data in a way that allows the seller to deduce all participants' bids. Additionally we discuss some issues with verifiability as well as attacks on non-repudiation, fairness and the privacy of individual bidders exploiting authentication problems.
Type de document :
Communication dans un congrès
Amr Youssef and Abderrahmane Nitaj and Aboul Ella Hassanien. Africacrypt 2013, Jun 2013, Le Caire, Egypt. Springer, 7918, pp.88-106, 2013, Lecture Notes in Computer Science. 〈10.1007/978-3-642-38553-7_5〉
Liste complète des métadonnées

Littérature citée [23 références]  Voir  Masquer  Télécharger

https://hal.archives-ouvertes.fr/hal-00745247
Contributeur : Jean-Guillaume Dumas <>
Soumis le : mardi 14 mai 2013 - 10:56:45
Dernière modification le : vendredi 6 juillet 2018 - 10:08:02
Document(s) archivé(s) le : mardi 4 avril 2017 - 06:49:22

Fichiers

brandtrev.pdf
Fichiers produits par l'(les) auteur(s)

Identifiants

Citation

Jannik Dreier, Jean-Guillaume Dumas, Pascal Lafourcade. Brandt's Fully Private Auction Protocol Revisited. Amr Youssef and Abderrahmane Nitaj and Aboul Ella Hassanien. Africacrypt 2013, Jun 2013, Le Caire, Egypt. Springer, 7918, pp.88-106, 2013, Lecture Notes in Computer Science. 〈10.1007/978-3-642-38553-7_5〉. 〈hal-00745247v3〉

Partager

Métriques

Consultations de la notice

497

Téléchargements de fichiers

278