Attack and Revison of an Electronic Auction Protocol using OFMC

Abstract : In the article we show an attack on the cryptographic protocol of electronic auction with extended requirements [KK04]. The found attack consists of authentication breach and secret retrieval. It is a kind of " man in the middle attack ". The intruder impersonates an agent and learns some secret information. We have discovered this flaw unsing OFMC an automatic tool of cryptographic protocol verification. After a description of this attack, we propose a new version of the e-auction protocol. We also check with OFMC the secrecy for the new protocol and give an informal proof of the other properties that this new e-auction protocol has to guarantee.
Document type :
Journal articles
Complete list of metadatas

Cited literature [12 references]  Display  Hide  Download
Contributor : Pascal Lafourcade <>
Submitted on : Thursday, April 5, 2018 - 6:38:25 PM
Last modification on : Saturday, December 22, 2018 - 10:50:56 AM


Files produced by the author(s)


  • HAL Id : hal-01759950, version 1


Pascal Lafourcade, Bogdan Ksiezopolski. Attack and Revison of an Electronic Auction Protocol using OFMC. annales UMCS - Informatica, De Gruyter, 2007, 6 (1), pp.171-183. ⟨hal-01759950⟩



Record views


Files downloads