Attack and Revison of an Electronic Auction Protocol using OFMC

Abstract : In the article we show an attack on the cryptographic protocol of electronic auction with extended requirements [KK04]. The found attack consists of authentication breach and secret retrieval. It is a kind of " man in the middle attack ". The intruder impersonates an agent and learns some secret information. We have discovered this flaw unsing OFMC an automatic tool of cryptographic protocol verification. After a description of this attack, we propose a new version of the e-auction protocol. We also check with OFMC the secrecy for the new protocol and give an informal proof of the other properties that this new e-auction protocol has to guarantee.
Document type :
Journal articles
Complete list of metadatas

Cited literature [12 references]  Display  Hide  Download

https://hal.archives-ouvertes.fr/hal-01759950
Contributor : Pascal Lafourcade <>
Submitted on : Thursday, April 5, 2018 - 6:38:25 PM
Last modification on : Saturday, December 22, 2018 - 10:50:56 AM

File

KL-eth549.pdf
Files produced by the author(s)

Identifiers

  • HAL Id : hal-01759950, version 1

Citation

Pascal Lafourcade, Bogdan Ksiezopolski. Attack and Revison of an Electronic Auction Protocol using OFMC. annales UMCS - Informatica, De Gruyter, 2007, 6 (1), pp.171-183. ⟨hal-01759950⟩

Share

Metrics

Record views

30

Files downloads

15