Abstract
A substantial number of micropayment schemes in the literature are based on distributing the cost of a digital signature over several successive micropayments (e.g. Payword). Thus, a stable relationship between user and merchant is assumed: the micropayments validated by the same signature must take place between the same user and merchant. This stability is ill-suited for surfing on the web, a situation in which successive micropayments are made to different merchants. Thus coin-based micropayments, in which successive micropayments can be unrelated to one another, are far more interesting. One practical coin-based micropayment system is PayTree, which is amazingly similar to PKIs based on certificate verification trees (CVTs). We propose in this paper a synthesis of a CVT-based PKI with a PayTree-like micropayment system. The proposed system achieves a threefold reduction of the cost of public key certification and coin processing through: 1) sharing certificates by two applications (public key and multi-coin certification); 2) including certificates in the CVT on a batch basis (costs decrease as the batch size increases); 3) accelerating certificate (and thus public key and coin) verification through the verifier/merchant caching feature of the tree structure used. Furthermore, certificate and coin verification costs also become smaller as the number of users increases.
Keywords
This is a preview of subscription content, log in via an institution.
Buying options
Tax calculation will be finalised at checkout
Purchases are for personal use only
Learn about institutional subscriptionsPreview
Unable to display preview. Download preview PDF.
References
Anderson, R., Manifavas, C., Sutherland, C.: NetCard - A practical electronic cash system (1995), Available from author: Ross.Anderson@cl.cam.ac.uk
Bellare, M., Garay, J., Hauser, R., Herzberg, A., Krawczyk, H., Steiner, M., Tsudik, G., Waidner, M.: iKP - A family of secure electronic payments protocols. In: First USENIX Workshop on Electronic Commerce, New York (July 1995)
Blaze, M., Ioannidis, J., Keromytis, A.D.: Offline micropayments without trusted hardware. In: Syverson, P.F. (ed.) FC 2001. LNCS, vol. 2339, pp. 21–40. Springer, Heidelberg (2002)
CCITT (Consultative Committee on International Telegraphy and Telephony). Recommendation X.509: The Directory-Authentication Framework (1988)
CyberCash Inc., http://www.cybercash.com
Domingo-Ferrer, J., Herrera-Joancomartí, J.: Spending programs: A tool for flexible micropayments. In: Zheng, Y., Mambo, M. (eds.) ISW 1999. LNCS, vol. 1729, pp. 1–13. Springer, Heidelberg (1999)
Domingo-Ferrer, J., Alba, M., Sebé, F.: Asynchronous large-scale certification based on certificate verification trees. In: Steinmetz, R., Dittmann, J., Steinebach, M. (eds.) Communications and Multimedia Security, pp. 185–196. Kluwer Academic Publishers, Norwell (2001)
e-cash, http://www.digicash.com
Gassko, I., Gemmell, P.S., MacKenzie, P.: Efficient and fresh certification. In: Imai, H., Zheng, Y. (eds.) PKC 2000. LNCS, vol. 1751, pp. 342–353. Springer, Heidelberg (2000)
Hauser, R., Steiner, M., Waidner, M.: Micro-payments based on iKP. IBM Research Report 2791, presented also at SECURICOM 1996, http://www.zurich.ibm.com/Technology/Security/publications/1996/HSW96.ps.gz
Jutla, C., Yung, M.: PayTree: amortized-signature for flexible micropayments. In: Proc. of the 2nd USENIX Workshop on Electronic Commerce, pp. 213– 221 (1996)
Kocher, P.C.: On certificate revocation and validation. In: Hirschfeld, R. (ed.) FC 1998. LNCS, vol. 1465, pp. 172–177. Springer, Heidelberg (1998)
Manasse, M.S.: The Millicent protocols for electronic commerce. In: Proc. of the 1st USENIX Workshop on Electronic Commerce (July 1995)
Merkle, R.C.: A certified digital signature. In: Brassard, G. (ed.) CRYPTO 1989. LNCS, vol. 435, pp. 218–238. Springer, Heidelberg (1990)
Naor, M., Nissim, K.: Certificate revocation and certificate update. In: Proceedings of 7th USENIX Security Symposium, San Antonio TX (January 1998)
Poutanen, T., Hinton, H., Stumm, M.: NetCents: A lightweight protocol for secure micropayments. In: Proceedings of the 3rd USENIX Workshop on Electronic Commerce (September 1998)
Rivest, R.L., Shamir, A.: PayWord and MicroMint: Two simple micropayment schemes. In: Lomas, M. (ed.) Security Protocols 1996. LNCS, vol. 1189, pp. 69–87. Springer, Heidelberg (1997)
Secure Electronic Transactions, http://www.mastercard.com/set/set.htm
van Someren, N.: The practical problems of implementing MicroMint. In: Syverson, P.F. (ed.) FC 2001. LNCS, vol. 2339, pp. 41–50. Springer, Heidelberg (2002)
van Someren, N., Odlyzko, A., Rivest, R., Jones, T., Goldie-Scot, D.: Does anyone really need micropayments? In: Wright, R.N. (ed.) FC 2003. LNCS, vol. 2742, pp. 69–76. Springer, Heidelberg (2003)
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2004 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Domingo-Ferrer, J. (2004). On the Synergy Between Certificate Verification Trees and PayTree-like Micropayments. In: Katsikas, S.K., Gritzalis, S., López, J. (eds) Public Key Infrastructure. EuroPKI 2004. Lecture Notes in Computer Science, vol 3093. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-540-25980-0_15
Download citation
DOI: https://doi.org/10.1007/978-3-540-25980-0_15
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-540-22216-3
Online ISBN: 978-3-540-25980-0
eBook Packages: Springer Book Archive