Verifying the Payment Authorization in SET Protocol

Chen, Qingfeng; Zhang, Chengqi; Zhang, Shichao

doi:10.1007/978-3-540-45080-1_129

Qingfeng Chen⁷,
Chengqi Zhang⁷ &
Shichao Zhang⁷

Part of the book series: Lecture Notes in Computer Science ((LNCS,volume 2690))

Included in the following conference series:

International Conference on Intelligent Data Engineering and Automated Learning

1293 Accesses

Abstract

The Secure Electronic Transaction (SET) protocol is a protocol designed to conduct safe business over Internet. We present formal verification of the Payment Authorization in SET by using ENDL (extension of non-monotonic logic) [1]. The analysis uncovers some subtle defects that may incur malicious attacks. To overcome these vulnerabilities, some feasible countermeasures are proposed accordingly.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution

Chapter: USD 29.95; Price excludes VAT (USA)

eBook: USD 39.99; Price excludes VAT (USA)

Softcover Book: USD 54.99; Price excludes VAT (USA)

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

References

Chen, Q.F., Zhang, C.Q., Zhang, S.C.: A Logical Framework ENDL for Verifying Secure Transaction Protocols. Journal of Knowledge and Information Systems. Springer, Heidelberg. (accepted) (forthcoming)
Google Scholar
Needham, R., Schroeder, M.: Using Excryption for Authentication in Large Networks of Computers. Comm. of the ACM 21(12), 993–999 (1978)
Article MATH Google Scholar
Gritizalis, S.: Security Protocols over Open networks and distributed systems: Formal methods for their Analysis, Design, and Verification. Computer Communications 22(8), 695–707 (1999)
Google Scholar
Bella, G., Massacci, F., Paulson, C., Tramontano, P.: Formal Verification of Cardholder Registration in SET. In: Cuppens, F., Deswarte, Y., Gollmann, D., Waidner, M. (eds.) ESORICS 2000. LNCS, vol. 1895, pp. 159–174. Springer, Heidelberg (2000)
Chapter Google Scholar
Denning, D., Sacco, G.: Timestamp in Key Distribution Protocols. Communications of ACM 24(8), 533–536 (1981)
Article Google Scholar

Download references

Author information

Authors and Affiliations

Faculty of Information Technology, University of Technology, Sydney, P.O. Box 123, Broadway, NSW 2007, Australia
Qingfeng Chen, Chengqi Zhang & Shichao Zhang

Authors

Qingfeng Chen
View author publications
You can also search for this author in PubMed Google Scholar
Chengqi Zhang
View author publications
You can also search for this author in PubMed Google Scholar
Shichao Zhang
View author publications
You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

Department of Computer Science, Hong Kong Baptist University, Kowloon Tong, Hong Kong
Jiming Liu
Department of Computer Science, Hong Kong Baptist University, Hong Kong
Yiu-ming Cheung
School of Electrical and Electronic Engineering, University of Manchester, UK
Hujun Yin

Rights and permissions

Reprints and permissions

Copyright information

About this paper

Cite this paper

Chen, Q., Zhang, C., Zhang, S. (2003). Verifying the Payment Authorization in SET Protocol. In: Liu, J., Cheung, Ym., Yin, H. (eds) Intelligent Data Engineering and Automated Learning. IDEAL 2003. Lecture Notes in Computer Science, vol 2690. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-540-45080-1_129

Download citation

DOI: https://doi.org/10.1007/978-3-540-45080-1_129
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-540-40550-4
Online ISBN: 978-3-540-45080-1
eBook Packages: Springer Book Archive

Publish with us

Policies and ethics