Article

International Journal of Automation and Computing

, Volume 2, Issue 2, pp 155-162

First online:

Formal verification of the Merchant Registration phase of the SET protocol

  • Xiao-Qi MaAffiliated withDepartment of Computer Science, The University of Reading Email author 
  • , Xiao-Chun ChengAffiliated withDepartment of Computer Science, The University of Reading

Rent the article at a discount

Rent now

* Final gross prices may vary according to local VAT.

Get Access

Abstract

This paper describes the formal verification of the Merchant Registration phase of the Secure Electronic Transactions (SET) protocol, a realistic electronic transaction security protocol which is used to protect the secrecy of online purchases. A number of concepts, notations, functions, predicates, assumptions and rules are introduced. We describe the knowledge of all legal participants, and a malicious spy, to assess the security of the sub-protocol. Avoiding search in a large state space, the method converges very quickly. We implemented our method in the Isabelle/Isar automated reasoning environment, therefore the whole verification process can be executed mechanically and efficiently.

Keywords

Formal verification electronic transaction protocol knowledge-based system