Privacy-Preserving Public Transport Ticketing System

  • Milica Milutinovic
  • Koen Decroix
  • Vincent Naessens
  • Bart De Decker
Conference paper

DOI: 10.1007/978-3-319-20810-7_9

Part of the Lecture Notes in Computer Science book series (LNCS, volume 9149)
Cite this paper as:
Milutinovic M., Decroix K., Naessens V., De Decker B. (2015) Privacy-Preserving Public Transport Ticketing System. In: Samarati P. (eds) Data and Applications Security and Privacy XXIX. DBSec 2015. Lecture Notes in Computer Science, vol 9149. Springer, Cham

Abstract

The public transport ticketing systems are undergoing significant changes in recent years. The tickets can now be issued and presented in digital form, significantly improving the user experience. The digital data is also used to improve the services’ efficiency. Travelling patterns and route occupancy can be analysed to adjust the frequency and coverage of the service. However, data recorded by the providers extends the information that is needed for simple analysis. The travel passes that are issued usually contain unique identifiers, allowing to trace the movement of users, which can even be linked to their identities. In order to tackle these privacy issues, we propose a novel, privacy-preserving ticketing system, based on a scheme for issuing and redemption of unlinkable certified tokens. The design also allows offering advanced services, such as reduction plans or monthly passes, without introducing privacy concerns. Even though the travellers’ actions cannot be linked, the service providers are given assurances against possible misuse, and are able to control the usage of the issued products. Additionally, experimental evaluation shows that the system performance is adequate for practical applications.

Copyright information

© IFIP International Federation for Information Processing 2015

Authors and Affiliations

  • Milica Milutinovic
    • 1
  • Koen Decroix
    • 2
  • Vincent Naessens
    • 2
  • Bart De Decker
    • 1
  1. 1.Department of Computer Science, iMinds/DistriNetKU LeuvenLeuvenBelgium
  2. 2.TC Ghent, Department of Computer Science, MSec, iMinds/DistriNetKU LeuvenGhentBelgium

Personalised recommendations