Skip to main content
SpringerLink
Log in
Book cover

International Conference on Information Security and Cryptology

Inscrypt 2007: Information Security and Cryptology pp 457–462Cite as

Security Enhancement of a Flexible Payment Scheme and Its Role-Based Access Control

  • Conference paper

  • 588 Accesses

Part of the book series: Lecture Notes in Computer Science ((LNSC,volume 4990))

Abstract

Recently, Wang, Cao, and Zhang proposed a practical and anonymous payment scheme. In the scheme, the authors claimed that their scheme can identify those who spend a coin more than once. That means the scheme can verify the payments in an offline batch process and prevent a consumer from double spending. In this paper, we show that Wang, Cao, and Zhang’s scheme can not identify consumers those who spend the same coin repeatedly in two or more different shops at the same time. So, all consumers can apply the security flaw to perform double spending successfully. In order to overcome this security flaw, we provide an improved version of the scheme in this paper.

This is a preview of subscription content, log in via an institution.

Chapter
USD   29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD   39.99
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD   54.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Learn about institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

References

  1. Chaum, D.: Blind Signature for Untraceable Payments. In: Advances in Cryptology-Cryoto 1982, pp. 199–203. Springer, Heidelberg (1983)

    Google Scholar 

  2. Chaum, D.: Security Without Identification: Transaction Systems to Make Big Brother Obsolete. Communications of the ACM 28(10), 1030–1044 (1985)

    Article  Google Scholar 

  3. Chaum, D., Fiat, A., Naor, M.: Untraceable Electronic Cash. In: Goldwasser, S. (ed.) CRYPTO 1988. LNCS, vol. 403, pp. 319–327. Springer, Heidelberg (1990)

    Google Scholar 

  4. Wang, H., Cao, J., Zhang, Y.: A Flexible Payment Scheme and Its Role-Based Access Control. IEEE Transactions on Knowledge and Data Engineering 17(3), 425–436 (2005)

    Article  Google Scholar 

  5. Damgard, I.B.: Payment Systems and Credential Mechanisms with Provable Security Against Abuse by Individuals. In: Goldwasser, S. (ed.) CRYPTO 1988. LNCS, vol. 403, pp. 203–216. Springer, Heidelberg (1990)

    Google Scholar 

  6. Okamoto, T., Ohta, K.: Disposable Zero-Knowledge Authentications and Their Applications to Untraceable Electronic Cash. In: Brassard, G. (ed.) CRYPTO 1989. LNCS, vol. 435, pp. 134–149. Springer, Heidelberg (1990)

    Google Scholar 

Download references

Author information

Authors and Affiliations

  1. Department of Information Engineering and Computer Science, Feng Chia University, Taichung, Taiwan

    Chin-Chen Chang

  2. Department of Computer Science and Information Engineering, National Chung Cheng University, Chaiyi, Taiwan

    Chin-Chen Chang & Yi-Fang Cheng

  3. Department of Management Information Systems, National Chung Hsing University, Taichung, Taiwan

    Iuon-Chang Lin

Authors
  1. Chin-Chen Chang
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Yi-Fang Cheng
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Iuon-Chang Lin
    View author publications

    You can also search for this author in PubMed Google Scholar

Editor information

Dingyi Pei Moti Yung Dongdai Lin Chuankun Wu

Rights and permissions

Reprints and permissions

Copyright information

© 2008 Springer-Verlag Berlin Heidelberg

About this paper

Cite this paper

Chang, CC., Cheng, YF., Lin, IC. (2008). Security Enhancement of a Flexible Payment Scheme and Its Role-Based Access Control. In: Pei, D., Yung, M., Lin, D., Wu, C. (eds) Information Security and Cryptology. Inscrypt 2007. Lecture Notes in Computer Science, vol 4990. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-540-79499-8_35

Download citation

  • DOI: https://doi.org/10.1007/978-3-540-79499-8_35

  • Publisher Name: Springer, Berlin, Heidelberg

  • Print ISBN: 978-3-540-79498-1

  • Online ISBN: 978-3-540-79499-8

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics

Search

Navigation