INSPIRING FUTURES

A privacy preserving application acquisition protocol.

Akram, Raja Naeem, Markantonakis, Konstantinos and Mayes, Keith (2012) A privacy preserving application acquisition protocol. In: 11th IEEE International Conference on Trust, Security and Privacy in Computing and Communications (IEEE TrustCom-12). IEEE Computer Society, pp. 383-392. ISBN 978-0-7695-4745-9

[img] PDF
Restricted to Registered users only
Available under License Creative Commons Attribution Non-commercial.

Download (263kB) | Request a copy

    Abstract/Description

    In the smart card industry, the application acquisition process involves the card issuers and application providers. During this process, the respective card issuer reveals the identity of the smart card user to the individual application providers. In certain application scenarios it might be necessary (e.g. banking and identity applications). However, with introduction of the Trusted Service Manager (TSM) architecture there might be valid cases where revealing the card user's identity is not necessary. At the moment, the secure channel protocols for traditional smart card architecture including the TSM does not preserve the privacy of the card users. In this paper, we propose a secure and trusted channel protocol that provide such feature along with satisfying the requirements of an open and dynamic environment referred as User Centric Smart Card Ownership Model (UCOM). A comparison is provided between the proposed protocol and selected smart card protocols. In addition, we provide an informal analysis along with mechanical formal analysis using CasperFDR. Finally, we provide the test implementation and performance results.

    Item Type: Book Section
    ISBN: 978-0-7695-4745-9
    Additional Information: “© 2012 IEEE. Personal use of this material is permitted. Permission from IEEE must be obtained for all other uses, in any current or future media, including reprinting/republishing this material for advertising or promotional purposes, creating new collective works, for resale or redistribution to servers or lists, or reuse of any copyrighted component of this work in other works.” Paper presented at 11th IEEE International Conference on Trust, Security and Privacy in Computing and Communications (IEEE TrustCom-12 in Liverpool, UK, on 25-27 June 2012
    Uncontrolled Keywords: User Centric Smart Card Ownership Model; Application Installation Protocol; Privacy Preservation; Smart Cards; CasperFDR;
    University Divisions/Research Centres: Edinburgh Napier University, Institute for Informatics and Digital Innovation
    Dewey Decimal Subjects: 000 Computer science, information & general works > 000 Computer science, knowledge & systems > 005 Computer programming, programs & data > 005.8 Data security
    Library of Congress Subjects: Q Science > QA Mathematics > QA75 Electronic computers. Computer science
    Item ID: 5316
    Depositing User: Computing Research
    Date Deposited: 29 May 2012 16:20
    Last Modified: 18 Oct 2013 11:18
    URI: http://researchrepository.napier.ac.uk/id/eprint/5316

    Actions (login required)

    View Item

    Document Downloads

    More statistics for this item...

    Edinburgh Napier University is a registered Scottish charity. Registration number SC018373