Sciweavers

NDSS
2000
IEEE

Analysis of a Fair Exchange Protocol

14 years 4 months ago
Analysis of a Fair Exchange Protocol
We analyze an optimistic contract signing protocol of Asokan, Shoup, and Waidner as a case study in the applicability of formal methods to verification of fair exchange protocols. After discussing the challenges involved in formalizing fairness, we use Mur¢ , a finitestate analysis tool, to discover a weakness in the protocol that enables a malicious participant to produce inconsistent versions of the contract or mount a replay attack. We show that the protocol can be repaired, and that the confidentiality assumption about the communication channels may be relaxed while preserving security against the conventional Dolev-Yao intruder.
Vitaly Shmatikov, John C. Mitchell
Added 01 Aug 2010
Updated 01 Aug 2010
Type Conference
Year 2000
Where NDSS
Authors Vitaly Shmatikov, John C. Mitchell
Comments (0)