A framework for the revocation of unintended digital signatures initiated by malicious terminals

A framework for the revocation of unintended digital signatures initiated by malicious terminals

Human users need trusted computers when they want to generate digital signatures. In many applications, in particular, if the users are mobile, they need to carry their trusted computers with themselves. Smart cards are easy to use, easy to carry, and relatively difficult to tamper with, but they do...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Veröffentlicht in:IEEE transactions on dependable and secure computing 2005-07, Vol.2 (3), p.268-272
Hauptverfasser: Berta, I.Z., Buttyan, L., Vajda, I.
Format: Artikel
Sprache:eng
Schlagworte:
Application software
authorization
Cryptography
Cybersecurity
Digital signatures
Index Terms- Electronic commerce
Manufacturing
Personal computers
Privacy
Protection
Protocols
Security
Security systems
Smart cards
Studies
User interface
User interfaces
User needs
Online-Zugang:Volltext bestellen
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:Human users need trusted computers when they want to generate digital signatures. In many applications, in particular, if the users are mobile, they need to carry their trusted computers with themselves. Smart cards are easy to use, easy to carry, and relatively difficult to tamper with, but they do not have a user interface; therefore, the user still needs a terminal for authorizing the card to produce digital signatures. If the terminal is malicious, it can mislead the user and obtain a digital signature on an arbitrary document. In order to mitigate this problem, we propose a solution based on conditional signatures. More specifically, we propose a framework for the controlled revocation of unintended digital signatures. We also propose a solution with a special emphasis on privacy issues.
ISSN:1545-5971
1941-0018
DOI:10.1109/TDSC.2005.28