A framework for the revocation of unintended digital signatures initiated by malicious terminals

Human users need trusted computers when they want to generate digital signatures. In many applications, in particular, if the users are mobile, they need to carry their trusted computers with themselves. Smart cards are easy to use, easy to carry, and relatively difficult to tamper with, but they do...

Full description

Saved in:
Bibliographic Details
Published in:IEEE transactions on dependable and secure computing 2005-07, Vol.2 (3), p.268-272
Main Authors: Berta, I.Z., Buttyan, L., Vajda, I.
Format: Article
Language:English
Subjects:
Application software
authorization
Cryptography
Cybersecurity
Digital signatures
Index Terms- Electronic commerce
Manufacturing
Personal computers
Privacy
Protection
Protocols
Security
Security systems
Smart cards
Studies
User interface
User interfaces
User needs
Citations: Items that this one cites
Items that cite this one
Online Access:Get full text
Tags: Add Tag
No Tags, Be the first to tag this record!
Description
Summary:Human users need trusted computers when they want to generate digital signatures. In many applications, in particular, if the users are mobile, they need to carry their trusted computers with themselves. Smart cards are easy to use, easy to carry, and relatively difficult to tamper with, but they do not have a user interface; therefore, the user still needs a terminal for authorizing the card to produce digital signatures. If the terminal is malicious, it can mislead the user and obtain a digital signature on an arbitrary document. In order to mitigate this problem, we propose a solution based on conditional signatures. More specifically, we propose a framework for the controlled revocation of unintended digital signatures. We also propose a solution with a special emphasis on privacy issues.
ISSN:1545-5971
1941-0018
DOI:10.1109/TDSC.2005.28