Professional Documents
Culture Documents
Karamchand
PROJECT GUIDED BY: Dr. S. Sudalai Muthu Department of Banking Technology School of Management
E-Payment Security
Keep financial data secret from unauthorized parties (privacy) CRYPTOGRAPHY Verify that messages have not been altered in transit (integrity) HASH FUNCTIONS Prove that a party engaged in a transaction (nonrepudiation) DIGITAL SIGNATURES Verify identity of users (authentication) PASSWORDS, DIGITAL CERTIFICATES
Registration
RBI issue E-money by a registration protocol
Rx:Random Number
Structure of E-money
Mx= f(Sx,Rx)
A user request through an untraceable channel for the manager to register the money Manager Generate a pair of key (Ku-user key and Km- money Key) and an Identifier ID. A Descriptor Dx (A term used to describe or identify of E-money is stored in database)
Mx= f(0,Rx)
Messagecustomer= [ID,Ku,Km,Rx]
Where g is a primitive root of modulo n. g and n are public information of the system
Architecture of E-Cash
App. Layer
Customer
Regulatory bodies
Branch
Other banks
Data Layer
Bank Server
Knowledge repositories
Payment Protocol
Payer 4) Transaction
Recipient
3) certification
4) Certification Descriptor
Payment Protocol
Payer
Payer Encrypts a Descriptor Dx, Updates the face value and random number after transaction and send Message payer to guarantor. The Guarantor ensures the face value of money is greater than zero
Guarantor
Payment Protocol
Payer
The Guarantor Check the face value is greater than zero. Then a certification is issued that shows the face value is valid. Next the certification is encrypted with the private key
Guarantor
Payment Protocol
Let IDp- Identification for the payers Money
PAYER
Let IDr- Identification for the recipients Money Let Kr- Key Assigned to the recipients Money
RECIPIENT
Payment Protocol
The Payer sends an Authenticator Apayer-manager = E([IDp,Dp,Certification];Kpayer-private); And encrypts data for the manager with private key Kmanagerprivate
Transaction = [Dp,Mp,Rp,Pay,Certification]
Payment Protocol
The Recipient checks the validity of the Transaction. Next, the recipient calculates an authenticator
Arecipient-manager = E([IDb; Transaction],Krecipient); Recipient
The manager decrypts Mpb and Mrb. Next, the manager checks the consistency and updates descriptors on the database. Finally, the manager sends the receipts to the payer and the recipient.