Privacy Preserving Payments on Computational RFID Devices with Application in Intelligent Transportation Systems

Gesine Hinterwälder, Chris­tof Paar, Wayne P. Burleson

J.-H. Hoepman, I. Verbauwhede (Eds.): RFIDSec 2012, Volume 7739, pp 109-122, 2013. © Springer-Verlag Berlin Heidelberg 2013


Abstract

Electronic cash is a suitable solution for payment systems, in which the user’s identity should not be revealed during the payment. This is for example the case for public transportation payment systems. One electronic cash scheme, efficient during the spending phase, was proposed by Brands’. This scheme, as all privacy-preserving payment schemes, is based on public-key cryptography. However, payment devices used in those systems need to be cheap and low-power, which restricts their computational performance. These two points conflict with the need for payments to be executed quickly, in order to avoid delays at the entrance points of the system. In this work we demonstrate that using sophisti- cated implementation techniques, it is possible to realize full-size e-cash schemes even on inexpensive payment tokens. We present a full imple- mentation of Brands’ offline cash scheme for the UMass Moo, a compu- tational RFID-token. The spending protocol, which is the time critical part in transportation payment systems can be executed in 13 ms. This meets real-world application requirements. The reloading of the card, which is less time critical, as it is conducted offline, is time consuming. We discuss solutions to this problem

[pdf]

Tags: