Formal Verification of the mERA-Based eServices with Trusted Third Party Protocol - Information Security and Privacy Research
Conference Papers Year : 2012

Formal Verification of the mERA-Based eServices with Trusted Third Party Protocol

Aline Gouget
  • Function : Author
  • PersonId : 1007492

Abstract

Internet services such as online banking, social networking and other web services require identification and authentication means. The European Citizen card can be used to provide a privacy-preserving authentication for Internet services enabling e.g. an anonymous age verification or other forms of anonymous attribute verification. The Modular Enhanced Symmetric Role Authentication (mERA) - based eServices with trusted third party protocol is a privacy-preserving protocol based on eID card recently standardized at CEN TC224 WG16. In this paper, we provide a formal analysis of its security by verifying formally several properties, such as secrecy, message authentication, unlinkability, as well as its liveness property. In the course of this verification, we obtain positive results about this protocol. We implement this verification with the ProVerif tool.
Fichier principal
Vignette du fichier
978-3-642-30436-1_25_Chapter.pdf (169.67 Ko) Télécharger le fichier
Origin Files produced by the author(s)
Loading...

Dates and versions

hal-01518237 , version 1 (04-05-2017)

Licence

Identifiers

Cite

Maria Christofi, Aline Gouget. Formal Verification of the mERA-Based eServices with Trusted Third Party Protocol. 27th Information Security and Privacy Conference (SEC), Jun 2012, Heraklion, Crete, Greece. pp.299-314, ⟨10.1007/978-3-642-30436-1_25⟩. ⟨hal-01518237⟩
369 View
130 Download

Altmetric

Share

More