Cryptanalysis of the RSA-CEGD protocol

Juan M. E. Tapiador; Almudena Alcaide; Julio C. Hernandez-Castro,; Arturo Ribagorda

arXiv:0812.0686·cs.CR·December 4, 2008

Cryptanalysis of the RSA-CEGD protocol

Juan M. E. Tapiador, Almudena Alcaide, Julio C. Hernandez-Castro,, Arturo Ribagorda

PDF

Open Access

TL;DR

This paper critically analyzes the RSA-CEGD protocol for e-goods delivery, revealing a significant fairness flaw through a severe attack and highlighting additional vulnerabilities.

Contribution

It provides the first cryptanalysis showing that RSA-CEGD fails to ensure fairness, exposing critical security weaknesses in the protocol.

Findings

01

RSA-CEGD protocol is not fair due to a specific attack

02

The protocol has vulnerabilities beyond fairness issues

03

The analysis questions the security assumptions of RSA-CEGD

Abstract

Recently, Nenadi\'c et al. (2004) proposed the RSA-CEGD protocol for certified delivery of e-goods. This is a relatively complex scheme based on verifiable and recoverable encrypted signatures (VRES) to guarantee properties such as strong fairness and non-repudiation, among others. In this paper, we demonstrate how this protocol cannot achieve fairness by presenting a severe attack and also pointing out some other weaknesses.

Peer Reviews

No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.

Videos

No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.

Taxonomy

TopicsCryptography and Data Security · Advanced Authentication Protocols Security · Cryptographic Implementations and Security