[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Attack on Magic Money and Chaum cash

To: [email protected]
Subject: Re: Attack on Magic Money and Chaum cash
From: Hal <[email protected]>
Date: Sun, 6 Feb 1994 20:32:02 -0800

A quick follow-up: I suppose a cut-and-choose protocol in the withdrawal
would prevent this attack.  Instead of sending in one blinded coin to be
signed you'd send in 100 blinded candidates, then the bank would pick 99
and you'd reveal the r's for the others (remember, they are blinded with
r^e) so the bank can verify they are of the proper form.  The bank would
then sign the one remaining one and return it to you.

What a pain!  I hope someone can come up with something better, or show that
the attack doesn't work.

Hal

Prev by Date: Attack on Magic Money and Chaum cash
Next by Date: CRYPTA PLUS W/ RSA
Prev by thread: Attack on Magic Money and Chaum cash
Next by thread: CRYPTA PLUS W/ RSA
Index(es):
- Date
- Thread