An overview of the verification of SET

G. Bella; F. Massacci; L.C. Paulson

doi:10.1007/s10207-004-0047-7

An overview of the verification of SET

G. Bella, F. Massacci, L.C. Paulson

Research output: Contribution to Journal › Article › Academic › peer-review

Abstract

This paper describes the verification of Secure Electronic Transaction (SET), an e-commerce protocol by VISA and MasterCard. The main tasks are to comprehend the written documentation, to produce an accurate formal model, to identify specific protocol goals, and, finally, to prove them. The main obstacles are the protocol's complexity (due in part to its use of digital envelopes) and its unusual goals involving partial information sharing. Our verification efforts show that the protocol does not completely satisfy its goals, although the flaws are minor. The primary outcome of the project is experience with verification of enormous and complicated protocols. This paper summarizes the project - the details appear elsewhere [11 - 13] - focusing on the issues and the conclusions. © Springer-Verlag 2005.

Original language	English
Pages (from-to)	17-28
Journal	International Journal of Information Security
Volume	4
Issue number	1-2
DOIs	https://doi.org/10.1007/s10207-004-0047-7
Publication status	Published - Feb 2005
Externally published	Yes

Access to Document

10.1007/s10207-004-0047-7

Fingerprint Dive into the research topics of 'An overview of the verification of SET'. Together they form a unique fingerprint.

Cite this

@article{ad120623d37c4adfacaa8b3912eadebd,

title = "An overview of the verification of SET",

abstract = "This paper describes the verification of Secure Electronic Transaction (SET), an e-commerce protocol by VISA and MasterCard. The main tasks are to comprehend the written documentation, to produce an accurate formal model, to identify specific protocol goals, and, finally, to prove them. The main obstacles are the protocol's complexity (due in part to its use of digital envelopes) and its unusual goals involving partial information sharing. Our verification efforts show that the protocol does not completely satisfy its goals, although the flaws are minor. The primary outcome of the project is experience with verification of enormous and complicated protocols. This paper summarizes the project - the details appear elsewhere [11 - 13] - focusing on the issues and the conclusions. {\textcopyright} Springer-Verlag 2005.",

author = "G. Bella and F. Massacci and L.C. Paulson",

year = "2005",

month = feb,

doi = "10.1007/s10207-004-0047-7",

language = "English",

volume = "4",

pages = "17--28",

journal = "International Journal of Information Security",

issn = "1615-5262",

publisher = "Springer Verlag",

number = "1-2",

}

TY - JOUR

T1 - An overview of the verification of SET

AU - Bella, G.

AU - Massacci, F.

AU - Paulson, L.C.

PY - 2005/2

Y1 - 2005/2

N2 - This paper describes the verification of Secure Electronic Transaction (SET), an e-commerce protocol by VISA and MasterCard. The main tasks are to comprehend the written documentation, to produce an accurate formal model, to identify specific protocol goals, and, finally, to prove them. The main obstacles are the protocol's complexity (due in part to its use of digital envelopes) and its unusual goals involving partial information sharing. Our verification efforts show that the protocol does not completely satisfy its goals, although the flaws are minor. The primary outcome of the project is experience with verification of enormous and complicated protocols. This paper summarizes the project - the details appear elsewhere [11 - 13] - focusing on the issues and the conclusions. © Springer-Verlag 2005.

AB - This paper describes the verification of Secure Electronic Transaction (SET), an e-commerce protocol by VISA and MasterCard. The main tasks are to comprehend the written documentation, to produce an accurate formal model, to identify specific protocol goals, and, finally, to prove them. The main obstacles are the protocol's complexity (due in part to its use of digital envelopes) and its unusual goals involving partial information sharing. Our verification efforts show that the protocol does not completely satisfy its goals, although the flaws are minor. The primary outcome of the project is experience with verification of enormous and complicated protocols. This paper summarizes the project - the details appear elsewhere [11 - 13] - focusing on the issues and the conclusions. © Springer-Verlag 2005.

U2 - 10.1007/s10207-004-0047-7

DO - 10.1007/s10207-004-0047-7

M3 - Article

VL - 4

SP - 17

EP - 28

JO - International Journal of Information Security

JF - International Journal of Information Security

SN - 1615-5262

IS - 1-2

ER -