Privacy-preserving billing for e-ticketing systems in public transportation

Authors:
Florian Kerschbaum;Hoon Wei Lim;Ivan Gudymenko
Affiliations:
SAP, Karlsruhe, Germany;Nanyang Technological University, Singapore, Singapore;Technische Universität Dresden, Dresden, Germany
Venue:
Proceedings of the 12th ACM workshop on Workshop on privacy in the electronic society
Year:
2013

Citing 28
Cited 0

Privacy-preserving data mining

SIGMOD '00 Proceedings of the 2000 ACM SIGMOD international conference on Management of data
How to share a secret

Communications of the ACM
Dynamic Accumulators and Application to Efficient Revocation of Anonymous Credentials

CRYPTO '02 Proceedings of the 22nd Annual International Cryptology Conference on Advances in Cryptology
Multiparty Computation from Threshold Homomorphic Encryption

EUROCRYPT '01 Proceedings of the International Conference on the Theory and Application of Cryptographic Techniques: Advances in Cryptology
An Efficient System for Non-transferable Anonymous Credentials with Optional Anonymity Revocation

EUROCRYPT '01 Proceedings of the International Conference on the Theory and Application of Cryptographic Techniques: Advances in Cryptology
A Generalisation, a Simplification and Some Applications of Paillier's Probabilistic Public-Key System

PKC '01 Proceedings of the 4th International Workshop on Practice and Theory in Public Key Cryptography: Public Key Cryptography
Non-Interactive CryptoComputing For NC1

FOCS '99 Proceedings of the 40th Annual Symposium on Foundations of Computer Science
Foundations of Cryptography: Volume 2, Basic Applications

Foundations of Cryptography: Volume 2, Basic Applications
Privacy Preserving Data Mining (Advances in Information Security)

Privacy Preserving Data Mining (Advances in Information Security)
Proxy re-signatures: new definitions, algorithms, and applications

Proceedings of the 12th ACM conference on Computer and communications security
MapReduce: simplified data processing on large clusters

OSDI'04 Proceedings of the 6th conference on Symposium on Opearting Systems Design & Implementation - Volume 6
Robust, anonymous RFID authentication with constant key-lookup

Proceedings of the 2008 ACM symposium on Information, computer and communications security
Privacy-Preserving Data Mining: Models and Algorithms

Privacy-Preserving Data Mining: Models and Algorithms
An Accumulator Based on Bilinear Maps and Efficient Revocation for Anonymous Credentials

Irvine Proceedings of the 12th International Conference on Practice and Theory in Public Key Cryptography: PKC '09
Fully homomorphic encryption using ideal lattices

Proceedings of the forty-first annual ACM symposium on Theory of computing
Constant-Rounds, Almost-Linear Bit-Decomposition of Secret Shared Values

CT-RSA '09 Proceedings of the The Cryptographers' Track at the RSA Conference 2009 on Topics in Cryptology
MPI on a Million Processors

Proceedings of the 16th European PVM/MPI Users' Group Meeting on Recent Advances in Parallel Virtual Machine and Message Passing Interface
Public-key cryptosystems based on composite degree residuosity classes

EUROCRYPT'99 Proceedings of the 17th international conference on Theory and application of cryptographic techniques
Vulnerabilities in first-generation RFID-enabled credit cards

FC'07/USEC'07 Proceedings of the 11th International Conference on Financial cryptography and 1st International conference on Usable Security
PrETP: privacy-preserving electronic toll pricing

USENIX Security'10 Proceedings of the 19th USENIX conference on Security
Scalable RFID security protocols supporting tag ownership transfer

Computer Communications
The phantom tollbooth: privacy-preserving electronic toll collection in the presence of driver collusion

SEC'11 Proceedings of the 20th USENIX conference on Security
Differential privacy

ICALP'06 Proceedings of the 33rd international conference on Automata, Languages and Programming - Volume Part II
RFID-Tags for anti-counterfeiting

CT-RSA'06 Proceedings of the 2006 The Cryptographers' Track at the RSA conference on Topics in Cryptology
Installing fake root keys in a PC

EuroPKI'05 Proceedings of the Second European conference on Public Key Infrastructure
Privacy for public transportation

PET'06 Proceedings of the 6th international conference on Privacy Enhancing Technologies
Practical schemes for privacy and security enhanced RFID

WISTP'10 Proceedings of the 4th IFIP WG 11.2 international conference on Information Security Theory and Practices: security and Privacy of Pervasive Systems and Smart Devices
Developing efficient blinded attribute certificates on smart cards via pairings

CARDIS'10 Proceedings of the 9th IFIP WG 8.8/11.2 international conference on Smart Card Research and Advanced Application

Quantified Score

Hi-index	0.00

Visualization

Abstract

Many electronic ticketing systems for public transportation have been deployed around the world. Using the example of Singapore's EZ-Link system we show that it is easy to invade a traveller's privacy and obtain his travel records in a real-world system. Then we propose encrypted bill processing of the travel records preventing any kind of privacy breach. Clear advantages of using bill processing instead of electronic cash are the possibility of privacy-preserving data mining analyses by the transportation company and monthly billing entailing a tighter customer relation and advanced tariffs. Moreover, we provide an implementation to demonstrate the feasibility of our solution.