Paper 2024/1746

Secure and Privacy-preserving CBDC Offline Payments using a Secure Element

Elli Androulaki, IBM Research - Zurich
Angelo De Caro, IBM Research - Zurich
Kaoutar El Khiyaoui, IBM Research - Zurich
Romain Gay, IBM Research - Zurich
Rebekah Mercer, IBM Research - Zurich, ETH Zurich
Alessandro Sorniotti, IBM Research - Zurich
Abstract

Offline payments present an opportunity for central bank digital currency to address the lack of digital financial inclusion plaguing existing digital payment solutions. However, the design of secure offline payments is a complex undertaking; for example, the lack of connectivity during the payments renders double spending attacks trivial. While the identification of double spenders and penal sanctions may curb attacks by individuals, they may not be sufficient against concerted efforts by states or well-funded institutions. It is hence important to also rely on preventive measures that reduce the scale of such attacks. An example of such a measure is secure elements. These however are limited in compute and storage, making the design of solutions that offer comparable privacy guarantees to those of physical cash challenging. We address this with a protocol that offloads most of the payment computation to the user’s mobile device and restricts the computation on the secure element to deleting spent tokens, and generating a signature with a computation equivalent to that of ECDSA. We claim that the use of mobile devices or enhanced smart card-based devices are required for secure consumer-to-consumer payments. To further harden the protocol, we enable the efficient identification of double spenders on the off-chance an attacker successfully double spends. Finally, we prove its security in the ideal/real world paradigm, and evaluate its performance to demonstrate its practicality.

Metadata
Available format(s)
PDF
Publication info
Preprint.
Contact author(s)
lli @ zurich ibm com
adc @ zurich ibm com
kao @ zurich ibm com
rga @ zurich ibm com
rebekah mercer @ ibm com
aso @ zurich ibm com
History
2024-10-28: approved
2024-10-25: received
See all versions
Short URL
https://ia.cr/2024/1746
License
Creative Commons Attribution-NonCommercial-NoDerivs
CC BY-NC-ND

BibTeX

@misc{cryptoeprint:2024/1746,
      author = {Elli Androulaki and Angelo De Caro and Kaoutar El Khiyaoui and Romain Gay and Rebekah Mercer and Alessandro Sorniotti},
      title = {Secure and Privacy-preserving {CBDC} Offline Payments using a Secure Element},
      howpublished = {Cryptology {ePrint} Archive, Paper 2024/1746},
      year = {2024},
      url = {https://eprint.iacr.org/2024/1746}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.