Cryptanalysis of Syverson's Rational Exchange Protocol Articles uri icon

publication date

  • January 2008

start page

  • 151

end page

  • 156


  • 2


  • 7

International Standard Serial Number (ISSN)

  • 1816-353X

Electronic International Standard Serial Number (EISSN)

  • 1816-3548


  • The notion of rational exchange introduced by Syverson in 1998 is a particularly interesting alternative when an efficient scheme for fair exchange is required but the existence of a trusted third party simply cannot be assumed.A rational exchange protocol cannot provide true fairness, but it ensures that rational &-i.e. self-interested&- parties would have no reason to deviate from the protocol. In this paper, we identify some weaknesses in Syverson's rationalexchange protocol which were neither detected by the original author nor by subsequent analysis. After presenting some attacks, we indicate how the scheme should be modified to overcome these vulnerabilities. We also provide a formal analysis of our enhancement using BAN logic.