The Man-in-the-Middle Defence

Ross Anderson, Mike Bond

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Abstract / Description of output

Eliminating middlemen from security protocols helps less than one would think. EMV electronic payments, for example, can be made fairer by adding an electronic attorney -- a middleman which mediates access to a customer's card. We compare middlemen in crypto protocols and APIs with those in the real world, and show that a man-in-the-middle defence is helpful in many circumstances. We suggest that the middleman has been unfairly demonised.
Original languageEnglish
Title of host publicationSecurity Protocols
Subtitle of host publication14th International Workshop, Cambridge, UK, March 27-29, 2006, Revised Selected Papers
EditorsBruce Christianson, Bruno Crispo, James A. Malcolm, Michael Roe
Place of PublicationBerlin, Heidelberg
PublisherSpringer Berlin Heidelberg
Number of pages4
ISBN (Electronic)978-3-642-04904-0
ISBN (Print)978-3-642-04903-3
Publication statusPublished - 6 Oct 2009
Event14th International Workshop on Security Protocols 2006 - Cambridge, United Kingdom
Duration: 27 Mar 200629 Mar 2006
Conference number: 14

Publication series

NameLecture Notes in Computer Science
PublisherSpringer, Berlin, Heidelberg
ISSN (Print)0302-9743
ISSN (Electronic)1611-3349


Workshop14th International Workshop on Security Protocols 2006
Abbreviated titleSPW 2006
Country/TerritoryUnited Kingdom


Dive into the research topics of 'The Man-in-the-Middle Defence'. Together they form a unique fingerprint.

Cite this