Abstract
We introduce a new payment architecture that limits the power of an attacker, and improves the efficiency of the resulting scheme. Our proposed method defends against all known attacks, implements re-vocable privacy, and is well-suited for smartcard-based payment schemes over the Internet.