SlideShare a Scribd company logo

Project security

Download as PPTX, PDF
M
mh77ha

پروژه درس امنیت-مریم سادات حاج اکبری

1 of 49
Security in e-Business استاد: آقاي دکتر سخاوتی مريم سادات حاج اکبری 8861022 2/8/2011 1
Electronic commerce Type of electronic commerce ,[object Object]
Customer to business -> such as online stores
Customer to customer -> such as Ebay
Customer business to public administrator -> such as filling electronic tax2/8/2011 2
A typical electronic payment system 3 6.Interbank(clearing) network 7.ok Payment gateway 4.withdrawal 5.deposit 8.Registration Authorization transaction 3.registration 2.Check account customer 1.Payment info 9.Delivery+Confirmation
E-payment systems Offline vs. online Debit vs. credit Macro vs. Micro 2/8/2011 4
Offline vs. Online Offline payment system ,[object Object],Use in Airlines ,[object Object]
Crew prints payment’s information and customer’s credit card by a mechanical device in a paper and then enter online system.2/8/2011 5
Offline vs. Online Online payment system 2/8/2011 6
Debit vs. credit Debit card: ,[object Object],Credit card: ,[object Object]
Card holder
Card issuing bank -> visa or Master or AMEX ….
Merchant
Name on credit card -> visa or master
Association 2/8/2011 7
How credit card act? 2/8/2011 8
Macro .VS Micro Macro system ,[object Object],Micro payment ,[object Object]
Example: Public transportation system, Restaurants, Online Advertising….
Difference:
For any transaction it has a fee about 20 to 30 cent for payer and payee.2/8/2011 9
Payment instructure Cash like Check like Credit card Electronic money Electronic check 2/8/2011 10
Mechanism payment by credit cart 2/8/2011 11 3 2 4 1
Credit card security Two original Illegal Use from credit card ,[object Object]
DishonestThe solution: ,[object Object]
Will issue next chapter2/8/2011 12
Electronic money Define : Scripting money or exchanged only in electronic form Called as:e- cash, digital cash, digital/electronic currency Mainly Used as: micro system Electronic Currencies : Digital or electronic coin 2/8/2011 13
Digital money Such as Octopus system in Hong Kong ,[object Object],The best example is pay pal ,[object Object]
The user can from their account to other account holders to give or receive money.2/8/2011 14
Electronic check 2/8/2011 15 6.Interbank(clearing) network settlement Difference with cash like: In cash like, Electronic payment system the first check customer’s account then delivery product or services 5.Endorsed check 1.Payment info 2- invoice 3.Signed check 4.
Electronic wallet 2/8/2011 16 Define: It is a interface for save any financial information. Usage: Complete electronic forms without re-entering the transaction data when the transaction ,[object Object]
Such as digital money and credit cards
Google check out,[object Object]
Identify risks, threats, vulnerability
Identify Related prioritiesNotice: any payment system have needs and special features. 2/8/2011 17
Electronic payment security Problems Traditional payment systems ,[object Object]
Signature can be forgot
Checks can bounceProblems electronic payment systems ,[object Object]
A payer’s identity can be associated with every payment transaction.
Digital signatures can be produced by who knows the private key.Notice: electronic commerce need To more attention. 2/8/2011 18
Three types of adversaries! Outsiders eavesdropping ,[object Object],Active attackers ,[object Object],Dishonest payment system participants ,[object Object],They are not authorized to see or use 2/8/2011 19
The basic security requirements Payment authentication Payment integrity Payment authorization Payment confidentiality 2/8/2011 20
Payment authentication No anonymity -> mechanisms such as MAC – SHA – MD5 With anonymity –> It needs to more security 2/8/2011 21
Payment integrity Payment integrity requires that payment transaction data cannot be modifiable by unauthorized principals. payment transaction data: ,[object Object]
Payee’s identity.
Content of the purchase.
The amount.2/8/2011 22
Payment authorization 2/8/2011 23 ,[object Object],[object Object]
Payment security services Payment transaction security services Digital money security Electronic checks security 2/8/2011 25

Recommended

Security and trust in e payment
Security and trust in e paymentSecurity and trust in e payment
Security and trust in e paymentحمد الشلوي
 
Ch 2
Ch 2Ch 2
Ch 2Muhammad Hijab
 
Electronic cheque
Electronic chequeElectronic cheque
Electronic chequeEmmanual Jose
 
E transaction
E transactionE transaction
E transactionZeeshan Ahmed
 
Secure Electronic Transaction
Secure Electronic TransactionSecure Electronic Transaction
Secure Electronic TransactionUnited International University
 
Secure Electronic Transaction (SET)
Secure Electronic Transaction (SET)Secure Electronic Transaction (SET)
Secure Electronic Transaction (SET)Syed Taimoor Hussain Shah
 
Global e payment system ppt
Global e payment system pptGlobal e payment system ppt
Global e payment system pptSalman Khaja
 
Online payment and e cash
Online payment and e cashOnline payment and e cash
Online payment and e cashFCA - Future Chartered Accountants
 

Recommended

Security and trust in e payment
Security and trust in e paymentSecurity and trust in e payment
Security and trust in e paymentحمد الشلوي
 
Ch 2
Ch 2Ch 2
Ch 2Muhammad Hijab
 
Electronic cheque
Electronic chequeElectronic cheque
Electronic chequeEmmanual Jose
 
E transaction
E transactionE transaction
E transactionZeeshan Ahmed
 
Secure Electronic Transaction
Secure Electronic TransactionSecure Electronic Transaction
Secure Electronic TransactionUnited International University
 
Secure Electronic Transaction (SET)
Secure Electronic Transaction (SET)Secure Electronic Transaction (SET)
Secure Electronic Transaction (SET)Syed Taimoor Hussain Shah
 
Global e payment system ppt
Global e payment system pptGlobal e payment system ppt
Global e payment system pptSalman Khaja
 
Online payment and e cash
Online payment and e cashOnline payment and e cash
Online payment and e cashFCA - Future Chartered Accountants
 
Digital cash
Digital cashDigital cash
Digital cashSubhash Mandal
 
Set Secure Electronic Transaction (SET)
Set Secure Electronic Transaction (SET)Set Secure Electronic Transaction (SET)
Set Secure Electronic Transaction (SET)Suraj Dhalwar
 
e-cheque
e-chequee-cheque
e-chequeraksha93
 
E secure transaction project ppt(Design and implementation of e-secure trans...
E secure transaction project ppt(Design and implementation of e-secure trans...E secure transaction project ppt(Design and implementation of e-secure trans...
E secure transaction project ppt(Design and implementation of e-secure trans...AJIT Singh
 
Secure payment systems
Secure payment systemsSecure payment systems
Secure payment systemsAbdulaziz Mohd
 
Secure electronic transactions (SET)
Secure electronic transactions (SET)Secure electronic transactions (SET)
Secure electronic transactions (SET)Omar Ghazi
 
E-payment
E-paymentE-payment
E-paymentSiti Raisha
 
E Payment Demo Mvat
E Payment Demo MvatE Payment Demo Mvat
E Payment Demo MvatPSPCL
 
secure electronics transaction
secure electronics transactionsecure electronics transaction
secure electronics transactionHarsh Mehta
 
Digital Cash
Digital CashDigital Cash
Digital Cashsamuelthomas95
 
Online Payment System - Debit Cards, Direct Debit and Electronic Cash
Online Payment System - Debit Cards, Direct Debit and Electronic CashOnline Payment System - Debit Cards, Direct Debit and Electronic Cash
Online Payment System - Debit Cards, Direct Debit and Electronic CashJewel George Thomas
 
E Payment
E PaymentE Payment
E PaymentAnkit Saxena
 
Electronic payment systems - Presentation by IrfanAnsari.com
Electronic payment systems - Presentation by IrfanAnsari.comElectronic payment systems - Presentation by IrfanAnsari.com
Electronic payment systems - Presentation by IrfanAnsari.comLearnInUrdu.com & Ustaadjee.com
 
Payment Card System Overview
Payment Card System OverviewPayment Card System Overview
Payment Card System OverviewNarudom Roongsiriwong, CISSP
 
Electronic payment System
Electronic payment SystemElectronic payment System
Electronic payment SystemMohammad Waqas
 
Electronic payment systems
Electronic payment systemsElectronic payment systems
Electronic payment systemsArti Parab Academics
 
Cyber cash
Cyber cashCyber cash
Cyber cashMohd. Ahmad Siddiqi
 
E commerce & m-commerce payment systems
E commerce & m-commerce payment systemsE commerce & m-commerce payment systems
E commerce & m-commerce payment systemsSyed Shah
 
Educ416 week four_assignment
Educ416 week four_assignmentEduc416 week four_assignment
Educ416 week four_assignmentKathie Sedwick
 
Jacobs powrpoint
Jacobs powrpointJacobs powrpoint
Jacobs powrpointBentonGeometry
 
INSTALLER MATH: CALCULATING AREA
INSTALLER MATH: CALCULATING AREAINSTALLER MATH: CALCULATING AREA
INSTALLER MATH: CALCULATING AREAKathie Sedwick
 
CREW CHIEF MODULE 4: UNDERSTANDING A WORK ORDER
CREW CHIEF MODULE 4: UNDERSTANDING A WORK ORDERCREW CHIEF MODULE 4: UNDERSTANDING A WORK ORDER
CREW CHIEF MODULE 4: UNDERSTANDING A WORK ORDERKathie Sedwick
 

More Related Content

What's hot

Set Secure Electronic Transaction (SET)
Set Secure Electronic Transaction (SET)Set Secure Electronic Transaction (SET)
Set Secure Electronic Transaction (SET)Suraj Dhalwar
 
E secure transaction project ppt(Design and implementation of e-secure trans...
E secure transaction project ppt(Design and implementation of e-secure trans...E secure transaction project ppt(Design and implementation of e-secure trans...
E secure transaction project ppt(Design and implementation of e-secure trans...AJIT Singh
 
Secure payment systems
Secure payment systemsSecure payment systems
Secure payment systemsAbdulaziz Mohd
 
Secure electronic transactions (SET)
Secure electronic transactions (SET)Secure electronic transactions (SET)
Secure electronic transactions (SET)Omar Ghazi
 
E Payment Demo Mvat
E Payment Demo MvatE Payment Demo Mvat
E Payment Demo MvatPSPCL
 
secure electronics transaction
secure electronics transactionsecure electronics transaction
secure electronics transactionHarsh Mehta
 
Online Payment System - Debit Cards, Direct Debit and Electronic Cash
Online Payment System - Debit Cards, Direct Debit and Electronic CashOnline Payment System - Debit Cards, Direct Debit and Electronic Cash
Online Payment System - Debit Cards, Direct Debit and Electronic CashJewel George Thomas
 
Electronic payment systems - Presentation by IrfanAnsari.com
Electronic payment systems - Presentation by IrfanAnsari.comElectronic payment systems - Presentation by IrfanAnsari.com
Electronic payment systems - Presentation by IrfanAnsari.comLearnInUrdu.com & Ustaadjee.com
 
Electronic payment System
Electronic payment SystemElectronic payment System
Electronic payment SystemMohammad Waqas
 
E commerce & m-commerce payment systems
E commerce & m-commerce payment systemsE commerce & m-commerce payment systems
E commerce & m-commerce payment systemsSyed Shah
 

What's hot (18)

Digital cash
Digital cashDigital cash
Digital cash
 
Set Secure Electronic Transaction (SET)
Set Secure Electronic Transaction (SET)Set Secure Electronic Transaction (SET)
Set Secure Electronic Transaction (SET)
 
e-cheque
e-chequee-cheque
e-cheque
 
E secure transaction project ppt(Design and implementation of e-secure trans...
E secure transaction project ppt(Design and implementation of e-secure trans...E secure transaction project ppt(Design and implementation of e-secure trans...
E secure transaction project ppt(Design and implementation of e-secure trans...
 
Secure payment systems
Secure payment systemsSecure payment systems
Secure payment systems
 
Secure electronic transactions (SET)
Secure electronic transactions (SET)Secure electronic transactions (SET)
Secure electronic transactions (SET)
 
E-payment
E-paymentE-payment
E-payment
 
E Payment Demo Mvat
E Payment Demo MvatE Payment Demo Mvat
E Payment Demo Mvat
 
secure electronics transaction
secure electronics transactionsecure electronics transaction
secure electronics transaction
 
Digital Cash
Digital CashDigital Cash
Digital Cash
 
Online Payment System - Debit Cards, Direct Debit and Electronic Cash
Online Payment System - Debit Cards, Direct Debit and Electronic CashOnline Payment System - Debit Cards, Direct Debit and Electronic Cash
Online Payment System - Debit Cards, Direct Debit and Electronic Cash
 
E Payment
E PaymentE Payment
E Payment
 
Electronic payment systems - Presentation by IrfanAnsari.com
Electronic payment systems - Presentation by IrfanAnsari.comElectronic payment systems - Presentation by IrfanAnsari.com
Electronic payment systems - Presentation by IrfanAnsari.com
 
Payment Card System Overview
Payment Card System OverviewPayment Card System Overview
Payment Card System Overview
 
Electronic payment System
Electronic payment SystemElectronic payment System
Electronic payment System
 
Electronic payment systems
Electronic payment systemsElectronic payment systems
Electronic payment systems
 
Cyber cash
Cyber cashCyber cash
Cyber cash
 
E commerce & m-commerce payment systems
E commerce & m-commerce payment systemsE commerce & m-commerce payment systems
E commerce & m-commerce payment systems
 

Viewers also liked

Educ416 week four_assignment
Educ416 week four_assignmentEduc416 week four_assignment
Educ416 week four_assignmentKathie Sedwick
 
INSTALLER MATH: CALCULATING AREA
INSTALLER MATH: CALCULATING AREAINSTALLER MATH: CALCULATING AREA
INSTALLER MATH: CALCULATING AREAKathie Sedwick
 
CREW CHIEF MODULE 4: UNDERSTANDING A WORK ORDER
CREW CHIEF MODULE 4: UNDERSTANDING A WORK ORDERCREW CHIEF MODULE 4: UNDERSTANDING A WORK ORDER
CREW CHIEF MODULE 4: UNDERSTANDING A WORK ORDERKathie Sedwick
 
Effective crew leader_2
Effective crew leader_2Effective crew leader_2
Effective crew leader_2Kathie Sedwick
 
INSTALLER MATH: CALCULATING VOLUME
INSTALLER MATH: CALCULATING VOLUMEINSTALLER MATH: CALCULATING VOLUME
INSTALLER MATH: CALCULATING VOLUMEKathie Sedwick
 
Building science heat_transfer
Building science heat_transferBuilding science heat_transfer
Building science heat_transferKathie Sedwick
 
Designing for Massive Scalability at BackType #bigdatacamp
Designing for Massive Scalability at BackType #bigdatacampDesigning for Massive Scalability at BackType #bigdatacamp
Designing for Massive Scalability at BackType #bigdatacampMichael Montano
 

Viewers also liked (12)

Educ416 week four_assignment
Educ416 week four_assignmentEduc416 week four_assignment
Educ416 week four_assignment
 
Jacobs powrpoint
Jacobs powrpointJacobs powrpoint
Jacobs powrpoint
 
INSTALLER MATH: CALCULATING AREA
INSTALLER MATH: CALCULATING AREAINSTALLER MATH: CALCULATING AREA
INSTALLER MATH: CALCULATING AREA
 
CREW CHIEF MODULE 4: UNDERSTANDING A WORK ORDER
CREW CHIEF MODULE 4: UNDERSTANDING A WORK ORDERCREW CHIEF MODULE 4: UNDERSTANDING A WORK ORDER
CREW CHIEF MODULE 4: UNDERSTANDING A WORK ORDER
 
Effective crew leader_2
Effective crew leader_2Effective crew leader_2
Effective crew leader_2
 
INSTALLER MATH: CALCULATING VOLUME
INSTALLER MATH: CALCULATING VOLUMEINSTALLER MATH: CALCULATING VOLUME
INSTALLER MATH: CALCULATING VOLUME
 
Installer math area
Installer math areaInstaller math area
Installer math area
 
Presentation1
Presentation1Presentation1
Presentation1
 
Presentation1
Presentation1Presentation1
Presentation1
 
Building science heat_transfer
Building science heat_transferBuilding science heat_transfer
Building science heat_transfer
 
Universal Exchange
Universal ExchangeUniversal Exchange
Universal Exchange
 
Designing for Massive Scalability at BackType #bigdatacamp
Designing for Massive Scalability at BackType #bigdatacampDesigning for Massive Scalability at BackType #bigdatacamp
Designing for Massive Scalability at BackType #bigdatacamp
 

Similar to Project security

S.m.o.k.e. technologies
S.m.o.k.e. technologiesS.m.o.k.e. technologies
S.m.o.k.e. technologiesshub99
 
Secure E-payment Protocol
Secure E-payment ProtocolSecure E-payment Protocol
Secure E-payment ProtocolCSCJournals
 
Paper id 2320146
Paper id 2320146Paper id 2320146
Paper id 2320146IJRAT
 
Electronic payment system
Electronic payment systemElectronic payment system
Electronic payment systempankhadi
 
ENFORCING SET AND SSL PROTOCOLS IN EPAYMENT
ENFORCING SET AND SSL PROTOCOLS IN EPAYMENTENFORCING SET AND SSL PROTOCOLS IN EPAYMENT
ENFORCING SET AND SSL PROTOCOLS IN EPAYMENTijcsit
 
An Improvement To The Set Protocol Based On Signcryption
An Improvement To The Set Protocol Based On SigncryptionAn Improvement To The Set Protocol Based On Signcryption
An Improvement To The Set Protocol Based On Signcryptionijcisjournal
 
Online payment system
Online payment systemOnline payment system
Online payment systemmyangel27
 
electronicpaymentsystem-12697023522629-phpapp01.pdf
electronicpaymentsystem-12697023522629-phpapp01.pdfelectronicpaymentsystem-12697023522629-phpapp01.pdf
electronicpaymentsystem-12697023522629-phpapp01.pdfUjwalReddyPB
 
Ec2009 ch11 electronic payment systems
Ec2009 ch11 electronic payment systemsEc2009 ch11 electronic payment systems
Ec2009 ch11 electronic payment systemsNuth Otanasap
 
MIS 10 Electronic Payment System
MIS 10 Electronic Payment SystemMIS 10 Electronic Payment System
MIS 10 Electronic Payment SystemTushar B Kute
 
Electronic Payment Fundamentals: When Tech Embracing Payment Industry
Electronic Payment Fundamentals: When Tech Embracing Payment IndustryElectronic Payment Fundamentals: When Tech Embracing Payment Industry
Electronic Payment Fundamentals: When Tech Embracing Payment IndustryGoutama Bachtiar
 
Electronic Payment System
Electronic Payment SystemElectronic Payment System
Electronic Payment SystemRitesh Goyal
 
INTRODUCTION EATZRKSYTDULYFIUGOIHPOJ[P][L\];
INTRODUCTION EATZRKSYTDULYFIUGOIHPOJ[P][L\];INTRODUCTION EATZRKSYTDULYFIUGOIHPOJ[P][L\];
INTRODUCTION EATZRKSYTDULYFIUGOIHPOJ[P][L\];IrabarutaEmmanuel
 

Similar to Project security (20)

S.m.o.k.e. technologies
S.m.o.k.e. technologiesS.m.o.k.e. technologies
S.m.o.k.e. technologies
 
Secure E-payment Protocol
Secure E-payment ProtocolSecure E-payment Protocol
Secure E-payment Protocol
 
Paper id 2320146
Paper id 2320146Paper id 2320146
Paper id 2320146
 
Electronic payment system
Electronic payment systemElectronic payment system
Electronic payment system
 
ENFORCING SET AND SSL PROTOCOLS IN EPAYMENT
ENFORCING SET AND SSL PROTOCOLS IN EPAYMENTENFORCING SET AND SSL PROTOCOLS IN EPAYMENT
ENFORCING SET AND SSL PROTOCOLS IN EPAYMENT
 
ENFORCING SET AND SSL PROTOCOLS IN EPAYMENT
ENFORCING SET AND SSL PROTOCOLS IN EPAYMENTENFORCING SET AND SSL PROTOCOLS IN EPAYMENT
ENFORCING SET AND SSL PROTOCOLS IN EPAYMENT
 
Enforcing Set and SSL Protocols in E-Payment
Enforcing Set and SSL Protocols in E-PaymentEnforcing Set and SSL Protocols in E-Payment
Enforcing Set and SSL Protocols in E-Payment
 
E cash payment
E cash paymentE cash payment
E cash payment
 
An Improvement To The Set Protocol Based On Signcryption
An Improvement To The Set Protocol Based On SigncryptionAn Improvement To The Set Protocol Based On Signcryption
An Improvement To The Set Protocol Based On Signcryption
 
Secnet
SecnetSecnet
Secnet
 
FinTech, Internet of Things & Patents
FinTech, Internet of Things & PatentsFinTech, Internet of Things & Patents
FinTech, Internet of Things & Patents
 
Ecash ppt
Ecash pptEcash ppt
Ecash ppt
 
Online payment system
Online payment systemOnline payment system
Online payment system
 
electronicpaymentsystem-12697023522629-phpapp01.pdf
electronicpaymentsystem-12697023522629-phpapp01.pdfelectronicpaymentsystem-12697023522629-phpapp01.pdf
electronicpaymentsystem-12697023522629-phpapp01.pdf
 
Ec2009 ch11 electronic payment systems
Ec2009 ch11 electronic payment systemsEc2009 ch11 electronic payment systems
Ec2009 ch11 electronic payment systems
 
MIS 10 Electronic Payment System
MIS 10 Electronic Payment SystemMIS 10 Electronic Payment System
MIS 10 Electronic Payment System
 
Electronic Payment Fundamentals: When Tech Embracing Payment Industry
Electronic Payment Fundamentals: When Tech Embracing Payment IndustryElectronic Payment Fundamentals: When Tech Embracing Payment Industry
Electronic Payment Fundamentals: When Tech Embracing Payment Industry
 
Electronic Payment System
Electronic Payment SystemElectronic Payment System
Electronic Payment System
 
ch7.ppt
ch7.pptch7.ppt
ch7.ppt
 
INTRODUCTION EATZRKSYTDULYFIUGOIHPOJ[P][L\];
INTRODUCTION EATZRKSYTDULYFIUGOIHPOJ[P][L\];INTRODUCTION EATZRKSYTDULYFIUGOIHPOJ[P][L\];
INTRODUCTION EATZRKSYTDULYFIUGOIHPOJ[P][L\];
 

Project security

  • 1. Security in e-Business استاد: آقاي دکتر سخاوتی مريم سادات حاج اکبری 8861022 2/8/2011 1
  • 2.
  • 3. Customer to business -> such as online stores
  • 4. Customer to customer -> such as Ebay
  • 5. Customer business to public administrator -> such as filling electronic tax2/8/2011 2
  • 6. A typical electronic payment system 3 6.Interbank(clearing) network 7.ok Payment gateway 4.withdrawal 5.deposit 8.Registration Authorization transaction 3.registration 2.Check account customer 1.Payment info 9.Delivery+Confirmation
  • 7. E-payment systems Offline vs. online Debit vs. credit Macro vs. Micro 2/8/2011 4
  • 8.
  • 9. Crew prints payment’s information and customer’s credit card by a mechanical device in a paper and then enter online system.2/8/2011 5
  • 10. Offline vs. Online Online payment system 2/8/2011 6
  • 11.
  • 13. Card issuing bank -> visa or Master or AMEX ….
  • 15. Name on credit card -> visa or master
  • 17. How credit card act? 2/8/2011 8
  • 18.
  • 19. Example: Public transportation system, Restaurants, Online Advertising….
  • 21. For any transaction it has a fee about 20 to 30 cent for payer and payee.2/8/2011 9
  • 22. Payment instructure Cash like Check like Credit card Electronic money Electronic check 2/8/2011 10
  • 23. Mechanism payment by credit cart 2/8/2011 11 3 2 4 1
  • 24.
  • 25.
  • 26. Will issue next chapter2/8/2011 12
  • 27. Electronic money Define : Scripting money or exchanged only in electronic form Called as:e- cash, digital cash, digital/electronic currency Mainly Used as: micro system Electronic Currencies : Digital or electronic coin 2/8/2011 13
  • 28.
  • 29. The user can from their account to other account holders to give or receive money.2/8/2011 14
  • 30. Electronic check 2/8/2011 15 6.Interbank(clearing) network settlement Difference with cash like: In cash like, Electronic payment system the first check customer’s account then delivery product or services 5.Endorsed check 1.Payment info 2- invoice 3.Signed check 4.
  • 31.
  • 32. Such as digital money and credit cards
  • 33.
  • 34. Identify risks, threats, vulnerability
  • 35. Identify Related prioritiesNotice: any payment system have needs and special features. 2/8/2011 17
  • 36.
  • 38.
  • 39. A payer’s identity can be associated with every payment transaction.
  • 40. Digital signatures can be produced by who knows the private key.Notice: electronic commerce need To more attention. 2/8/2011 18
  • 41.
  • 42. The basic security requirements Payment authentication Payment integrity Payment authorization Payment confidentiality 2/8/2011 20
  • 43. Payment authentication No anonymity -> mechanisms such as MAC – SHA – MD5 With anonymity –> It needs to more security 2/8/2011 21
  • 44.
  • 46. Content of the purchase.
  • 48.
  • 49. Payment security services Payment transaction security services Digital money security Electronic checks security 2/8/2011 25
  • 50. Payment transaction security services User anonymity Location un-traceability Payer anonymity Payment transaction intractability Confidentiality of payment Non-repudiation freshness 2/8/2011 26
  • 51.
  • 52.
  • 53.
  • 54.
  • 55.
  • 56.
  • 57.
  • 58. Payment transaction security An electronic payment transaction is an execution of a protocol by which an amount of money is taken from a payer and given to payee 2/8/2011 34
  • 59.
  • 60. Problem: if a network transaction can be traced back to the originating host, and if the host is used by a known network user only, This anonymity is obviously not sufficient 2/8/2011 35
  • 61.
  • 62. The requires that at least one of the hosts on the network path be honest.2/8/2011 36
  • 63. Chain of mixes A user anonymity and location untraceability mechanism based on a series of anonymizing hosts or mixes has been proposed by D. Chaum. 2/8/2011 37 Mix A X B Y Z C
  • 64. Chain of mixes The problem of having a mix trusted by all participants can be solved by using a matrix (or network) of mixes instead of just one. 2/8/2011 38
  • 65. Chain of mixes 2/8/2011 39 If A wants to send an anonymous and untraceable message to Y, as in the example with one mix, the protocol goes as follows:
  • 66. Payer Anonymity 2/8/2011 40 The simplest way to ensure payer anonymity with respect to the payee is for the payer to use pseudonyms instead of his or her real identity. If one wants be sure that two different payment transactions by the same payer cannot be linked, then payment transaction untraceabilitymust also be provided.
  • 67. Pseudonyms 2/8/2011 41 First virtual Holding, Inc Started to operate the first internet payment system that was based on the Existing Internet infrastructure, that is e-mail and telnet Send email
  • 68.
  • 69.
  • 70. Nonrepudiation of Payment Transaction Messages 2/8/2011 45 Digital Signature: To explain the nonrepudiation issues in a payment transaction protocol we will use a simplified model based on the 3KP payment protocol Nonrepudiation messages.
  • 71.
  • 72. IOTP 2/8/2011 48 Format for electronic payment It is for any transaction It modify for any message Data integrity + nonrepudiation -> Digital certificate+ Digital signature Confidentiality -> ssl+tls