On The Design Of Secure Electronic Payment Schemes For Internet
نویسندگان
چکیده
This paper considers the design of secure electronic credit card based payment schemes for Internet and reveals some of the issues that have not been adequately addressed in the proposed protocols todate. It proposes additional mechanisms that need to be incorporated as part of the design phase of the scheme to deal eeciently with the disputes that can arise. The design methods described in this paper are applicable to a range of protocols including iKP, STT, and SEPP. Based on this discussion, the paper goes on to propose an improved payment scheme and protocol. The new protocol provides a fair treatment of both the Client and the Merchant involved in the transaction. It se parates the purchase request phase from the payment phase thereby increasing the ability to handle certain class of disputes more eeciently. It removes the need to store the secret private key at the Client's machine or the need for a smartcard device. This is important as one cannot assume that all the clients connected to the Internet have or will have smartcard readers attached to them. The new protocol makes simpler assumptions about the environment , thereby making the scheme practical for securing commercial electronic credit card transactions.
منابع مشابه
A NEW PROTOCOL MODEL FOR VERIFICATION OF PAYMENT ORDER INFORMATION INTEGRITY IN ONLINE E-PAYMENT SYSTEM USING ELLIPTIC CURVE DIFFIE-HELLMAN KEY AGREEMENT PROTOCOL
Two parties that conduct a business transaction through the internet do not see each other personally nor do they exchange any document neither any money hand-to-hand currency. Electronic payment is a way by which the two parties transfer the money through the internet. Therefore integrity of payment and order information of online purchase is an important concern. With online purchase the cust...
متن کاملA Secure Electronic Payment Protocol Design and Implementation
Electronic payment is the very important step of the electronic business system, and its security must be ensured. SSL/TLS and SET are two widely discussed means of securing online credit card payments. Because of implementation issues, SET has not really been adopted by e-commerce participants, whereas, despite the fact that it does not address all security issues, SSL/TLS is commonly used for...
متن کاملAnalysis and Design of an Advanced Infrastructure for Secure and Anonymous Electronic Payment Systems on the Internet
Electronic payment systems are of paramount importance in our current digital society. Security and privacy constitute crucial challenges in this area. Electronic money is indeed just digital information that can easily be copied. Moreover, users automatically leave an electronic trail of all their activities in the digital world. In this thesis an advanced infrastructure for secure and anonymo...
متن کاملAnonymous Internet Credit Cards
In credit based payment systems, con dential data such as PIN and credit card number embedded in an electronic credit card must be protected. The authenticity of an electronic credit card in a payment process is normally achieved through an on-line trusted server such as a nancial institution that runs the payment system. This paper considers some novel secure electronic credit card based payme...
متن کاملA Secure Electronic Payment System Based on Efficient Public Key Infrastructure
At present, electronic payment activities constructed on the Internet mainly employ the certificate-based public key cryptosystems to solve related security issues. But it is based on the condition that the certificate authority (CA) must be honest and needs to manage the key directory. Furthermore, it needs to spend extra time to verify the signature signed in the digital certificate by the CA...
متن کامل