Reducing e-commerce risks using digital certificates

Authors

  • Miloš Piščević Serbian Armed Forces, Belgrade
  • Dejan Simić Faculty of Organizational Sciences, Belgrade

DOI:

https://doi.org/10.2298/YJOR0901185P

Keywords:

Cryptography, digital certificates, X.509, e-commerce

Abstract

E-commerce means buying and selling goods and services across the Internet. Secured communication in e-commerce, across unsecured medium, such as the Internet, represents one of the major components in a domain of providing necessary security- critical demands, so the flow of information could go in a secure way. The Internet, as a global computer network must provide five major security services: confidentiality, data integrity, authentication, availability, and non-repudiation of information. Without guaranteeing aformentioned security goals, risks may be very high in e-commerce systems. A possible way to reduce these risks is to use digital certificates. Digital certificates provide a means of proving identity in electronic transactions, and from the point of view of computer communication they are irreplacable, but nevertheless they provide a good mechanism for implementing the major part of this security goal, and therefore, their usage in e-commerce is the major topic of this paper.

References

*** (2007) Group oriented digital certificate architecture. www.ieee.com

*** Java Card 2.1.1 specifications. http://java.sun.com

*** Java Card 2.1.1 Runtime Environment (JCRE) specification. http://java.sun.com

*** Java Card 2.1.1 virtual machine specification. http://java.sun.com

*** (2004) Java TM PKCS11 reference guide. http://java.sun.com/products/jdk/1.5/guide/security/p11guide.html

*** Java TM cryptography architecture API specification & reference. http://java.sun.com/products/jdk/1.2/docs/guide/security/CryptoSpec.html

Behrouz, A., Forouzan (2004) Data communications and networking. McGraw-Hill, http://www. mhhe. com/forouzan

Knudsen, J. (1998) Java cryptography. O'Reilly

Marković, M. (2004) Tehnike zaštite i kriptografski protokoli u savremenim informacionim sistemima. Info M, vol. 3, br. 9, str. 4-13

Milosavljević, B. (2001) Praktikum za kurs Java i internet programiranje. Beograd: Vojna akademija

Pistoia, M., Reller, D.F., Gupta, D., Nagnur, M., Ramani, A.K. (1999) Java 2 network security, international technical support organization. www.redbooks.ibm.com

Downloads

Published

2009-03-01

Issue

Vol. 19 No. 1 (2009)

Section

Research Articles

License

Copyright (c) YUJOR

Creative Commons License

This work is licensed under a Creative Commons Attribution-NonCommercial-NoDerivatives 4.0 International License.