Reducing e-commerce risks using digital certificates

Authors

  • Miloš Piščević Serbian Armed Forces, Belgrade
  • Dejan Simić Faculty of Organizational Sciences, Belgrade

DOI:

https://doi.org/10.2298/YJOR0901185P

Keywords:

Cryptography, digital certificates, X.509, e-commerce

Abstract

E-commerce means buying and selling goods and services across the Internet. Secured communication in e-commerce, across unsecured medium, such as the Internet, represents one of the major components in a domain of providing necessary security- critical demands, so the flow of information could go in a secure way. The Internet, as a global computer network must provide five major security services: confidentiality, data integrity, authentication, availability, and non-repudiation of information. Without guaranteeing aformentioned security goals, risks may be very high in e-commerce systems. A possible way to reduce these risks is to use digital certificates. Digital certificates provide a means of proving identity in electronic transactions, and from the point of view of computer communication they are irreplacable, but nevertheless they provide a good mechanism for implementing the major part of this security goal, and therefore, their usage in e-commerce is the major topic of this paper.

References

Behrouz, A., and Forouzan, Data Communications and Networking, The McGraw-Hill, 2004.

Milosavljević, B., Praktikum za kurs Java i Internet programiranje, Military Academy, Belgrade, August 2001.

Group Oriented Digital Certificate Architecture, 2007.

Java Card 2.1.1 Specifications.

Java Card 2.1.1 Runtime Environment (JCRE) Specification.

Java Card 2.1.1 Virtual Machine Specification.

JavaTM PKCS 11 Reference Guide, 2004.

Knudsen, J., Java Cryptography, O’Reilly, 1998.

JavaTM Cryptography Architecture API Specification & Reference.

Pistoia, M., Reller, D. F., Gupta, D., Nagnur, M., and Ramani, A. K., Java 2 Network Security, International Technical Support Organization, 1999.

Marković, M., Tehnike zaštite podataka i kriptografski protokoli u savremenim računarskim mrežama, 2004.

Downloads

Published

2009-03-01

Issue

Vol. 19 No. 1 (2009)

Section

Research Articles

License

Copyright (c) 2009 YUJOR

Creative Commons License

This work is licensed under a Creative Commons Attribution-NonCommercial-NoDerivatives 4.0 International License.