Table of contents:
OVERVIEW OF ELECTRONIC COMMERCE
What is Electronic Commerce?
Competitive Environment of Electronic Commerce
Characteristics of Dematerialized Payment Systems
The Influence of the Internet
Technologies of Electronic Commerce
MONEY AND PAYMENT SYSTEMS
The Mechanisms of Classical Money
Instruments of Payment
Banking Clearance and Settlement
Types of Dematerialized Monies
Purses and Holders
Transactional Properties of Dematerialized Currencies
Comparison of the Means of Payment
The Practice of Dematerialized Money
ALGORITHMS AND ARCHITECTURES FOR SECURITY
Security of Open Financial Networks
OSI Model for Cryptographic Security
Application Security
Data Integrity
Identification of the Participants
Authentication of the Participants
Nonrepudiation
Key Management
Certificate Management
Encryption Cracks
Appendix I: Principles of Symmetric Encryption
Appendix II: Principles of Public Key Encryption
Appendix III: Comparative Data
BUSINESS-TO-BUSINESS COMMERCE AND ELECTRONIC DATA INTERCHANGE
Components of EDI
Examples of EDI Sytems
Structuring Alphanumeric Data
Structuring of Documents or Forms
EDI Messaging
Security of EDI
Relation of EDI with Electronic Funds Transfer
EDI Integration with Business Processes
Standardization of EDI
Future Evolution of the EDI
REMOTE PAYMENT WITH BANK CARDS (I)
Security Without Encryption: First Virtual
iKP Protocols
CyberCash
Agora
REMOTE PAYMENT WITH BANK CARDS (II) SECURE SOCKETS LAYER
General Presentation of the SSL Protocol
SSL Subprotocols
Example of SSL Processing
Implementations
Conclusions
Appendix: Structures of the Handshake Message
REMOTE PAYMENT WITH BANK CARDS (III): THE SET PROTOCOL
SET Architecture
Security Services of SET
Certification
Purchasing Transaction
Optional Procedures in SET
SET Implementations
Evaluation
HYBRID SOLUTIONS WITH SET
C-SET and E-Comm
Hybrid SSL/SET Architecture
MICROPAYMENTS AND FACE-TO-FACE COMMERCE
Characteristics of Micropa yment Systems
Chipper
GeldKarte
Minipay
Mondex
P-Card
PAYCHIP
Proton
C omparison of the Main Electronic Purses
REMOTE MICROPAYMENTS
NetBill
CyberCoin
KLELine
Millicent
PayWord
MicroMin t
Comparison of the Different Systems of Remote Micropayment
DIGITAL MONEY
Building Blocks
DigiCash (Ecash)
NetCash
DEMATERIALIZED CHECKS
Classical Processing of Paper Checks
Dematerialized Processing of Paper-Based Checks
NetCheque
Bank Internet Payment System (BIPS)
Echeck
Evaluation
SECURITY OF INTEGRATED CIRCUIT CARDS
Overview
Description of Integrated Circuit Cards with Contacts
Security of Microprocessor Cards
Multiapplication Smart Cards
Standards for Integrated Circuit Cards
PLATFORMS AND CONVERGENCE MODELS
SEMPER
CAFE
JEPI
Merchant Cards and Bank Cards
Summary
PERSPECTIVES
Infrastructure of Electronic Commerce
Which Means of Payment?
Standardization
Elements for Reflection
REFERENCES
WEBSITES
INDEX
Free distribution of information, ideas, and research - the Internet's original goal - is at odds with the use of the Internet for commerce. Commerce requires individual privacy and security - an afterthought in this medium. Protocols for Secure Electronic Commerce reviews and explains algorithms and architectures for securing electronic payment systems to deal with this issue, particularly the protocols used for business-to-business commerce and for consumer applications.
Written by an author intimately involved with the workings of the existing standards, it surveys implementations of the most popular protocols, such as electronic data interchange, secure sockets layer, secure electronic transaction, electronic purses, smart cards, and digital money. It describes the latest developments, offering a technical treatment of the electronic payment systems that are at the heart of security strategy.
Explosive growth of the Internet has redefined the electronic commerce para digm. Standards in place for nearly two decades must now take advantage of the new business possibilities that the Internet offers. At the same time, the consumer needs to be confident in the security of these unfamiliar transactions. The prosperity of electronic commerce depends on you to surmount the technological challenges of this immature field. Protocols for Secure Electronic Commerce will help.
OVERVIEW OF ELECTRONIC COMMERCE
What is Electronic Commerce?
Competitive Environment of Electronic Commerce
Characteristics of Dematerialized Payment Systems
The Influence of the Internet
Technologies of Electronic Commerce
MONEY AND PAYMENT SYSTEMS
The Mechanisms of Classical Money
Instruments of Payment
Banking Clearance and Settlement
Types of Dematerialized Monies
Purses and Holders
Transactional Properties of Dematerialized Currencies
Comparison of the Means of Payment
The Practice of Dematerialized Money
ALGORITHMS AND ARCHITECTURES FOR SECURITY
Security of Open Financial Networks
OSI Model for Cryptographic Security
Application Security
Data Integrity
Identification of the Participants
Authentication of the Participants
Nonrepudiation
Key Management
Certificate Management
Encryption Cracks
Appendix I: Principles of Symmetric Encryption
Appendix II: Principles of Public Key Encryption
Appendix III: Comparative Data
BUSINESS-TO-BUSINESS COMMERCE AND ELECTRONIC DATA INTERCHANGE
Components of EDI
Examples of EDI Sytems
Structuring Alphanumeric Data
Structuring of Documents or Forms
EDI Messaging
Security of EDI
Relation of EDI with Electronic Funds Transfer
EDI Integration with Business Processes
Standardization of EDI
Future Evolution of the EDI
REMOTE PAYMENT WITH BANK CARDS (I)
Security Without Encryption: First Virtual
iKP Protocols
CyberCash
Agora
REMOTE PAYMENT WITH BANK CARDS (II) SECURE SOCKETS LAYER
General Presentation of the SSL Protocol
SSL Subprotocols
Example of SSL Processing
Implementations
Conclusions
Appendix: Structures of the Handshake Message
REMOTE PAYMENT WITH BANK CARDS (III): THE SET PROTOCOL
SET Architecture
Security Services of SET
Certification
Purchasing Transaction
Optional Procedures in SET
SET Implementations
Evaluation
HYBRID SOLUTIONS WITH SET
C-SET and E-Comm
Hybrid SSL/SET Architecture
MICROPAYMENTS AND FACE-TO-FACE COMMERCE
Characteristics of Micropa yment Systems
Chipper
GeldKarte
Minipay
Mondex
P-Card
PAYCHIP
Proton
C omparison of the Main Electronic Purses
REMOTE MICROPAYMENTS
NetBill
CyberCoin
KLELine
Millicent
PayWord
MicroMin t
Comparison of the Different Systems of Remote Micropayment
DIGITAL MONEY
Building Blocks
DigiCash (Ecash)
NetCash
DEMATERIALIZED CHECKS
Classical Processing of Paper Checks
Dematerialized Processing of Paper-Based Checks
NetCheque
Bank Internet Payment System (BIPS)
Echeck
Evaluation
SECURITY OF INTEGRATED CIRCUIT CARDS
Overview
Description of Integrated Circuit Cards with Contacts
Security of Microprocessor Cards
Multiapplication Smart Cards
Standards for Integrated Circuit Cards
PLATFORMS AND CONVERGENCE MODELS
SEMPER
CAFE
JEPI
Merchant Cards and Bank Cards
Summary
PERSPECTIVES
Infrastructure of Electronic Commerce
Which Means of Payment?
Standardization
Elements for Reflection
REFERENCES
WEBSITES
INDEX
Free distribution of information, ideas, and research - the Internet's original goal - is at odds with the use of the Internet for commerce. Commerce requires individual privacy and security - an afterthought in this medium. Protocols for Secure Electronic Commerce reviews and explains algorithms and architectures for securing electronic payment systems to deal with this issue, particularly the protocols used for business-to-business commerce and for consumer applications.
Written by an author intimately involved with the workings of the existing standards, it surveys implementations of the most popular protocols, such as electronic data interchange, secure sockets layer, secure electronic transaction, electronic purses, smart cards, and digital money. It describes the latest developments, offering a technical treatment of the electronic payment systems that are at the heart of security strategy.
Explosive growth of the Internet has redefined the electronic commerce para digm. Standards in place for nearly two decades must now take advantage of the new business possibilities that the Internet offers. At the same time, the consumer needs to be confident in the security of these unfamiliar transactions. The prosperity of electronic commerce depends on you to surmount the technological challenges of this immature field. Protocols for Secure Electronic Commerce will help.