Presentation is loading. Please wait.

Presentation is loading. Please wait.

SEMPER: A Security Framework for the Global Electronic Marketplca Jian Zheng Nov. 30, 1998.

Published byTodd York Modified over 9 years ago

Similar presentations

Presentation on theme: "SEMPER: A Security Framework for the Global Electronic Marketplca Jian Zheng Nov. 30, 1998."— Presentation transcript:

1

2 SEMPER: A Security Framework for the Global Electronic Marketplca Jian Zheng jianzhen@cs.nyu.edu Nov. 30, 1998

3 Context Introduction The Security Marketplace Model of Electronic Commerce SEMPER Architecture The Field Trial Reference

4 Context Introduction

5 Introduction The Emerging Electronic Commerce –by 2000, over 25B will conducted via Internet Such an electronic marketplace requires security and establishing sufficient trust Current Achievements: –payment, cryptography, intellectual property rights protection –however, they did not integrate the different solution in a consistent way

6 Introduction(cont’d) SEMPER(Security Electronic Marketplace for Europe) –proposes an open security framework that should provide an integrated, complete and global electronic marketplace –backed by the European Commission –technically led by IBM Zurich Research Lab

7 Context The Security Marketplace

8 The Security Marketplace Requirements –The traditional business “terms” and “requirements” should be appropriately translated into electronic terms –trust should be restored on such an insecure media (Internet) –the recovery of transaction and the resolution of dispute must be guaranteed

9 The Security Marketplace(cont’d) Fundamental Issues –the systems must address the complete set of issues raised by E-commerce –users must be able to trust their system –these systems should be fully interoperable –E-commerce needs to be backed by a legal framework which is transparent and predictable for users –there is a network for registration, certification and key distribution

10 The Security Marketplace(cont’d) Current Status –three waves on the Internet business web sites for promoting and marketing digital libraries and online catalogs possible to authenticate, user can browse, place the order and pay for them; secure payment with credit card based on SSL and SET –however, no generally accepted model and architecture for building E-commerce

11 The Security Marketplace(cont’d) SEMPER Objectives –addresses the complete problem of E-commerce over insecure networks –based on a business model consisting of “tranfers” and “fair exchanges” –goal: develop an open and comprehensive security framework for building the secure marketplace

12 Context Model of Electronic Commerce

13 Model for E-commerce Model –two-party E-commerce: describes business scenarios in terms of sequences of “transfers” and “exchanges” of data with decisions based on the success of these actions –similar to the dialogues of interactive EDI

14 Model for E-commerce(cont’d)

15 Basic Concepts –“transfer”: One party sends a package of business items to one or more business parties. The sending party specifies the security requirements. –“exchange”: A simultaneous exchange of packages of business items among two parties.

16 Model for E-commerce(cont’d) Basic Concepts(cont’d) –“business items”: credentials statements money

17 Model for E-commerce(cont’d)

18 Context SEMPER Architecture

19 SEMPER Architecture Structured in layers the highest layer deals with commercial issues only the lowest layer deals with low-level security primitives and other supporting services

20 SEMPER Architecture(cont’d)

21

22 Commerce Service –directly implements protocols of business scenarios –implements the flow of control –includes some more general use services –can also securely download new services

23 SEMPER Architecture(cont’d) Exchange Service –handle and package business items –transfer and fair exchange of packages –each type of items is managed by a separate manager which provides the unified services based on integrating existing implementations payment manager

24 SEMPER Architecture(cont’d)

25 Supporting Service –provides user preference management, persistent object storage, communication, crypto services, access control, etc.

26 SEMPER Architecture(cont’d) Multi-party security –buyers, service providers, banks, CA authorities, notary public Trust hierarchy –browser/server –Signed business application –Commerce layer –System kernel

27 SEMPER Offers Security Services for Today and Tomorrow Basic Services –Authentication –Signed offer –Signed order –Payment –Signed delivery Advanced Services –Fair exchange –Security document handling certified mail contract signing credentials –New payment instructments –Anonymity –Resolution of dispute

28 Context the Field Trial

29 The Field Trial EUROCOM –offer multimedia courseware in the area of telecommunications –implements online purchases of multimedia courses

30 The Field Trial(cont’d) FOGRA –distribute information to their members on a subscription basis and sell consultancy to non- members –use SEMPER for online purchase and processing of subscription s well as sales of consultancy

31 The Field Trial(cont’d) OTTO VERSAND –one of the largest mail-order retailer world wide –online order of goods –online order of tickets and other credentials

32 Context Reference

33 Reference SEMPER Home Page –http://www.semper.org SEMPER public reports –http://www.semper.org/info Security Research Droup at IBM Zurich Research Lab –http://www.zurich.ibm.com/Technology/Securit y/

34 Reference(cont’d) Field Trials –Actimedia (F) - satellite pictures on ATM networ http://www.ippolis.fr/mediatronics/ActimedF.html –Acri (F) - CD-ROMs on the Internet http://www.acri.fr/ –Gecap / Bowne (F) - software localisation http://www.gecap.de/ –Viajes Eroski / Enyca (E) - travel http://grupoeroski.mcc.es/home_ing.html

Download ppt "SEMPER: A Security Framework for the Global Electronic Marketplca Jian Zheng Nov. 30, 1998."

Similar presentations

Chapter 10 Encryption: A Matter of Trust. Awad –Electronic Commerce 1/e © 2002 Prentice Hall 2 OBJECTIVES What is Encryption? Basic Cryptographic Algorithm.

Chapter 10 Encryption: A Matter of Trust. Awad –Electronic Commerce 1/e © 2002 Prentice Hall 2 OBJECTIVES What is Encryption? Basic Cryptographic Algorithm.
M.B.A. II SEMESTER Course No. 208 Paper No. – XVI E-Business Dr.N.C.Dhande Unit II e-business frameworks e-selling process, e-buying, e-procurement, e-payments:

M.B.A. II SEMESTER Course No. 208 Paper No. – XVI E-Business Dr.N.C.Dhande Unit II e-business frameworks e-selling process, e-buying, e-procurement, e-payments:
Chapter 1. Type in URL to browse a web page A search engine is a software program you can use to find web sites, web pages and files stored on the internet.

Chapter 1. Type in URL to browse a web page A search engine is a software program you can use to find web sites, web pages and files stored on the internet.
Electronic commerce EDI (8 decade) – base of EC. 1994 – “Netscape” – propose SSL (Secure Sockets Layer) 1995 – “Amazon.com” “eBay.com” 1998 – DSL (Digital.

Electronic commerce EDI (8 decade) – base of EC – “Netscape” – propose SSL (Secure Sockets Layer) 1995 – “Amazon.com” “eBay.com” 1998 – DSL (Digital.
The GSMA July 2014 Restricted - Confidential Information

The GSMA July 2014 Restricted - Confidential Information
Lesson 1. Course Outline E-Commerce and its types, Internet and WWW Basics, Internet standards and protocols, IP addressing, Data communication on internet,

Lesson 1. Course Outline E-Commerce and its types, Internet and WWW Basics, Internet standards and protocols, IP addressing, Data communication on internet,
E-commerce Chapter 9 pp 284-311. E-Commerce Buyer 1. Search & Identification 3. Purchasing 2. Selection & Negotiation 4. Product & Service Delivery 5.

E-commerce Chapter 9 pp E-Commerce Buyer 1. Search & Identification 3. Purchasing 2. Selection & Negotiation 4. Product & Service Delivery 5.
Lect. 18: Cryptographic Protocols. 2 1.Cryptographic Protocols 2.Special Signatures 3.Secret Sharing and Threshold Cryptography 4.Zero-knowledge Proofs.

Lect. 18: Cryptographic Protocols. 2 1.Cryptographic Protocols 2.Special Signatures 3.Secret Sharing and Threshold Cryptography 4.Zero-knowledge Proofs.
Chapter 13 Paying Via The Net. Agenda Digital Payment Requirements Fraud Detection Online Payment Methods Online Payment Types The Future Payment.

Chapter 13 Paying Via The Net. Agenda Digital Payment Requirements Fraud Detection Online Payment Methods Online Payment Types The Future Payment.
1 Towards Decentralized and Secure Electronic Marketplace Yingying Chen, Naftaly Minsky, Constantin Serban, and Wenxuan Zhang Dept of Computer Science.

1 Towards Decentralized and Secure Electronic Marketplace Yingying Chen, Naftaly Minsky, Constantin Serban, and Wenxuan Zhang Dept of Computer Science.
10.1 © 2007 by Prentice Hall 10 Chapter E-Commerce: Digital Markets, Digital Goods.

10.1 © 2007 by Prentice Hall 10 Chapter E-Commerce: Digital Markets, Digital Goods.
“...creating knowledge.” Enabling Digital Content Protection on Super-Distribution Models - Carlos Serrão ISCTE – Intituto Superior.

“...creating knowledge.” Enabling Digital Content Protection on Super-Distribution Models - Carlos Serrão ISCTE – Intituto Superior.
Elias M. Awad Third Edition ELECTRONIC COMMERCE From Vision to Fulfillment 13-1© 2007 Prentice-Hall, Inc ELC 200 Day 23.

Elias M. Awad Third Edition ELECTRONIC COMMERCE From Vision to Fulfillment 13-1© 2007 Prentice-Hall, Inc ELC 200 Day 23.
E-Government Security and necessary Infrastructures Dimitrios Lekkas Dept. of Systems and Products Design Engineering University of the Aegean

E-Government Security and necessary Infrastructures Dimitrios Lekkas Dept. of Systems and Products Design Engineering University of the Aegean
B2B e-commerce standards for document exchange In350: week 13: Nov. 19,2001 Judith A. Molka-Danielsen.

B2B e-commerce standards for document exchange In350: week 13: Nov. 19,2001 Judith A. Molka-Danielsen.
Electronic Commerce Systems

Electronic Commerce Systems
Electronic Commerce. On-line ordering---an e-commerce application On-line ordering assumes that: A company publishes its catalog on the Internet; Customers.

Electronic Commerce. On-line ordering---an e-commerce application On-line ordering assumes that: A company publishes its catalog on the Internet; Customers.
Chapter 9 e-Commerce Systems.

Chapter 9 e-Commerce Systems.
E-commerce Business Models— Introduction

E-commerce Business Models— Introduction
ELECTRONIC COMMERCE. CONTEXT: Definition of E-Commerce. History of E-Commerce. Advantages and Disadvantages of E-Commerce. Types of E-Commerce. E-Commerce.

ELECTRONIC COMMERCE. CONTEXT: Definition of E-Commerce. History of E-Commerce. Advantages and Disadvantages of E-Commerce. Types of E-Commerce. E-Commerce.

Similar presentations

Ads by Google