A user-centric anonymous authorisation framework in e-commerce environment

Au, Richard; Vasanta, Harikrishna; Choo, Kim‐Kwang Raymond; Looi, Mark

doi:10.1145/1052220.1052238

Cited by 4 publications

(5 citation statements)

References 17 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The closest related works to our proposal are the designs of [17,26,3], which define general frameworks to ensure accountability in reputation systems while maintaining anonymity. For example, Buttyan et al [6] present an architecture based on the existence of a customer care agency that is fully trusted by both client and service provider, and design a ticket-based system that allows anonymous accesses to the services.…”

Section: Related Workmentioning

confidence: 99%

“…Besides, [3] proposes a system in which users requests the authorization access to an e-commerce platform using a one time identifier supported by some attribute credentials from external referees. External referees may request to know the identity of the user to issue a positive credential, but do not know which is the purpose and the destination of this.…”

Section: Related Workmentioning

confidence: 99%

See 1 more Smart Citation

Anonymous reputation based reservations in e-commerce (amnesic)

Rifà-Pous

2011

Proceedings of the 13th International Conference on Electronic Commerce

View full text Add to dashboard Cite

Online reservation systems have grown over the last recent years to facilitate the purchase of goods and services. Generally, reservation systems require that customers provide some personal data to make a reservation effective. With this data, service providers can check the consumer history and decide if the user is trustable enough to get the reserve. Although the reputation of a user is a good metric to implement the access control of the system, providing personal and sensitive data to the system presents high privacy risks, since the interests of a user are totally known and tracked by an external entity. In this paper we design an anonymous reservation protocol that uses reputations to profile the users and control their access to the offered services, but at the same time it preserves their privacy not only from the seller but the service provider.

show abstract

Section: Related Workmentioning

confidence: 99%

Section: Related Workmentioning

confidence: 99%

Anonymous reputation based reservations in e-commerce (amnesic)

Rifà-Pous

2011

Proceedings of the 13th International Conference on Electronic Commerce

View full text Add to dashboard Cite

show abstract

“…For example, encryption might be used to protect e-mail, documents and transaction exchanges from being read by other parties. To address user concerns regarding privacy and trust issues in a mobile agent-based e-marketplaces, Au et al (2004) introduced the concept of establishing trust by making use of referrals from an external third party in the form of anonymous attribute certificates to ensure privacy. The key point is that the STMAE system embodies the concept of privacy by design to protect users.…”

Section: Safety Measure Issuesmentioning

confidence: 99%

Design of secure and trustworthy mobile agent‐based e‐marketplace system

Patel

Wei²,

Taghavi³

2011

Information Management &Amp; Computer Security

View full text Add to dashboard Cite

Purpose-Mobile agent-based e-marketplace is one type of business application that has been developed as a flexible and efficient approach to help companies or corporations to extend their businesses to outreach larger markets without regional and continental boundaries. However, every distributed system is unable to avoid the security problems due to the open internet environment. Mobile agent-based e-marketplaces are no exception. Thus, the security of mobile agents is a crucial factor in the design of mobile agent-based e-marketplaces. To overcome this kind of problem, the purpose of this paper is to design and implement a framework and system of secure and trustworthy mobile agent based e-marketplace. Design/methodology/approach-This paper presents the system design for the system implementation based on the designed framework. It includes three major aspects: the design issues, system design and development environment and tools for system implementation. The system architecture, use case diagram and use case specifications are presented in the system design section. Findings-The system design is an essential step that is required before a prototype system is implemented. The system is designed based on the described and outlined requirements and evaluation criteria, therefore, to support a secure and trustworthy trading environment. The paper is concluded by discussing and highlighting further research work. Originality/value-This paper presents the system design for implementing a secure and trustworthy mobile agent-based e-marketplace system by using the latest version of UML modeling tool and techniques.

show abstract

“…To address users' concerns over trust and privacy issues, Au et al (2008) introduced the concept of establishing trust by making use of referrals from external third party in the form of anonymous attribute certificates. Zhao et al (2007) use the secure MD and encryption to illustrate the MA-ECM.…”

Section: Privacy Issuesmentioning

confidence: 99%

A review and future research directions of secure and trustworthy mobile agent‐based e‐marketplace systems

Patel

Wei

Wills³

2010

Information Management &Amp; Computer Security

View full text Add to dashboard Cite

Purpose-Agent technology has generated a lot of interest in recent years, including mobile agent technology with its advantage of being able to support mobility, which can reduce network latency and dependency on network availability. Therefore, a number of mobile agent-based e-commerce applications have been constructed. Mobile agent-based e-marketplaces are e-commerce trading platforms which represent the business models and processes for buyers and sellers to trade goods and provide services via the extended distributed channels of the Web over the Internet and mobile networks. However, mobile agents introduced a series of security and privacy issues such as the protection of the computing and network platforms and the host that runs the mobile agent against attacks which can harm or use its resources without permission as well as the essential protection necessary to guard mobile agents against malicious hosts that might alter the information it carries when it visits other hosts in its itineraries, and possibly siphon or transfer the client's privacy information. This raises the need to provide secure and safe information security systems through the use of firewalls, intrusion detection and prevention systems, encryption, authentication and other hardware and software solutions. To solve these problems, we propose a framework which includes safe, secure, trusted and auditable services, as well as forensic mechanisms to provide audit trails for digital evidence of transactions and protection against malicious and illegal activities. Design/methodology/approach-This paper reviews the literature as the foundation and knowledge base for the proposed framework and system of secure and trustworthy mobile agent-based e-marketplaces. It consists of the current state of the art taxonomy for the classified mobile agent-based frameworks for e-marketplace trading, underlying supporting systems, e-payment systems and the essential issues related to auditable and digital forensic services. Findings-The current knowledge shows that there is a serious lack of auditable and digital forensic services to make secure and trustworthy mobile agent-based e-marketplaces systems. We draw conclusions and *

show abstract

A user-centric anonymous authorisation framework in e-commerce environment

Cited by 4 publications

References 17 publications

Anonymous reputation based reservations in e-commerce (amnesic)

Anonymous reputation based reservations in e-commerce (amnesic)

Design of secure and trustworthy mobile agent‐based e‐marketplace system

A review and future research directions of secure and trustworthy mobile agent‐based e‐marketplace systems

Contact Info

Product

Resources

About