Title :
Object retrieval and access management in electronic commerce
Author :
Wakid, Shukri ; Barkley, John ; Skall, Mark
Author_Institution :
Inf. Technol. Lab., Nat. Inst. of Stand. & Technol., Gaithersburg, MD, USA
fDate :
9/1/1999 12:00:00 AM
Abstract :
Electronic commerce over the Internet is now tens of billions of dollars per year and growing. This article describes how objects used in EC can be located and protected from unauthorized access. It discusses the three kinds of EC: customer interactions with a business, business interactions with other businesses, and interactions within a business. It characterizes the object retrieval and access management required to support the types of EC. It describes how metadata expressed in XML can be used to locate objects for retrieval and how a public key infrastructure along with role-based access control can be used to implement the distributed authentication and access control necessary to support complex access policies. In addition, the article describes activities within the Information Technology Laboratory at the National Institute of Standards and Technology which contribute to the development of related standards and tests
Keywords :
Internet; authorisation; business communication; electronic commerce; information retrieval; public key cryptography; telecommunication security; Information Technology Laboratory; Internet; National Institute of Standards and Technology; XML; access control; access management; access policies; authentication; business interactions; customer interactions; electronic commerce; metadata; object retrieval; public key infrastructure; role-based access control; standards; unauthorized access; Access control; Authentication; Electronic commerce; Information technology; Internet; Laboratories; NIST; Protection; Public key; XML;
Journal_Title :
Communications Magazine, IEEE
