Title :
Some Remarks on the Certificates Registration of the Electronic Commerce Protocol SET
Author :
S. Brlek;S. Hamadou;J. Mullins
Author_Institution :
Universite du Quebec a Montreal
fDate :
6/28/1905 12:00:00 AM
Abstract :
The SET (Secure Electronic Transaction) protocol uses digital signature, encryption primitives and digital certificates to authenticate, hide messages and to authorize transactions. SET claims that by using these cryptographic techniques it ensures the secrecy of the client’s credit card number, the integrity of transmitted data and the authentication of the involved entities. Our analysis shows that, under some considerations, none of these security properties would in fact be guaranteed. This paper describes the SET protocol and presents some interesting remarks about its security: some precautions must be taken when implementing SET, otherwise, it would result in an insecure protocol that would allow a dishonest person to harm both the client and the merchant.
Keywords :
"Electronic commerce","Data security","Credit cards","Authentication","Cryptographic protocols","Banking","Digital signatures","Public key cryptography","Public key","Information analysis"
Conference_Titel :
Telecommunications, 2006. AICT-ICIW ´06. International Conference on Internet and Web Applications and Services/Advanced International Conference on
Print_ISBN :
0-7695-2522-9
DOI :
10.1109/AICT-ICIW.2006.176
