Bi-directional Web Document Protection System for Serious E-commerce Applications

Kasun De Zoysa; Sead Muftic

doi:10.1109/ICPPW.2002.1039706

Proceedings. International Conference on Parallel Processing Workshop

Bi-directional Web Document Protection System for Serious E-commerce Applications

Year: 2002, Pages: 11

DOI Bookmark: 10.1109/ICPPW.2002.1039706

Authors

Kasun De Zoysa, University of Colombo
Sead Muftic, Stockholm University

Abstract

This paper describes design of a security system for protection of HTML documents and forms, based on use of certificates, smart cards, and cryptographic encapsulation. Our system provides strong authentication of users based on smart cards and peer-to-peer authentication of users and Web servers based on challenge/response protocol. Strong protection of Web documents and non-repudiation of Web transactions are provided by sing digital certificates and digital envelopes. All security services are applied in both directions: from Web servers to browsers, and also from browsers to Web servers.

Like what you’re reading?

Already a member?

Get this article FREE with a new membership!

CAre: Certificate Authority Rescue Engine for Proactive Security
2017 14th International Symposium on Pervasive Systems, Algorithms and Networks & 2017 11th International Conference on Frontier of Computer Science and Technology & 2017 Third International Symposium of Creative Computing (ISPAN-FCST-ISCC)
TLS Connection Validation by Web Browsers: Why do Web Browsers Still Not Agree?
2017 IEEE 41st Annual Computer Software and Applications Conference (COMPSAC)
A simple collaborative method in Web proxy access control for supporting complex authentication mechanisms
2012 8th International Conference on Collaborative Computing: Networking, Applications and Worksharing (CollaborateCom 2012)
Prefetching the means for document transfer: a new approach for reducing Web latency
Proceedings IEEE INFOCOM 2000. Conference on Computer Communications. Nineteenth Annual Joint Conference of the IEEE Computer and Communications Societies
Access Control Meets Public Key Infrastructure, Or: Assigning Roles to Strangers
Proceeding 2000 IEEE Symposium on Security and Privacy. S&P 2000
CRLite: A Scalable System for Pushing All TLS Revocations to All Browsers
2017 IEEE Symposium on Security and Privacy (SP)
Testing of AJAX-Based Web Applications Using Hierarchical State Model
2016 IEEE 13th International Conference on e-Business Engineering (ICEBE)
SCRaaPS: X.509 Certificate Revocation Using the Blockchain-based Scrybe Secure Provenance System
2018 13th International Conference on Malicious and Unwanted Software (MALWARE)
On the Complexity of the Web’s PKI: Evaluating Certificate Validation of Mobile Browsers
IEEE Transactions on Dependable and Secure Computing
The Weakest Link of Certificate Transparency: Exploring the TLS/HTTPS Configurations of Third-Party Monitors
2019 18th IEEE International Conference On Trust, Security And Privacy In Computing And Communications/13th IEEE International Conference On Big Data Science And Engineering (TrustCom/BigDataSE)

Bi-directional Web Document Protection System for Serious E-commerce Applications

Authors

Abstract

Related Articles