Inderscience PublishersInderscience PublishersInderscience Publishers About Inderscience Contact Information Current Site Map General Help
  PUBLISHERS OF DISTINGUISHED ACADEMIC, SCIENTIFIC AND PROFESSIONAL JOURNALS
For readers
Subscription information
Order articles
Sample journals
Latest issues
Books
Published proceedings
For authors
Submission of papers
Notes for authors
Calls for papers
Services
Search
Newsletter
Blog
TOC alerts
RSS feeds
Twitter
OAI repository
Library form
Register with Inderscience
Feedback
Noticeboard
New journals
Conference announcements
CrossRef survey

The full text of this article:

A web transaction security scheme based on disposable credit card numbers
by Mohammed Assora, James Kadirire, Ayoub Shirvani
International Journal of Electronic Security and Digital Forensics (IJESDF), Vol. 1, No. 2, 2007
Abstract: Today, an e-commerce transaction is performed by sending the client's credit card details over a SSL/TLS connection. This form of transaction raises many security threats. The most important one is the client authentication. Because the client normally does not have a public key certificate, the client's authentication is achieved only by the credit card details. In addition, these details are stored unencrypted in the merchant's database. A Disposable Credit Card Number (DCCN) is a technique to overcome these security threats. This paper presents a scheme for off-line generation of the DCCNs. The scheme uses a pre-shared secret key between the issuer and the client to generate Hashed Message Authentication Code for some selected data from the transaction. The scheme is secure and adds minimum overhead on the issuer and client. Furthermore, the generated DCCN has all the features of classical credit card details.

is only available to individual subscribers or to users at subscribing institutions.

ATTENTION SUBSCRIBERS:
Please re-direct your browser by clicking on this Inderscience Online Journals link, to access the full-text of this article.

Pay per view: If you are not a Subscriber and you just want to read the full contents of this article, please click here to purchase online access to the full-text of this article. Please allow 3 days + mailing time. Current price for article is Thirty Euros (€30)

Complimentary Subscribers, Editors or Members of the Editorial Board of the International Journal of Electronic Security and Digital Forensics (IJESDF) journal, that have been redirected here, please check if you have a registered username/password subscription with Inderscience. If that is the case, please Login:

    Username:        Password:         Forgotten your Password?

If you are not yet a Subscriber to International Journal of Electronic Security and Digital Forensics (IJESDF) journal, you can subscribe by following a few simple and quick steps. A subscription will give you complete access to all articles in the current issue, as well as to all articles in the previous three years, where applicable. Click here to subscribe.

Should you experience further difficulties or have any enquiries, please email subs@inderscience.com


 
Copyright © 2004-2009 Inderscience Enterprises Limited. All rights reserved.