Article: A framework towards enhancing trust and authorisation for e-commerce service Journal: International Journal of Internet Technology and Secured Transactions (IJITST) 2009 Vol.1 No.3/4 pp.173 - 202 Abstract: Traditional access control a.k.a. authorisation for e commerce systems is not flexible and efficient enough to combat the new emerging security challenges and public remains concerned about the security of online transactions as can be seen from http://www.security-survey.gov.uk. Challenges like changes in consumer|s behaviour, advances in broadband technology, industrial maturity and entropy converging to usher in a new era of e-commerce security. The authors| proposed framework provides trust transformation rules which have associated conditions for authorisations to control access. The introduction of trust method formalises the conditions within logical perspective. The authors aim to build the architecture and trust model for trust and authorisation within an e-commerce service system. The architecture will help to build a secure e-commerce service system. The underlying framework will not only inform researchers of a better design for secure e-commerce service, but also assist e-commerce systems developers in the understanding of intricate constructions within trust and authorisation. This includes protecting transactions records of customers in terms of information privacy and access. The authors also propose rigorous logical foundation for trust and authorisation in e-commerce service environments based on ABLP. Inderscience Publishers - linking academia, business and industry through research

Title: A framework towards enhancing trust and authorisation for e-commerce service

Authors: George S. Oreku, Jianzhong Li, Fredrick J. Mtenzi

Addresses: Department of Computer Science and Engineering, Harbin Institute of Technology, A13 Room 601, P.O. Box 773, 92 Xi Dazhi Street, Nangang District, Harbin, 150001, China. ' Department of Computer Science, Harbin Institute of Technology, 92 West Dazhi Street, Nangang District, Harbin, 150001, China. ' Faculty of Science, Dublin Institute of Technology, Kevin Street, Dublin 8, Ireland

Abstract: Traditional access control a.k.a. authorisation for e commerce systems is not flexible and efficient enough to combat the new emerging security challenges and public remains concerned about the security of online transactions as can be seen from http://www.security-survey.gov.uk. Challenges like changes in consumer|s behaviour, advances in broadband technology, industrial maturity and entropy converging to usher in a new era of e-commerce security. The authors| proposed framework provides trust transformation rules which have associated conditions for authorisations to control access. The introduction of trust method formalises the conditions within logical perspective. The authors aim to build the architecture and trust model for trust and authorisation within an e-commerce service system. The architecture will help to build a secure e-commerce service system. The underlying framework will not only inform researchers of a better design for secure e-commerce service, but also assist e-commerce systems developers in the understanding of intricate constructions within trust and authorisation. This includes protecting transactions records of customers in terms of information privacy and access. The authors also propose rigorous logical foundation for trust and authorisation in e-commerce service environments based on ABLP.

Keywords: authorisation; access control logic; e-commerce services; intermediates; trust; electronic commerce; e-commerce security; secure transaction.

DOI: 10.1504/IJITST.2009.023903

International Journal of Internet Technology and Secured Transactions, 2009 Vol.1 No.3/4, pp.173 - 202

Published online: 18 Mar 2009 *

Full-text access for editors Full-text access for subscribers Purchase this article Comment on this article

Title: A framework towards enhancing trust and authorisation for e-commerce service

Keep up-to-date