Design of the XML Security System for Electronic Commerce Application  被引量：1

作　　者：安南 Zhang Shensheng 

机构地区：[1]Computer Science and Engineering Department, Shanghai Jiaotong University, Shanghai 200030, P.R.China

出　　处：《High Technology Letters》2003年第2期81-86,共6页高技术通讯（英文版）

基　　金：SupportedinpartbytheNationalNaturalScienceFoundationofChina(ProjectNo .5 97895 0 2 )and 86 3High TechR&DProgram (ProjectNo .86 3- 5 11- 0 30 - 0 0 6 )

摘　　要：The invocation of World Wide Web (www) first triggered mass adoption of the Internet for public access to digital information exchanges across the globe. To get a big market on the Web, a special security infrastructure would need to be put into place transforming the wild-and-woolly Internet into a network with end-to-end protections. XML (extensible Markup Language) is widely accepted as powerful data representation standard for electronic documents, so a security mechanism for XML documents must be provided in the first place to secure electronic commerce over Internet. In this paper the authors design and implement a secure framework that provides XML signature function, XML Element-wise Encryption function, smart card based crypto API library and Public Key Infrastructure (PKI) security functions to achieve confidentiality, integrity, message authentication, and/or signer authentication services for XML documents and existing non-XML documents that are exchanged by Internet for E-commerce application.The invocation of World Wide Web (www) first triggered mass adoption of the Internet for public access to digital information exchanges across the globe. To get a big market on the Web, a special security infrastructure would need to be put into place transforming the wild-and-woolly Internet into a network with end-to-end protections. XML (extensible Markup Language) is widely accepted as powerful data representation standard for electronic documents, so a security mechanism for XML documents must be provided in the first place to secure electronic commerce over Internet. In this paper the authors design and implement a secure framework that provides XML signature function, XML Element-wise Encryption function, smart card based crypto API library and Public Key Infrastructure (PKI) security functions to achieve confidentiality, integrity, message authentication, and/or signer authentication services for XML documents and existing non-XML documents that are exchanged by Internet for E-commerce application.

关 键 词：electronic commerce security digital certificates smart card digital commerce AUTHENTICATION transaction integrity verification internet XML 

分 类 号：TP393.08[自动化与计算机技术—计算机应用技术] F713.36[自动化与计算机技术—计算机科学与技术]