Relational-based Trust Management in a Generic Payment System
Lamia Chaffai Sghaier, Sihem Guemara-El Fatmi
Trust Management represents a vital component for the protection of business transactions. This paper considers the application of a relational-based model for Trust Management in Electronic Payment Systems. We introduce a generic payment model that provides a good framework to validate our trust model.We use the special features, new extensions and relational techniques provided by the Trust Management model to specify entities, actions and security policy axioms and rules in the generic payment system. We also discuss compliance correctness issues such as security policy specification correctness and validation, certificate chain discovery and revocation as well as performance issues. Finally, we consider some implementation issues.
- Guemara-El Fatmi, S., Boudriga, N., Obaidat, M.S.: Relational-based calculus for Trust Management in network services. To appear in Computer Communication Journal (2004)
- Asokan, N., Janson, P.A., Steiner, M., Waidner, M.: The state of the art in electronic payment systems. IBM Zurich (1997)
- Bellare, M., Garay, J., Herzberg, A., Krawczky, H., Steiner, M., Tsudik, G., Waidner.M.: Design implementation and deployment of the iKP secure electronic payment system. IEEE Journal of Selected Areas in Communications (2000)
- Abad Peiro, J.L., Asokan, N., Steiner, M., Waidner., M.: Designing a generic payment service. IBM Systems Journal, vol. 37, N±1 (1998)
- Dasweni, N., Boneh, D., Garcia-Molina, H., Ketchpel, Paepcke, S.A.: SWAPEROO: a simple wallet architecture for payments, exchanges, refunds and other operations. 3rd Usenix workshop on electronic commerce (1998)
- Bolignano, D.: Towards the Formal Veri cation of Electronic Commerce Protocols. 10th Computer Security Foundations Workshop, IEEE Computer Society Press (1997) 113-147
- Weeks, S.: Understanding Trust Management systems. In Symp.on. Sec and Privacy .IEEE Computer Society Press (2001)
- Blaze, M., Ioannidis, J., Keromytis, D.: Experience with the Keynote Trust Management System: Applications and Future Directions. In Proceedings of the 1st International Conference on Trust Management (2003) 283-300
- Seamons, K., Winslett, M., Yu, T., Smith, B., Child, E., Jacobson, J., Mills, H., Yu, L.: Requirements for Policy Languages for Trust Negotiation (2002)
- Ellison, C., Frantz, B., Lampson, B., Rivest, R., Thomas, B., Ylonen, T.: SPKI Certi cate Theory. RFC 2693 (1999)
- IEEE Standard 1012 for Software Veri cation and Validation (1998)
- Li, N., Mitchell, J., Winsborough, W.: Distributed Credential Chain Discovery in Trust Management. Stanford Security Workshop (2002)
- Anton, A., Earp, J.: Strategies for developing Policies and Requirements for Secure Electronic Commerce Systems. CCS2000 (2000)
Paper Citation
in Harvard Style
Chaffai Sghaier L. and Guemara-El Fatmi S. (2004). Relational-based Trust Management in a Generic Payment System . In Proceedings of the 1st International Workshop on Electronic Government and Commerce: Design, Modeling, Analysis and Security - Volume 1: EGCDMAS, (ICETE 2004) ISBN 972-8865-17-1, pages 116-125. DOI: 10.5220/0001402801160125
in Bibtex Style
author={Lamia Chaffai Sghaier and Sihem Guemara-El Fatmi},
title={Relational-based Trust Management in a Generic Payment System},
booktitle={Proceedings of the 1st International Workshop on Electronic Government and Commerce: Design, Modeling, Analysis and Security - Volume 1: EGCDMAS, (ICETE 2004)},
in EndNote Style
JO - Proceedings of the 1st International Workshop on Electronic Government and Commerce: Design, Modeling, Analysis and Security - Volume 1: EGCDMAS, (ICETE 2004)
TI - Relational-based Trust Management in a Generic Payment System
SN - 972-8865-17-1
AU - Chaffai Sghaier L.
AU - Guemara-El Fatmi S.
PY - 2004
SP - 116
EP - 125
DO - 10.5220/0001402801160125