Secure brokerage mechanisms for mobile electronic commerce

Computer Communications

Volumn 29, Issue 12, 2006, Pages 2308-2321

  Esparza, Oscar ^a   Muñoz, Jose L ^a   Soriano, Miguel ^a   Forné, Jordi ^a  

^a UNIVERSITAT POLITÈCNICA DE CATALUNYA   (Spain)

Author keywords

Broker; M commerce; Mobile agent; Public Key Certificates (PKCs)

Indexed keywords

DIGITAL WATERMARKING; INFORMATION DISSEMINATION; INTERNET; NETWORK PROTOCOLS; PROBLEM SOLVING; PUBLIC KEY CRYPTOGRAPHY;

BROKER; M-COMMERCE; MOBILE AGENT; PUBLIC KEY CERTIFICATES (PKCS);

ELECTRONIC COMMERCE;

EID: 33746169048     PISSN: 01403664     EISSN: None     Source Type: Journal    
DOI: 10.1016/j.comcom.2006.03.005     Document Type: Article

References (29)

1. IST SIMPLICITY Project: .
2. IST UBISEC Project: .
3. ITU-T SG16: .
4. Chess D. Security issues in mobile code systems. Mobile Agents and Security. LNCS vol. 1419 (1998), Springer-Verlag, Berlin
5. D. Chess, B. Grosof, C. Harrison, D. Levine, C. Parris, G. Tsudik, Itinerant agents for mobile computing, in: Readings in Agents, 1997.
6. D. Chess, C. Harrison, A. Kershenbaum, Mobile agents: are they a good idea, IBM Research Report, 1995.
7. Collberg C., Huntwork A., Carter E., and Townsend G. Graph theoretic software watermarks: implementation, analysis, and attacks. 6th International Workshop on Information Hiding. LNCS vol. 3200 (2004), Springer-Verlag, Berlin
8. C. Collberg, C. Thomborson, Software watermarking: models and dynamic embeddings, in: Principles of Programming Languages 1999, POPL'99, 1999.
9. C. Collberg, C. Thomborson, D. Low, A taxonomy of obfuscating transformations, Technical Report 148, The University of Auckland, 1997.
10. Esparza O., Soriano M., Muñoz J.L., and Forné J. Host revocation authority: a way of protecting mobile agents from malicious hosts. International Conference on Web Engineering (ICWE 2003). LNCS vol. 2722 (2003), Springer-Verlag, Berlin
11. O. Esparza, M. Soriano, J.L. Muñoz, J. Forné, Punishing manipulation attacks in mobile agent systems, in: IEEE Global Telecommunications Conference (Globecom 2004), 2004.
12. Even S., Goldreich O., and Micali S. Online/offline signatures. Journal of Cryptology 9 (1996) 35-67
13. W.M. Farmer, J.D. Guttman, V. Swarup, Security for mobile agents: issues and requirements, in: 19th National Information Systems Security Conference, 1996.
14. Hohl F. Time limited Blackbox security: protecting mobile agents from malicious hosts. Mobile Agents and Security. LNCS vol. 1419 (1998), Springer-Verlag, Berlin
15. F. Hohl, A protocol to detect malicious hosts attacks by using reference states, 1999.
16. R. Housley, W. Ford, W. Polk, D. Solo, Internet X.509 Public Key Infrastructure Certificate and CRL Profile, 1999. RFC 2459.
17. ITU/ISO Recommendation, X.509 Information Technology Open Systems Interconnection - The Directory: Authentication Frameworks, 2000. Technical Corrigendum.
18. W. Jansen, Countermeasures for Mobile Agent Security, Computer Communications, Special Issue on Advanced Security Techniques for Network Protection, 2000.
19. W. Jansen, T. Karygiannis, Mobile Agent Security, Special publication 800-19, National Institute of Standards and Technology (NIST), 1999.
20. Juul N.C., and Jørgensen N. The security hole in WAP: an analysis of the network and business rationales underlying a failure. International Journal of Electronic Commerce 7 4 (2003) 73 Summer
21. T.S. Loon, V. Bharghavan, Alleviating the latency and bandwidth problems in WWW browsing, in: USENIX Symposium on Internet Technologies and Systems, 1997.
22. Y. Minsky, R. van Renesse, F. Schneider, S.D. Stoller, Cryptographic support for fault-tolerant distributed computing, in: Seventh ACM SIGOPS European Workshop, 1996.
23. J.L. Muñoz, J. Forné, Evaluation of Certificate Revocation Policies: OCSP vs. Overissued CRL, in: DEXA Workshops 2002. Workshop on Trust and Privacy in Digital Business (TrustBus02), pp. 511-515, IEEE Computer Society, 2002.
24. Muñoz J.L., Forné J., Esparza O., Bernabe I., and Soriano M. Using OCSP to secure certificate-using transactions in m-commerce. Applied Cryptography and Network Security. LNCS vol. 2846 (2003), Springer-Verlag, Berlin 280-292
25. M. Myers, R. Ankney, A. Malpani, S. Galperin, C. Adams, X.509 Internet Public Key Infrastructure Online Certificate Status Protocol - OCSP, 1999. RFC 2560.
26. Soriano M., and Ponce D. Security and usability proposal for mobile electronic commerce. IEEE Communications Magazine 40 (2002) 62-67
27. Stern J.P., Hachez G., Koeune F., and Quisquater J.J. Robust object watermarking: application to code. Information Hiding. LNCS vol. 1768 (1999), Springer-Verlag, Berlin
28. Vigna G. Cryptographic traces for mobile agents. Mobile Agents and Security. LNCS vol. 1419 (1998), Springer-Verlag, Berlin
29. ITU/ISO Recommendation X.509, Information technology Open Systems Interconnection - The Directory: Public Key and Attribute Certificate Frameworks, 1997.