A novel Trust Service Provider for Internet based commerce applications

In this paper we present a framework for enhancing trust in Internet commerce. Experience shows that efficient cryptographic protocols are not enough to guarantee peoples’ confidence in Internet commerce; the transacting parties must also trust each other. Hence, the main ingredient missing in today’s e‐commerce infrastructures is modeling and implementing trust. Several attempts have been made to provide secure and trusted protocols but few have seen any practical use. This paper shows how trust can be provided through a network of Trust Service Providers (TSp). We have identified a set of services that should be offered by a TSp. We also present a distributed object‐oriented implementation of trust services using CORBA, JAVA and XML.

[1]  Thomas Beth,et al.  Trust relationships in secure systems-a distributed authentication perspective , 1993, Proceedings 1993 IEEE Computer Society Symposium on Research in Security and Privacy.

[2]  Thomas Beth,et al.  Valuation of Trust in Open Networks , 1994, ESORICS.

[3]  Hector Garcia-Molina,et al.  Making trust explicit in distributed commerce transactions , 1996, Proceedings of 16th International Conference on Distributed Computing Systems.

[4]  Jiawen Su,et al.  Building trust for distributed commerce transactions , 1997, Proceedings of 17th International Conference on Distributed Computing Systems.

[5]  Sharman Lichtenstein,et al.  Developing Internet security policy for organizations , 1997, Proceedings of the Thirtieth Hawaii International Conference on System Sciences.

[6]  D. M. Goldschlag,et al.  Security issues in networks with Internet access , 1997 .

[7]  Ronald L. Rivest Perspectives on Financial Cryptography , 1997, Financial Cryptography.

[8]  Tuomas Sandholm,et al.  Unenforced E-Commerce Transactions , 1997, IEEE Internet Comput..

[9]  Stephen Hailes,et al.  A distributed trust model , 1998, NSPW '97.

[10]  Joobin Choobineh,et al.  Trust in electronic commerce: definition and theoretical considerations , 1998, Proceedings of the Thirty-First Hawaii International Conference on System Sciences.

[11]  Victoria Ungureanu,et al.  A mechanism for establishing policies for electronic commerce , 1998, Proceedings. 18th International Conference on Distributed Computing Systems (Cat. No.98CB36183).

[12]  Malte Borcherding,et al.  Efficient and trustworthy key distribution in webs of trust , 1998, Comput. Secur..

[13]  Rolf Oppliger,et al.  Shaping the research agenda for security in e-commerce , 1999, Proceedings. Tenth International Workshop on Database and Expert Systems Applications. DEXA 99.

[14]  Gerhard Fuchs,et al.  Trust and electronic commerce-more than a technical problem , 1999, Proceedings of the 18th IEEE Symposium on Reliable Distributed Systems.

[15]  R. Pereira Factors influencing consumer perceptions of Web‐based decision support systems , 1999 .

[16]  Mohammed Yakoob Siyal,et al.  Novel biometric digital signatures for Internet-based applications , 2001, Inf. Manag. Comput. Secur..