Abstract
In these times of the dawning of e-commerce, many issues and barriers still remain to be solved before electronic transactions over the Web can be expected to be really successful. One important unresolved problem is the issue of having efficient and secure payment models based on e-purses and including electronic product delivery and price negotiation. In response to this need, the SPEED protocol specification has been proposed. This specification, which is described in this paper, provides a high level of security for all parties involved in e-commerce transactions over the Internet; at the same time, we have combined this aim with the use of highly-recognised standards and all the advantages of using e-purses implemented on multiaplication smart cards. Our work has also been tested in a real environment, providing us an interesting feedback based on technical and user-friendly matters.
Partially supported by TEL-IFD97-1426 EU FEDER project (PISCIS)
This is a preview of subscription content, log in via an institution to check access.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Preview
Unable to display preview. Download preview PDF.
References
M. Abadi and R. Needham. Prudent engineering practice for cryptographic protocols. IEEE Transactions on Software Engineering, 1(22):6–15, January 1996.
CEN/TC224/WG10. Inter-sector Electronic Purse, Part 3: Data Elementents for Interchanges, December 1995.
CEN/TC224/WG10. Inter-sector Electronic Purse, Part 2: Security Architecture, January 1996.
CEPSCO LLC. Common Electronic Purse Specifications, March 1999.
P. Cheng and R. Glenn. Tests Cases for HMAC-MD5 and HMAC-SHA-1, September 1997. Request For Comments (RFC) 2202.
Microsoft Corporation. CryptoAPI version 2.0. World Wide Web, http://msdn.microsoft.com/library/psdk/crypto, 2001.
B. Cox, J. D. Tygar, and M. Sirbu. Netbill security and transaction protocol. In Proceedings of First USENIX Workshop on Electronic Commerce, 1995.
C. Ellison, B. Frantz, B. Lampson, R. Rivest, B. Thomas, and T. Ylonen. SPKI certificate theory, September 1999. Request For Comments (RFC) 2693.
S. Glassman et al. The Millicent protocol for inexpensive electronic commerce. World Wide Web Journal, Fourth International World Wide Web Conference Proceedings, pages 603–618, December 1995.
R. Housley, W. Ford, and D. Solo. Internet Public Key Infrastructure, Part I: X.509 Certificate and CRL Profile, January 1999. Request for Comments (RFC) 2459.
ITU-T. ASN.1 encoding rules: Specification of Basic Encoding Rules (BER), Canonical Encoding Rules (CER) and Distinguished Encoding Rules (DER), 1995. Recommendation X.690.
X. Lai. On the design and security of block ciphers, volume 2. ETH Series in Information Processing, 1992.
R. L. Rivest. The MD5 Message-Digest Algorithm, April 1992. Request For Comments (RFC) 1321.
R. L. Rivest and A. Shamir. Payword and MicroMint:two simple micropayment schemes. In Mark Lomas, editor, Proceedings of 1996 International Workshop on Security Protocols, number 1189 in Lecture Notes in Computer Science, pages 69–87. Springer, 1997.
RSA Laboratories,. PKCS#7: Cryptographic Message Syntax Standard, November 1993.
Sun Microsystems. JavaCard 2.1.1 Specifications, May 2000.
WAP Forum. Wireless Application Protocol Identity Module Specification, February 2000.
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2001 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Ruiz, A., Martínez, G., Cánovas, O., Gómez, A.F. (2001). SPEED Protocol: Smartcard-Based Payment with Encrypted Electronic Delivery. In: Davida, G.I., Frankel, Y. (eds) Information Security. ISC 2001. Lecture Notes in Computer Science, vol 2200. Springer, Berlin, Heidelberg. https://doi.org/10.1007/3-540-45439-X_31
Download citation
DOI: https://doi.org/10.1007/3-540-45439-X_31
Published:
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-540-42662-2
Online ISBN: 978-3-540-45439-7
eBook Packages: Springer Book Archive