Docsity
Log inSign up
Docsity
Prepare for your exams
Prepare for your exams

Study with the several resources on Docsity

Earn points to download
Earn points to download

Earn points by helping other students or get them with a premium plan

Guidelines and tips
Guidelines and tips
Sell on Docsity
Sell on Docsity
Docsity AI
Docsity AI
Log inSign up

Prepare for your exams

Study with the several resources on Docsity

Find documents

Prepare for your exams with the study notes shared by other students like you on Docsity

Search for your university

Find the specific documents for your university's exams

Docsity AINEW

Summarize your documents, ask them questions, convert them into quizzes and concept maps

Explore questions

Clear up your doubts by reading the answers to questions asked by your fellow students

Earn points to download

Earn points by helping other students or get them with a premium plan

Share documents
download point icon20 Points

For each uploaded document

Answer questions
download point icon5 Points

For each given answer (max 1 per day)

All the ways to get free points
Get points immediately

Choose a premium plan with all the points you need

Study Opportunities

Choose your next study program

Get in touch with the best universities in the world. Search through thousands of universities and official partners

Community

Ask the community

Ask the community for help and clear up your study doubts

Free resources

Our save-the-student-ebooks!

Download our free guides on studying techniques, anxiety management strategies, and thesis advice from Docsity tutors

Key Agreement Protocols - E-Commerce - Lecture Slides, Slides of Fundamentals of E-Commerce

Birla Institute of Technology and ScienceFundamentals of E-Commerce

Students of Computer Science, study E-Commerce as an auxiliary subject. these are the key points discussed in these Lecture Slides of E-Commerce : Key Agreement Protocols, Inventors, Transactions, Web Browsers, Mail Systems, Internet Explorer, Netscape Communicator, Apache Web Server, Pretty Good Privacy, Encrypt

Typology: Slides

2012/2013

Uploaded on 07/29/2013

masti
masti 🇮🇳

4.5

(10)

121 documents

1 / 10

Toggle sidebar

This page cannot be seen from the preview

Don't miss anything!

bg1
RSA
• The mostly commonly used public-key system
is RSA (named for its inventors: Ron Rivest, Adi
Shamir, and Leonard Adleman).
• Invented in 1977 at MIT.
• Most secure e-commerce transactions on the
Internet use RSA products. See the RSA security
page.
• RSA is built into many Web browsers, commerce
servers, and e-mail systems.
Examples: Internet Explorer, Apache Web Server,
Netscape Communicator.
Docsity.com
pf3
pf4
pf5
pf8
pf9
pfa

Partial preview of the text

Download Key Agreement Protocols - E-Commerce - Lecture Slides and more Slides Fundamentals of E-Commerce in PDF only on Docsity!

RSA

  • The mostly commonly used public-key system

is RSA (named for its inventors: Ron Rivest, AdiShamir, and Leonard Adleman).

  • Invented in 1977 at MIT.• Most secure e-commerce transactions on the

Internet use RSA products. See the

RSA security

page

  • RSA is built into many Web browsers, commerce

servers, and e-mail systems.Examples: Internet Explorer, Apache Web Server,Netscape Communicator.

PGP

  • Another common public-key system is PGP

(Pretty Good Privacy).

  • Used to encrypt e-mail messages and files.• PGP is freely available for non-commercial

use. See the

MIT Distribution Center

Digital envelopes

The basic idea:• A message is encrypted using a secret key.• The secret key is encrypted using a public key.• Only the receiver can decipher the secret key.Example:• Alice encrypts a message using a secret key.• Alice encrypts the secret key using Bob’s public key.• Alice sends both to Bob.• Bob decrypts the secret key using his private key.• He then uses that key to decipher the message.

Key management

  • Most compromises in security result from poor key

management, e.g. the mishandling of private keysresulting in key theft.

  • An important part of management is the generation

of keys.

  • The key length must be sufficiently long.• A key generation algorithm that is unintentionally

constructed to select keys from a small subset ofall possible keys may allow a third party to crackthe encryption.

  • Key generation algorithms must be random.

SSL

  • To begin, a client sends a message to a server.• The server responds by sending its digital

certificate to the client for authentication.

  • Using public-key cryptography, the client and

server negotiate session keys to continue.

  • Once the keys are established, the transaction

proceeds using the session keys and digitalcertificates.

  • All information exchanged is encoded.• See Figure 6-17 on page 221.

Types of communication^ SSL resides on top of TCP/IP in the Internetprotocol suite.As a result it can secure many different typesof communications:• FTP sessions• Telnet sessions• HTTP sessions: S-HTTP

Secure protocols

  • Secure sockets layer (SSL)

The purpose is to secure connections betweentwo computers.Developed by Netscape communications.

  • Secure Hypertext Transfer Protocol (S-HTTP)

The purpose is to send individual messagessecurely.Developed by CommerceNet.