
















Study with the several resources on Docsity
Earn points by helping other students or get them with a premium plan
Prepare for your exams
Study with the several resources on Docsity
Earn points to download
Earn points by helping other students or get them with a premium plan
E-Commerce is taking over the traditional commerce practices. It is of special concern for the IT students. Following are the key points of these Lecture Slides : Time Stamping, Encryption, Symmetric Key, Public Key, Security Technologies, Rights Management, Secure Containers, Right Ingredients, Protection System, Optimistic
Typology: Slides
1 / 24
This page cannot be seen from the preview
Don't miss anything!

















Encryption
Signature
Rights Management
Time stamping
Secure Containers
Content
Encrypted Distributor Content
Player App.
Player App.
CustomerPaying
CustomerPaying
Player App. Thief (no k)
k
k
on low-cost channel (
e.g.,
web page, broadcast
Key KDC
Generation
c
K AB
Bob Alice
Y Alice
E(X, K
AB
)
Bob
X
D(Y, K
AB^
)
Y
Internet Standard in 1997 (version 3.x).SSL was first developed by Netscape Corp. in 1994 and became an
communicating across a “socket” (SSL is a cryptographic protocol to secure two applications
cf
Data transmitted through an SSL connection is encrypted.
socket connection to the server (port 443).The string https:// in an URL specifies the browser to open a securedIt is mostly used by WWW applications (web servers and browsers).
trusted CAs.hierarchy” in SSL, so browsers are preloaded with certificates ofSSL uses digital certificates for authentication. There is no “trust
markets use weakened cryptography (40-bit key vs. 128-bit key).Due to U.S. export regulations, products using SSL sold in foreign
Server hello^ Client hello
*Request Client Certificate Present Server Certificate Server Key Exchange
Client Finish
Present Client Certificate Change Cipher SpecCertificate VerifyClient Key Exchange Server Finish
Change Cipher Spec
Client
Server
Application Data
ui
th
u
uN
shortcomings.)broadcast of encrypted content... and samedistribution of keys. (Same architecture as inBroadcast of marked object, controlled
of marked objects.Web crawlers can search for unauthorized copies
be detected by “fragile watermarking schemes.”Unauthorized modification of marked objects can
marked objects.Special-purpose devices can refuse to copy
Content is packaged with “terms and conditions” that
can be augmented by value-adding middlemen.are checked by a “rights-management system” and
Content
Originator
RedistributorRedistributor
Redistributor
Redistributor
Redistributor
ClearingPayment System
userEnd
userEnd
userEnd
userEnd
Known Risks
Unknown
Risks
TPS
Residual Risks
A.Rubin & M. Reiter – used with permission