Asokan N., Janson P., Steiner M. and Waidner M. The State of the Art in Electronic Payment Systems. IEEE Computer Magazine, 30(9):28--35, September 1997.  Home/Search   Document Details and Download   Summary   Related Articles   Check

....for ad hoc networks are surveyed. As the paper illustrates, incentive schemes are confined to the cooperation of network protocol entities. Furthermore, for the provision of application services, there exist network independent incentive schemes that are better known as electronic payment systems [AJSW97] On top of that, economic and societal incentive schemes stimulate cooperation among users. Layered cooperation and incentive schemes. According to [OKRK03b] cooperation is layered as shown in Figure 1. In order to facilitate the systematic consideration of user cooperation and device ....

....entities Obviously, there exists a gap between user, application and network layer incentive schemes. The vertical integration of incentive schemes is only considered sporadically, e.g. by converting virtual currencies of the network and application layer to real world money [BFG 01] ZCY03] AJSW97] However, these approaches fall short of systemically integrating incentive schemes among layers. Apart from integrating existing incentive schemes, the lack of any incentives for cooperation on the discovery, transport and link layer becomes apparent. If protocol entities on certain layers are ....

N. Asokan, Phillipe A. Janson, Michael Steiner, and Michael Waidner. The state of the art in electronic payment systems. IEEE Computer, 30(9):28-- 35, 1997.

....double spenders. This is no contradistinction to the anonymity of honest spenders, since this is asserted by blind signatures and the cut and choose technique [13] Transferability is a desirable property of electronic cash. However, it is not supported by most of such electronic payment systems [14]. 3.3 Trust Depending on the incentive scheme, trust either constitutes an incentive for cooperation or it is a prerequisite for remuneration mechanisms. Trust is subdivided into the principal entity s perspective and the agent entity s perspective. On the one hand, the principal entity has to ....

Asokan, N., Janson, P.A., Steiner, M., Waidner, M.: The state of the art in electronic payment systems. IEEE Computer 30 (1997) 28--35

....systems, there is ongoing research on distributed reputation systems [10] which are needed for the implementation of the community pattern. Mojo Nation [11] applies the barter trade pattern and the banking pattern. The implementation of the banking and banknotes incentive patterns is discussed in [12]. According to the classification of incentive schemes for ad hoc networks in [1] the collective pattern is predominant for military, corporate, private and sensor ad hoc networks. However, there exist approaches that apply the community pattern (RPG, Watchdog Pathrater, CONFIDANT and CORE ) and ....

Asokan, N., Janson, P.A., Steiner, M., Waidner, M.: The state of the art in electronic payment systems. IEEE Computer 30 (1997) 28--35

....2. Model and Security Requirements for Smartcard Internet Payments Our model of a generic Internet payment system (Figure 1) consists of a customer and a merchant who exchange money for goods and at least one financial institution linking electronic payments to the transfer of real money [1]. Customer and merchant communicate currently at Jelmoli AG Information Systems, Zurich, Switzerland. Email: wille u jelmoli.ch 2 over an open network (the Internet) with each other and with their banks (issuing bank and acquiring bank, respectively) Figure 1. Payment Model. During a ....

N. Asokan, P.A. Janson, M. Steiner and M. Waidner, "The State of the Art in Electronic Payment Systems", in IEEE Computer, September 1997.

.... REQUIREMENTS FOR SMARTCARD INTERNET PAYMENTS Our model of a generic Internet payment system (Figure 1) consists of a customer and a merchant exchanging money for goods or receipts as well as of at least one financial institution linking electronic payments to the transfer of real money [1]. Customer and merchant communicate over an open network (the Internet) with each other and with their banks (issuing bank and acquiring bank, respectively) During a transaction, actual connectivity may be limited to subsets of players. In a typical online purchase scenario, the customer has a ....

N. Asokan, P. Janson, M. Steiner and M. Waidner, "The State of the Art in Electronic Payment Systems," in IEEE Computer 30(9) 28-35, Sept. 1997.

....in using formal models to verify secure systems. A few examples are [BAN89, Low96, Pau98, J ur00, AJ01, J ur01a, WW01] for an overview wrt. security protocols cf. GSG99, RSG 01] However, auditing does not seem to have been considered extensively. An overview on payment systems is given in [AJSW00] Smart card protocols have been investigated using formal logic in [ABKL93] 00] considers secure information ow between applets in a multiapplication smart card. A di erent part of the CEPS is investigated in [JW01] using the CASE tool AutoFocus. While many case studies consider security ....

N. Asokan, P. Janson, M. Steiner, and M. Waidner. The state of the art in electronic payment systems. Advances in Computers, 53, 2000.

....failure of payment systems, and not all of them are of technical nature. Users acceptance depends on many user related issues, such as consumer choice, preferences, state of the market, etc. There are several attempts to describe characteristics of payment systems, mainly from technological side [12, 1]. If we want to better understand how payment systems are perceived by users and what problems they have, we can define characteristics that describe these systems from various points of view as technological, user related, market, legal and other issues. Descriptions of the Characteristics of ....

....Anonymity and traceability are important for users as characteristics that induce trust. Authorization type. Another characteristic of this kind is authorization type that is addressed in the literature as an ability of a system to perform payments not being connected to a central authority, [1, 11]. Authorization type can be offline or online. Offline authorization type means that users of the system can exchange money not being connected to a network, without a third party as a mediator. Natural illustration for offline authorization is the exchange of cash. Some electronic payment ....

Asokan, N., Janson, P.A., Steiner, M and Waidner, M.: The State of the Art in Electronic Payment Systems. IEEE Computer, (1997) 28-35

....generate test sequences for implementations of the protocol. CEPS is a candidate for a globally interoperable electronic purse standard supported by organisations (including Visa International) representing 90 percent of the world s electronic purse cards and likely to become an accepted standard [AJSW00] making its security an important goal. As well known, testing cannot prove the absence of implementation errors. It is however currently the technique most widely used in industry to gain some con dence in the absence of major bugs, since mechanically assisted theorem proving or ....

N. Asokan, P. Janson, M. Steiner, and M. Waidner. The state of the art in electronic payment systems. Advances in Computers, 53, 2000.

....cards, and postal stamps. An electronic payment system or network payment system allows monetary value to be transferred from one entity to another across a computer network. With the emergence of the global Internet many different electronic payment systems have been proposed in recent years [OPT97, AJSW97]. Many of these are based on existing payment instruments while others introduce new forms of value representation and exchange. The purpose of this chapter is to review existing payment techniques and the underlying cryptographic algorithms upon which they are built, in order to access their ....

N. Asokan, P. Janson, M. Steiner, and M. Waidner. State of the art in electronic payment systems. IEEE Computer, 30(9):28-35, September 1997.

....MSS identifies each wireless computer by its permanent IP address. In our approach, a non personal, temporary, random identifier (TempId) is used instead. The TempId is assigned by the MSS on a per communication session basis. The caller pays for the call by anonymous electronic cash (e cash) [2, 3]. Confidential communication is ensured by the use of the public key (Kpu) of the MSS and a session key (Ks) belonging to the caller. PhD student supported by The National Autonomous University of Mexico 3 The Algorithm In our system shown in Fig. 1, Bob is the anonymous sender, Alice is the ....

N. Asokan, Phillipe A. Janson, Michael Steiner, and Michael Waidner. The state of the art in electronic payment systems. Computer, 30(9), September 1997.

....the general rule which states that the calling party pays, the MSS can charge Bob on line on a pay for time used basis. If this is the case, the MSS must support a mechanism for anonymous payment. Bob can use an anonymous prepaid card (see section 2. 3) Alternatively, Bob can use anonymous e cash [12, 13]. Since the use of anonymous e cash to pay for the anonymous communication service is the most general case and because Bob might need an anonymous method of payment to pay for other services apart from the MSS s, we consider the use of anonymous e cash in our approach presented in the next ....

N. Asokan, Phillipe A. Janson, Michael Steiner, and Michael Waidner. The state of the art in electronic payment systems. Computer, 30(9), September 1997.

....and composability, we propose describing a ticket using a set of signed descriptions linked with restriction specified incomplete complete links. Finally, this paper proposes a set of common ticket processing components. 1. Introduction A number of electronic payment schemes [1] such as encrypted credit cards [17] digital cash [8] and micropayments [5] 16] have been designed and established for Internet commerce. However, in the opposite flow of the payment, i.e. goods or products to the consumer, we depend on a physical delivery system except for a few types of ....

....cash but these properties vary with the ticket, and there are some new requirements not required for digital cash. A summary of this is shown in Table I. Among the technologies to achieve the above ten properties, 1) through (10) are outside the scope of this paper since a number of methods [1][8] have already been proposed and developed. Instead, this paper proposes a ticket description method that enables the definition of various ticket properties and first establishes (11) a machine understandable ticket. Second, this paper proposes a ticket model that achieves (12) state manageable ....

N. Asokan, P. A. Janson, Michael Steiner, and M. Waidner, "The State of the Art in Electronic Payment Systems," IEEE Computer, Sep. 1997, pp. 28-35.

.... is known as the double spending problem [1, 11, 12] Typically, this problem is prevented by tamper resistant hardware, such as smartcards, but it can also be prevented by preauthorization (the merchant is known to the customer in advance, and the payment is already authorized during withdrawal) [3]. It is not always necessary or even possible to prevent double spending; the detection of it might be 2 enough. Although the customers can be totally anonymous and cannot be linked with the spent coins, double spenders are possible to identify [3] 2.1 General properties Electronic payment ....

....payment is already authorized during withdrawal) 3] It is not always necessary or even possible to prevent double spending; the detection of it might be 2 enough. Although the customers can be totally anonymous and cannot be linked with the spent coins, double spenders are possible to identify [3]. 2.1 General properties Electronic payment systems can be divided into two models: on line and off line systems [11, 14] The on line property means that the coins are being verified during transaction. This means that the merchant has to have a connection to the bank, in order to check that ....

[Article contains additional citation context not shown here]

Asokan, N., State of the art in electronic payment systems. http://www.semper.org/sirene/people/asokan/research/ac.ps.gz, November 10, 2000.

....licenses, resource access tickets, event tickets, and plane tickets. A digital ticket covers a wide range of digital rights from a digital certificate [8] 20] in which transferability is not required and where there are no restrictions on the number of times it can be consumed, to digital cash [2][14] in which transferability is required and restrictions on consumption apply. We are developing a system that can circulate all tickets with various rights in a common manner. This system enables service providers to reduce the development costs of the ticketing software hardware and also ....

....the development costs of the ticketing software hardware and also enables users to view and manage various tickets using a common ticket wallet , which greatly improves usability. The trust management scheme [1] 3] 6] 7] developed for digital certificates and the double spending protection scheme [2][14] developed for digital cash can also be applied to digital tickets as base technologies, since digital tickets have aspects of both digital certificates and digital cash. These technologies, however, do not provide solutions for the specific requirements of digital tickets, i.e. diversity in ....

N. Asokan, P. A. Janson, Michael Steiner, and M. Waidner, "The State of the Art in Electronic Payment Systems", IEEE Computer, September 1997, pp. 28-35.

....in the number of individuals and organizations using wide computer networks for personal and professional activities. Among the variety of new uses of computer networks, there are several applications that are highly sensitive to data security. An example is commercial exchange on the Internet [1, 15]. Bacard [2] Cohen [5] and Kaufman et al. 7] provide a broad coverage about security issues on computer networks. Cryptographic algorithms are an essential part in network security. A well known cryptographic algorithm is the Data Encryption Standard (DES) 9, 11] widely adopted in security ....

N. Asokan, P. Janson, M. Steiner, and M. Waidner. The state of the art in electronic payment systems. IEEE Computer Magazine, 30(9):25--28, Sept. 1997.

....this paper with some general remarks on the future of electronic payment systems. 2 A Classification Schema for electronic payment systems At this moment in time, there are many different companies trying to position their products as the dominant way to transfer money across the Internet [1] [2] 3] In this survey we classify the electronic payment systems according to the following schema (illustrated also graphically in Figure 1) Electronic Payment Systems: A Survey 198 Smart Card Technology Open Computer Networks Token based systems Electronic payment systems Electronic ....

....verifies the signature of the bank on the payment slip. 5. The information given by the terminal in the first step is encoded by the card into the payment slip (M) 6. When the payment has been finalised, the terminal sends an acknowledgement to the card, which then updates its counters. [1] Insert card [2] Regenerate Payslip [3] Send Blank Payslip [6] Verify ACK [5] Signed Payslip (M) Customer Merchant [4] Verify Bank s Signature Figure 4 The CAFE flow of interactions for the payment phase Deposit: on accepting a payment slip, the payee forwards it to the acquirer (at a ....

[Article contains additional citation context not shown here]

N.Asokan, Phillipe A. Janson, Michael Steiner and Michael Wainder, "The State of the Art in Electronic Payment Systems"

....cr edito. Una fuente de informaci on acerca de comercio electr onico, sistemas de pago, transferencias de fondos, y otros sistemas relacionados es http: www.semper.org sirene outsideworld ecommerce.html. Aqu i hay ligas a los sistemas que se describen a continuaci on. Recientemente apareci o en [2] una rese na del estado del arte en sistemas de comercio electr onico. En los sistemas de comercio electr onico siempre se identifican tres tipos de participantes. El pagador que transfiere una cantidad al cobrador, y la instituci on financiera que garantiza la validez del dinero involucrado, de ....

N. Asokan, P. A. Janson, M. Steiner, M. Waidner, "The state of the art in electronic payment systems", IEEE Computer, septiembre 1997, 28--35.

....physical world will play an important role [5] In order to identify common risks, payment systems must be classified. There are several proposals of how to do this which can be summed up in a generic concept [6] Payment systems can be distinguished, e.g. upon the time of value transfer (cf. [7]) the binding to account processing, the kind of payment information communication and the initiation of value transfer. As in [6] these categories can be pooled according to the underlying flows of information in order to gain generic payment system classes. Fig. 2 depicts the classes cash ....

N. Asokan, P. Janson, M. Steiner, and M. Waidner, "The State of the Art in Electronic Payment Systems", in: IEEE Computer, Sept. 1997, pp. 28-35.

....the development of the electronic marketplace. With a number of payment systems available, people now need ways to analyze these systems and choose the one most suitable to their needs. Some work has been done in the direction of clarifying and classifying the way electronic payment systems work [2, 11, 7, 1, 3, 8]. Some of these works describe payment systems characteristics and their intrinsic requirements [2, 3, 7] while others classify payment systems by their functional behavior [8] We believe a more integrated approach should be used to achieve a broader understanding of electronic payment systems. ....

N. Asokan, M. Steiner, and M. Waidner. The state of the art in electronic payment systems. IEEE Computer, pages 28--35, September 1997.

....security and efficiency are not sufficient to guarantee the market penetration of SET. Additional incentives for merchants and even more important for cardholders are necessary in order to gain market share. INTRODUCTION There are a wide range of electronic payment systems for online purchases [1 4]. In spite of impressing growth rates in the past and audacious growth forecasts of business toconsumer E Commerce [5] p. 30, only a very small part of the transactions are made online. Surveys on supply [6, 7] of payments for E Commerce transactions show that mostly traditional payment systems ....

N. Asokan, P. A. Janson, M. Steiner, and M. Waidner , "The State of the Art in Electronic Payment Systems," IEEE Computer, vol. 30, pp. 28-35, 1997.

....of such applications. Other aspects, such as distribution and fault tolerance, will not be considered. Patterns of Section 4 address particular aspects of this example. Figure 4 shows the three main entities of electronic commerce applications and the flow of money and sensitive data among them [AJSW97] The Broker is usually a bank or a financial institution like Visa or MasterCard. The Payee can be an Internet access provider and Payers are the customers. Payers make resquests to Brokers for electronic cash, which can be debited in Payers credit cards. 8 A. M. Braga, C. M. F. Rubira and R. ....

N. Asokan, Philippe A. Janson, Michael Steiner, and Michael Waidner. The State of the Art in Electronic Payment Systems. IEEE Computer, pages 28--35, September 1997. 26 A. M. Braga, C. M. F. Rubira and R. Dahab

....has been replaced or not. Example Two common uses of MDCs are detection of file modification caused by viruses and generation of passphrases to produce cryptographic keys. Also, MDCs could be used as unique identifiers of electronic coins in electronic commerce applications based on hash chains [AJSW97] 2.4 Message Authentication Context Alice and Bob want to exchange messages, but they cannot distinguish their own messages from the ones Eve may have included into the communication channel. Also, they have the ability to share secrets in a secure way. Problem How can genuine messages be ....

....to distribute or make public keys broadly available is necessary. ffl Verifying the authorship of a message is based solely on the secrecy of the author s private key. Example Digital signatures are used in electronic commerce applications in the authentication of customers and merchants [AJSW97, HY97] Also, they could be used to guarantee the authenticity of information obtained over the Internet [HN98] 2.6 Secrecy with Authentication Context Alice and Bob use public key cryptography to exchange encrypted messages. Eve may intercept messages, but she cannot read their contents. ....

[Article contains additional citation context not shown here]

N. Asokan, Philippe A. Janson, Michael Steiner, and Michael Waidner. The State of the Art in Electronic Payment Systems. IEEE Computer, pages 28--35, September 1997.

....the Secure Transaction Technology (STT) by Microsoft and VISA. All these ancestors were proposed independently of each other but use similar forms of cryptographic protocols. From 1994 to 1996 an almost countless number of payment protocols for all kinds of payment models were pro posed (see [6] for a survey) One important difference be tween iKP and most of these proposals is that iKP was not just a paper design: The Zurich iKP Prototype (Z P) is a fully operational prototype of 2KP and 3KP. Although it did not become a commercial product, ZiP has been successfully deployed in a ....

....solution. Most types of payment systems, not just credit and debit cards, exist in the digital world. Typically each model requires its own type of protocols, i.e. one cannot expect that iKP can be applied to payment models that are very dif ferent to the credit card model. We refer to [6] for a survey of other account based payment models and protocols. Payment System Provider I issue r . C e a r i n g . Acquirer I Fig. 1. Payment l Seller I Generic model of a payment system III. iKP PAYMENT MODEL PARTIES. All iKP protocols are based on the existing ....

N. Asokan, Phil Janson, Michael Steiner, and Michael Waidner, "State of the art in electronic payment systems," IEEE Computer, vol. 30, no. 9, pp. 28-35, Sept. 1997.

....be restricted to these scenarios. It should be easily configurable and extendible to a broad range of different scenarios. 1. 2 What is New in SEMPER SEMPER is the first project that aims at the complete picture of secure electronic commerce, not just specific pieces (e.g. electronic payments [AJSW97]) specific scenarios (e.g. electronic on line purchases) or specific products and protocols. The relationship of selected electronic commerce projects 2 to SEMPER is explained in Section 5. SEMPER provides an open framework for electronic commerce. This includes a legal framework [Baum99; ....

Asokan, N.; Janson, P.; Steiner, M.; Waidner, M.: The State of the Art in Electronic Payment Systems. In: IEEE Computer 30/9 (1997) 28-35.

No context found.

Asokan N., Janson P., Steiner M. and Waidner M. The State of the Art in Electronic Payment Systems. IEEE Computer Magazine, 30(9):28--35, September 1997.

No context found.

N. Asokan, P. A. Janson, M. Steiner, and M. Waidner. The state of the art in electronic payment systems. Computer, 30(9), Sept. 1997.

No context found.

N. Asokan et al., State of the art in electronic payment systems, IEEE Computer Magazine 30(9), September 1997

No context found.

N. Asokan, P. A. Janson, M. Steiner, and M. Waidner. The state of the art in electronic payment systems. Computer, 30(9):28-35, September 1997.

No context found.

N. Asokan, P.A. Janson, M. Steiner, and M. Waidner, "The State of the Art in Electronic Payment Systems," IEEE Computer, Vol. 30, No. 9, September 1997, pp. 28-35.

No context found.

N. Asokan, Phil A Janson, Michael Steiner, Michael Waidner, "State of the Art in Electronic Payment Systems" IEEE Computer, volume 30, no 9, pp. 28-35, 1997.

Online articles have much greater impact   More about CiteSeer.IST   Add search form to your site   Submit documents   Feedback  

CiteSeer.IST - Copyright Penn State and NEC