Presentation is loading. Please wait.

Presentation is loading. Please wait.

E-Profile-based Security for Critical Transactions in Web Applications Written by: Jean Stephan et al., 2009 Reported by: Renato Casipe, 2/15/2010.

Published by Modified over 8 years ago

Similar presentations

Presentation on theme: "E-Profile-based Security for Critical Transactions in Web Applications Written by: Jean Stephan et al., 2009 Reported by: Renato Casipe, 2/15/2010."— Presentation transcript:

1 E-Profile-based Security for Critical Transactions in Web Applications Written by: Jean Stephan et al., 2009 Reported by: Renato Casipe, 2/15/2010

2 Dominant Web development drivers Reliability –Applications that work well do not crash, and do not provide incorrect data. Usability –“the extent to which a product can be used by specified users to achieve specified goals with effectiveness, efficiency and satisfaction in a specified context of use”. Security –Applications that handle customer data and other information safely, so that problems such as financial loss, legal consequences, and loss of credibility can be avoided.

3 Goal of the Paper The goal of this paper is to propose a security framework which depends on the collaboration of ecommerce stakeholders in order to build an infrastructure that provides confidence and security while respecting the privacy of individuals at the same time.

4 The Model “The main thrust of our model is assessing the profile of a user and determining the confidence level which can be entrusted in the user. The overall framework of our model consists of two main components: User profile development and confidence determination and decision making.

5 Process Flow Legend User Profile Development: R = f (S1, S2, S3, S4, P, F, G)

6 Process Flow Legend Confidence Coefficient: C = f (T, R, K)…

7 Process Flow of Distributed Model User Profile Development: R = f (S1, S2, S3, S4, P, F, G) Confidence Coefficient: C = f (T, R, K)…Depending on the outcome of C, the vendor may decide to allow or decline the transaction. Profile Builder -> Rating Agent -> Confidence Determiner -> Vendor Decision

8 Authors Conclusion Preserves privacy by centralizing the access to user profiles and acquiring a rating through a profile assessment service. Identity Management is no longer based on static data. Instead, the user’s profile is a dynamic entity which evolves with time and matures based on the user’s behavior, experience, and/or interventions. E-commerce websites will be able to set their own security rules to manage critical transactions and clarify their filtering schema. Collaboration of different stakeholders will provide a rich added value towards a more trustworthy Internet-based economy.

Download ppt "E-Profile-based Security for Critical Transactions in Web Applications Written by: Jean Stephan et al., 2009 Reported by: Renato Casipe, 2/15/2010."

Similar presentations

FINANCIAL AUDIT METHODOLOGY PETER CARLILL UK NATIONAL AUDIT OFFICE.

FINANCIAL AUDIT METHODOLOGY PETER CARLILL UK NATIONAL AUDIT OFFICE.
P RIVACY, T RUST, AND R EPUTATION Jose Miguel Such July 27th, 2011.

P RIVACY, T RUST, AND R EPUTATION Jose Miguel Such July 27th, 2011.
Secure Communication Architectures.

Secure Communication Architectures.
Supply Chain Management

Supply Chain Management
PAPERLESS BUSINESS in GEORGIAN FINANCIAL SECTOR NANA ENUKIDZE - Advisor to the Governor.

PAPERLESS BUSINESS in GEORGIAN FINANCIAL SECTOR NANA ENUKIDZE - Advisor to the Governor.
1 Software Testing and Quality Assurance Lecture 33 – Software Quality Assurance.

1 Software Testing and Quality Assurance Lecture 33 – Software Quality Assurance.
Usability Evaluation Based on Web Design Perspective Paper Written by: Conte et. al., 2007 Reported by: Renato Casipe.

Usability Evaluation Based on Web Design Perspective Paper Written by: Conte et. al., 2007 Reported by: Renato Casipe.
June 11-13, 2003Michael Weiss, FIW 031 Feature Interactions in Web Services Michael Weiss Carleton University.

June 11-13, 2003Michael Weiss, FIW 031 Feature Interactions in Web Services Michael Weiss Carleton University.
Outline IS400: Development of Business Applications on the Internet Fall 2004 Instructor: Dr. Boris Jukic Web Applications for Business: Performance Issues.

Outline IS400: Development of Business Applications on the Internet Fall 2004 Instructor: Dr. Boris Jukic Web Applications for Business: Performance Issues.
Framework for Global Electronic Commerce Communications 411 Relevant Site: www.ecommerce.gov.

Framework for Global Electronic Commerce Communications 411 Relevant Site:
CSE 4482, 2009 Session 21 Personal Information Protection and Electronic Documents Act Payment Card Industry standard Web Trust Sys Trust.

CSE 4482, 2009 Session 21 Personal Information Protection and Electronic Documents Act Payment Card Industry standard Web Trust Sys Trust.
CEET Conference 2008 Is Quality Assurance Improving? Rob Fearnside, Deputy Director VRQA.

CEET Conference 2008 Is Quality Assurance Improving? Rob Fearnside, Deputy Director VRQA.
Company LOGO B2C E-commerce Web Site Quality: an Empirical Examination (Cao, et al) Article overview presented by: Karen Bray Emilie Martin Trung (John)

Company LOGO B2C E-commerce Web Site Quality: an Empirical Examination (Cao, et al) Article overview presented by: Karen Bray Emilie Martin Trung (John)
Net Trust Alla Genkina, Indiana University Allan Friedman, Harvard University Jean Camp, Indiana University TIPPI Workshop June 13, 2005.

Net Trust Alla Genkina, Indiana University Allan Friedman, Harvard University Jean Camp, Indiana University TIPPI Workshop June 13, 2005.
Chapter 2 Planning, Implementing, and Controlling Marketing Strategies.

Chapter 2 Planning, Implementing, and Controlling Marketing Strategies.
Cloud Usability Framework

Cloud Usability Framework
IT Security Readings A summary of Management's Role in Information Security in a Cyber Economy and The Myth of Secure Computing.

IT Security Readings A summary of Management's Role in Information Security in a Cyber Economy and The Myth of Secure Computing.
The Conceptual Framework and Objectives of Financial Reporting

The Conceptual Framework and Objectives of Financial Reporting
1 Chapter 11 Drivers of online-selling diffusion.

1 Chapter 11 Drivers of online-selling diffusion.
Introduction Challenges of Managing in a Network Economy.

Introduction Challenges of Managing in a Network Economy.

Similar presentations

Ads by Google