Presentation is loading. Please wait.

Presentation is loading. Please wait.

1 Design, Implementation and Deployment of the iKP Secure Electronic Payment System Mihir Bellare, Juan A. Garay et al. “ … At this day and age it is hardly.

Published byJoanna Miles Modified over 8 years ago

Similar presentations

Presentation on theme: "1 Design, Implementation and Deployment of the iKP Secure Electronic Payment System Mihir Bellare, Juan A. Garay et al. “ … At this day and age it is hardly."— Presentation transcript:

1 1 Design, Implementation and Deployment of the iKP Secure Electronic Payment System Mihir Bellare, Juan A. Garay et al. “ … At this day and age it is hardly necessary to justify, or stress the importance of electronic commerce… Indeed, the appeal of electronic commerce without electronic payment is limited. Moreover, insecure electronic payment methods are more likely to impede, than to promote, electronic commerce… ” Reviewer Qiang Dong

2 2 Outline Introduction Overview of e-commerce and the i- key protocol (iKP) Implementation of iKP Conclusion Questions

3 3 Introduction Many secure electronic payment systems are being developed, including  SEPP (Secure Electronic Payment Protocol) by IBM and Europay  iKP (I-Key-Protocol) by IBM later incorporated into SEPP  STT (Secure Transaction Technology) by Microsoft and Visa  SET (Secure Electronic Payment) by Visa/MasterCard is the current secure payment system standard All e-payment systems depend on algorithms for encryption and authentication  Most systems use RSA (Rivest-Shamir-Adleman)  Secret key, Public Key and Hash Function

4 4 Overview of iKP What is iKP?  A secure electronic payment protocol with i keys (i = 1, 2, 3)  Developed in 1995 at IBM Research Lab  It implements credit-card based transaction  iKP can be implemented by Hardware or Software Why it is important?  Security : Based on Public Key Cryptography  Simplicity : Based on existing financial network  Flexibility : Easy to extend to other account-based payment models  Efficiency : Lower the computational cost by using Hash function  SET still retain many of the iKP-esque features

5 5 Overview of E-Commerce Payment Model Parties in general credit- card payment system  Buyer  Seller  Acquirer  Issuer Parties in iKP  Buyer  Seller  Acquirer

6 6 Overview of iKP Family 1KP –Acquirer possess a public key-pair. This only need a minimal PKI to provide certificates for a small number of acquirers (PKI only cover the Acquirer) –Buyers are authenticated on the basis of their credit-card numbers and optional secret PINs –1KP doesn’t offer non-repudiation for messages sent by buyers and Sellers. Why?

7 7 Overview of iKP Family 2KP –In addition to the Acquirer, the Seller holds public-key pair and certificates, thus achieving non-repudiation for massages originated by Sellers –By checking the certificate, Buyers know they are dealing with the bona fide Sellers –2KP requires that PKI cover Acquirers and Sellers

8 8 Overview of iKP Family 3KP –Further more, Buyers hold public-key-pair and certificates, thus achieving non-repudiation for all parties involved in 3KP –Payment authenticated by combination of credit-card number, optional PIN and digital signature of Buyer –3KP requires that PKI cover all the parties involved

9 9 Implementation Of iKP Security Requirements

10 10 Implementation Of iKP It’s Not Just a Paper Design! 1996: Spain Europay and IBM built a small scale system for trial, based on Zip-3KP. 1996: InterPay Nederland and Dutch banks offer e-commerce to 80 on-line merchants and 17000 users based on Zip-3KP. 1997: Japan EMP (Electronic Market Place) offers e-commerce to 5 on-line merchants and 2000 users.

11 11 Conclusion iKP makes an important step towards the current standard of secure payment system- SET. It had several operational prototypes which works well This paper is well written and not hard to understand. For a beginner in this field it is a good tutorial because of the simplicity and modularity of iKP

12 12 Questions Why these protocols like iKP and SET were implemented by software, not hardware? Thank You All

Download ppt "1 Design, Implementation and Deployment of the iKP Secure Electronic Payment System Mihir Bellare, Juan A. Garay et al. “ … At this day and age it is hardly."

Similar presentations

Public Key Infrastructure and Applications

Public Key Infrastructure and Applications
Internet payment systems

Internet payment systems
Chapter 6 E-commerce Payment Systems. Traditional Payment Systems Cash Checking Transfers Credit Card Accounts Stored Value Accounts Accumulating Balance.

Chapter 6 E-commerce Payment Systems. Traditional Payment Systems Cash Checking Transfers Credit Card Accounts Stored Value Accounts Accumulating Balance.
Grid Computing, B. Wilkinson, 20045a.1 Security Continued.

Grid Computing, B. Wilkinson, 20045a.1 Security Continued.
SSL : An Overview Bruhadeshwar Bezawada International Institute of Information Technology, Hyderabad.

SSL : An Overview Bruhadeshwar Bezawada International Institute of Information Technology, Hyderabad.
SECURITY IN E-COMMERCE VARNA FREE UNIVERSITY Prof. Teodora Bakardjieva.

SECURITY IN E-COMMERCE VARNA FREE UNIVERSITY Prof. Teodora Bakardjieva.
Electronic Payment Systems Speaker: Jerry Gao Ph.D. San Jose State University URL: May,

Electronic Payment Systems Speaker: Jerry Gao Ph.D. San Jose State University URL: May,
Understanding Networked Applications: A First Course Chapter 14 by David G. Messerschmitt.

Understanding Networked Applications: A First Course Chapter 14 by David G. Messerschmitt.
1 Pertemuan 12 Authentication, Encryption, Digital Payments, and Digital Money Matakuliah: M0284/Teknologi & Infrastruktur E-Business Tahun: 2005 Versi:

1 Pertemuan 12 Authentication, Encryption, Digital Payments, and Digital Money Matakuliah: M0284/Teknologi & Infrastruktur E-Business Tahun: 2005 Versi:
Chapter 13 Paying Via The Net. Agenda Digital Payment Requirements Fraud Detection Online Payment Methods Online Payment Types The Future Payment.

Chapter 13 Paying Via The Net. Agenda Digital Payment Requirements Fraud Detection Online Payment Methods Online Payment Types The Future Payment.
Electronic Transaction Security (E-Commerce)

Electronic Transaction Security (E-Commerce)
FIT3105 Smart card based authentication and identity management Lecture 4.

FIT3105 Smart card based authentication and identity management Lecture 4.
Public-key Cryptography Montclair State University CMPT 109 J.W. Benham Spring, 1998.

Public-key Cryptography Montclair State University CMPT 109 J.W. Benham Spring, 1998.
Micro-Payment Protocols and Systems Speaker: Jerry Gao Ph.D. San Jose State University URL:

Micro-Payment Protocols and Systems Speaker: Jerry Gao Ph.D. San Jose State University URL:
Electronic Check Payment Protocols and Systems

Electronic Check Payment Protocols and Systems
Information Security. Information Security Requirements Confidentiality: Protection from disclosure to unauthorised persons Access control: Unauthorised.

Information Security. Information Security Requirements Confidentiality: Protection from disclosure to unauthorised persons Access control: Unauthorised.
© Julia Wilk (FHÖV NRW) 1 Digital Signatures. © Julia Wilk (FHÖV NRW)2 Structure 1. Introduction 2. Basics 3. Elements of digital signatures 4. Realisation.

© Julia Wilk (FHÖV NRW) 1 Digital Signatures. © Julia Wilk (FHÖV NRW)2 Structure 1. Introduction 2. Basics 3. Elements of digital signatures 4. Realisation.
IKP Secure Electronic Payment System Presented by Jinping Li.

IKP Secure Electronic Payment System Presented by Jinping Li.
Chapter 3 Mohammad Fozlul Haque Bhuiyan Assistant Professor CITI Jahangirnagar University.

Chapter 3 Mohammad Fozlul Haque Bhuiyan Assistant Professor CITI Jahangirnagar University.
Supporting Technologies III: Security 11/16 Lecture Notes.

Supporting Technologies III: Security 11/16 Lecture Notes.

Similar presentations

Ads by Google