| With the development of the information technology, e-commerce’s and other emergingindustries’ scale has growed a lot, these company is mainly transmitted a huge amount oftrading information through the Internet. If criminals exploit these transactioninformation,it will lead to a great loss. Therefore, in recent years, people pay more and moreattention on the problem of safety communication between electronic commerce website andcustomers through Internet. SSL (Secure Sockets Layer) protocol is widely used in electroniccommerce system which has achieved three goals of network information security: confidentialinformation, authentication and message integrity.However, there are still some problems in the electronic commerce system whose securityonly rely on the SSL protocol, the main problem is that SSL protocol can’t guaranteethe trading detail of e-commerce transactions after the trade. The transactions security mainly relyon the reputation of the company. However, more and more small company will appear in thee-commerce market before long, this problem will become more prominent. The main problemwill be discussed in this paper by analysis the e-commerce system which used SSL securityprotocol.The paper put forward a design transaction authentication system which makes up forthe defects that electronic commerce system can’t restore the details of the transaction afterthe trading.The paper study on the security requirements of electronic Commerce networkcommunication, discuss SSL protocol from the principle and function perspectives and investigateadvantage of using SSL in the electronic commerce system. Based on these research it create anelectronic commerce website under SSL protocol by use Java language, J2EE framework,andMysql database.The transaction authentication system is used to realize the security of the trade. Therefore,when design the transaction authentication system, it is needed to consider the privacy ofcustomer’s transaction content and the possibility of being attacked by hackers. This paper protectdata by encryption. There are two ways to build the transaction authentication system:(1)The first design idea is making a transaction certificate which customer can get fromtransaction authentication system after trading. The transaction certificate is used to restore thetransaction details. The demand of date security is met by classic RSA encryption algorithm’s andMD5hash algorithm’s protection.(2)The second design ideas is similar to the first. due to the large consumption of RSAencryption algorithm used in the system and low safety when using the MD5algorithm alone, sothis paper do some study for of MD5algorithm, make some improvement of security byrandomize the number of encryption, change the initialized number in MD5algorithm and fetchdate features before encryption. Based on this research, the electronic commerce system can useMD5algorithm alone in date protection. |
PDF Full Text Request