| With the rapid development of Internet. computer and network have become increasingly important in people’s daily life. The businesses carried out by computer& network have become increasingly diverse, one of which is E-commerce. E-commerce is based on the implementation of the open Internet, because of its high efficiency, low cost advantages has brought new opportunities for the development of enterprises and gradually become a new business model, it will become the main form business activities of the information society in the future. On the Internet, every user is faced with various threats of insecurity, and E-commerce also involves a lot of private personal information, hence safety assurance is particularly important.However, due to its basis on an open and free Internet, the weak security of E-commerce has become a serious problem, which affects greatly the-development of E-commerce. Accordingly, in order to develop the E-commerce, it is greatly demanding to solve the security problem, and guarantee the security, integrality, availability, authenticity and undeniablness of E-commerce. Electronic payment is the most core and the most essential link of electronic commerce, is the foundation condition which electronic commerce can carry on smoothly. Because the electronic payment needs to carry on in the open network, therefore sensitive information in payment process needs some mechanism to guarantee its security and electronic payment protocol is one of the key technologies to ensure its security. Secure electronic transaction SET protocol is proposed by the United States Visa and MasterCard. It is designed to solve the purpose of security transactions between users, businesses and banks, to ensure confidentiality and integrity of information, to ensure the identity of the customer and business certification.This paper analyzes the basic concepts, the security infrastructure and payment system of electronic commerce, makes a thorough and comprehensive research on the security technology, authentication and transation process, points out some deficiencies in SET protocol. In view of the problem that the security of the protocol is not strong and the expansibility is low, the strategy of the electronic wallet is put forward, the scheme divides the original client into the electronic wallet client and the electronic wallet server by transferring the core from the client to the issuing bank or the third party financial institutions to enhance the convenience and security of transactions, making it more extended. Then proposed a secure E-commerce payment system based on the four parties that can not only support the goods atomicity and certified delivery, but also acess the key electronic evidence automatically and deal with the transaction disputes. The agreement includes master agreement, customer return agreement, customer exchange agreement with the customer and the merchant transaction disputes processing protocol, the process of each sub protocol is described in detail. In the end, in allusion to the complexity,slow-speed and high-cost of SET protocol, the author proposes an architecture model of security control, customers can choose a different level of security operations based on the actual needs and thoroughly analyzes its working principle and realization. |
PDF Full Text Request