A framework towards enhancing trust and authorisation for e-commerce service

George S. Oreku, Jianzhong Li, Fredrick J. Mtenzi

Research output: Contribution to journalArticlepeer-review

1 Citation (Scopus)

Abstract

Traditional access control a.k.a. authorisation for e-commerce systems is not flexible and efficient enough to combat the new emerging security challenges and public remains concerned about the security of online transactions as can be seen from http://www.security-survey.gov.uk. Challenges like changes in consumer's behaviour, advances in broadband technology, industrial maturity and entropy converging to usher in a new era of e-commerce security. The authors' proposed framework provides trust transformation rules which have associated conditions for authorisations to control access. The introduction of trust method formalises the conditions within logical perspective. The authors aim to build the architecture and trust model for trust and authorisation within an e-commerce service system. The architecture will help to build a secure e-commerce service system. The underlying framework will not only inform researchers of a better design for secure e-commerce service, but also assist e-commerce systems developers in the understanding of intricate constructions within trust and authorisation. This includes protecting transactions records of customers in terms of information privacy and access. The authors also propose rigorous logical foundation for trust and authorisation in e-commerce service environments based on ABLP.

Original languageEnglish
Pages (from-to)173-202
Number of pages30
JournalInternational Journal of Internet Technology and Secured Transactions
Volume1
Issue number3-4
DOIs
Publication statusPublished - 2009
Externally publishedYes

Keywords

  • Access control logic
  • Authorisations
  • E-commerce services
  • Intermediates

Fingerprint

Dive into the research topics of 'A framework towards enhancing trust and authorisation for e-commerce service'. Together they form a unique fingerprint.

Cite this