摘要
提出了一种基于RBAC思想对可信第三方功能进行分类并结合其他一些技术实现电子商务中匿名性与可追究性的解决方案,主要涉及三个主要过程:用户的注册控制、交易过程的控制及投诉处理过程。通过对注册用户的信息进行加密并对加密密钥进行分割保存来实现匿名性,通过对交易过程安全协议的设计及TTP功能的划分达到可追究性要求,并对可追究性的实现给予证明。
A resolution for anonymity and accountability requirement in E-commerce is proposed which bases on the thought of BRAC and implicates some other skills. There are three main processes., user's registration, process of trade, and the resolution of complaint. Anonymity of this solution is realized by encryption of the private information of user and the way to save the key in which the key is divided and saved in different places, Accountability is realized by the design of secure protocol and the division of power of the TTP, and the provision of accountability is also given.
出处
《计算机科学》
CSCD
北大核心
2007年第7期86-89,共4页
Computer Science
基金
北京市自然科学基金(批准号:4052016)
国家自然科学基金(批准号:60573042)
国家重点基础研究发展规划(973)(批准号:G1999035802)
