摘要
安全问题是关系到电子商务服务是否能够广泛开展的重要因素。一个安全电子支付系统需要特殊的安全机制。目前,在电子商务中使用的安全协议主要有两种,即SSL协议和SET协议。SSL协议是免费的,但是它有重大缺陷。SET协议要安全许多,然而却非常昂贵,且现有的实现缺乏灵活性。SSL协议的实现版本openssl里附带有一个非常完备的加密函数库和一整套的使用和管理CA数字证书的方法。主要讨论如何在SSL协议的基础上利用openssl开发包和组件技术来实现SET协议功能,并提高SET协议使用的灵活性。
Security is an important factor for the wide acceptance of the electronic commerce services. Special security mechanisms are needed for the implementation of secure electronic payment systems. Now, there are mainly two protocols used in the electronic commerce. One is SSL protocol, the other is SET protocol. SSL is free but it has a fatal shortcoming. SET protocol is much safer but it is very expensive and the implementations are lack of flexibility. Openssl has a very good package of cryptography functions, and it has a complete way of using and manipulating the CA certificates. This article mainly discusses the way to implement SET protocol based on SSL protocol using openssl and the way to improve its flexibility.
出处
《计算机工程与设计》
CSCD
2003年第9期80-83,96,共5页
Computer Engineering and Design
