Abstract | ||
---|---|---|
The increasing number of linkable vendor-operated databases present unique threats to customer privacy and security intrusions, as personal information communicated in online transactions can be misused by the vendor. Existing privacy enhancing technologies fail in the event of a vendor operating against their stated privacy policy, leading to loss of customer privacy and security. Anonymity may not be applicable when transactions require identification of participants. We propose a service-oriented technically enforceable system that preserves privacy and security for customers transacting with untrusted online vendors. The system extends to support protection of customer privacy when multiple vendors interact in composite web services. A semi-trusted processor is introduced for safe execution of sensitive customer information in a protected environment and provides accountability in the case of disputed transactions. |
Year | DOI | Venue |
---|---|---|
2005 | 10.1007/0-387-25660-1_2 | International Federation for Information Processing |
Keywords | Field | DocType |
electronic commerce,privacy,security,web services | Internet privacy,Computer science,Privacy policy,Vendor,Personally identifiable information,Web application security,Privacy-enhancing technologies,Web service,Information privacy,WS-Policy | Conference |
Volume | ISSN | Citations |
181 | 1571-5736 | 7 |
PageRank | References | Authors |
0.61 | 11 | 3 |
Name | Order | Citations | PageRank |
---|---|---|---|
Craig Pearce | 1 | 7 | 0.61 |
Peter Bertók | 2 | 158 | 35.62 |
Ron G. van Schyndel | 3 | 255 | 263.17 |