Title :
Multi-layer and Multi-aspect Design of CA System Security
Author :
Lan Li-na ; Liu Xin-yue ; Yang Tao-hai
Author_Institution :
Sch. of Network Educ., Beijing Univ. of Posts & Telecommun., Beijing, China
Abstract :
Security of CA system is a critical component which influences the security in E-Commerce. This paper analyzes the network architecture of CA system, and presents multi-layer and multi-aspect security architecture of CA system. This security design focuses on the network layer and application layer. Firewalls divide CA system network into different security grade areas. The following methods are employed in the application layer for security protects: add the sender time stamp in the packets to prevent repeat packets attack; clear to 0 in memory and save as encrypted data in the database for the important data to prevent invalid reading; use central monitor system. The design is employed in a real CA system successfully.
Keywords :
electronic commerce; security; CA system security; E-commerce; certificate authority; multiaspect design; multilayer design; Access control; Application software; Cryptography; Data security; Databases; Information security; Network servers; Power system security; Protection; Web server; CA(Certificate Authority) system; application layer security; firewall; network layer security; time stamp;
Conference_Titel :
Information Engineering, 2009. ICIE '09. WASE International Conference on
Conference_Location :
Taiyuan, Chanxi
Print_ISBN :
978-0-7695-3679-8
DOI :
10.1109/ICIE.2009.140
