Secure e-commerce transactions, modeling and implementation aspects

The requirement for secure e-commerce transactions arises due to the potentially hostile execution environment where not only hardware can fail, but also the messages are subject to attacks by intruders, and some parties may suffer from negligent or even malicious behaviors of some other parties. Most of the existing work paid attention only to message security. In this paper, we propose a secure e-commerce transaction model. We focus our attention on modeling the security aspects at the transaction level, and discuss the properties an e-commerce transaction protocol must have in order to support the semantics of the transactions. The semantics we use is based in the first instance on the notion of atomicity proposed in [13], and then extended to a broader context where the behaviors of untrustworthy players are taken into consideration.