The KIPS Transactions:PartC (정보처리학회논문지C)

Korea Information Processing Society (한국정보처리학회)
권호 표지
DOI QR코드

DOI QR Code

Design and Implementation of the Payment System using One-time Credit Information

일회용 신용정보를 이용한 전자지불 시스템의 설계 및 구현

  • 신종철 (송우아이엔티(주) 기술연구소장) ;
  • 박종열 (광주과학기술원 대학원 정보통신공학과) ;
  • 이형효 (원광대학교 정보·전자상거래학부) ;
  • 이동익 (광주과학기술원 정보통신공학과) ;
  • 윤석환 (정보통신연구진흥원)
  • Published : 2002.06.01
Download PDF
⟨ Previous Next ⟩

Abstract

Recently, personal business styles have been rapidly changed into e-business due to the rapid progress and deployment of Internet. As a result of the change, new and safe ways of payment such as electronic wallet, electronic money and electronic check have been developed and introduced. In this paper a secure and user-friendly payment method is addressed. One of most important reasons why newly developed safe payment methods are not widely used in e-business is lack of convenience for the users. On the other hand credit card based payment, which is traditional one, is the most prevailing due to the user-friendliness. However this payment also has some problem in sense of security. In this paper, we design and implement a secure credit card-based payment system using one-time credit information. The main features are "payment information must be new", "can use the old credit system", and "do not require client software".

Keywords

References

  1. 통계청 서비스업 통계과, '전자상거래통계조사결과 (2002년 1월 사이버 쇼핑몰 조사-B2C),' http://www.nso.go.kr/report/data/suec0201.htm, 2002
  2. 신철균, '<열린마당> 전자결제 보안 구멍', 전자신문, 2001
  3. N. Asokan, Phillipe A., Janson, Michael Steiner and Michael Waidner, 'State of the Art in Electronic Payment Systems,' IEEE Computer, Vol.30, No.9, pp.28-35, 1997 https://doi.org/10.1109/2.612244
  4. Mondex, http://www.mondex.com/
  5. Proton, http://www.element.be/
  6. Visa cash, http://international.visa.com/
  7. eCash, http://www.ecashtechnologies.com/
  8. Milicent, http://www.milicent.digital.com/
  9. SET Secure Electronic Transaction LLC, http://www.setco.org/set_specification.html
  10. CyberCash, http://www.cybercash.com/
  11. L. H. Stein, E. A. Stefferud, N. S. Borenstein, and M. T. Rose, 'The green commerce model,' Technical report, First Virtual Holdings Incorporated, http://www.fv.com/tech/greenmodel.html, October, 1994
  12. Echecks, http://www.echeck.org/
  13. NetCheque, http://www.isi.edu/gost/info/NetCheque/
  14. http://www.cdcash.co.kr/index.asp
  15. Neil M Haller, 'The S/KEY One-Time Password System,' Proceedings of the ISOC Symposium on Network and Distributed System Security, San Diego, CA, February, 1994
  16. http://pgweb.dacom.co.kr/ECREDIT/
  17. R. L. Rivest, A. Sharmir, L. Adleman, 'A Method for Obtaining Digital Signatures and Public-Key Cryptosystems,' Communications of the ACM, Vol.21, No.2, pp.120-126, Feb., 1978 https://doi.org/10.1145/359340.359342
  18. http://www.rootca.or.kr
  19. http://www.ehanvit.co.kr/
  20. http://www.paypal.com/
  21. RSA Laboratories, 'PKCS #7 Cryptographic Message Syntax Standard Version 1.5,' Technical Note Version 1.5, Revised November, 1993
  22. Adams, Cain, Pinkas, Zuccherato, 'Internet X.509 Public Key Infra-structure, Time Stamp Protocol(TSP),' draft-ietf-pkix-time-stamp-12, Internet-Draft, 2000
  23. ISO/IEC JTC1/SC27 N2107, 'Guidelines on the use and management of Time Stamping Services(GUMTSS),' 1998
  24. C. Adams, P. Cain, D. Pinkas, R. Zuccherato, 'Internet X.509 Public Key Infrastructure Time-Stamp Protocol (TSP),' ftp://ftp.rfc-editor.org/in-notes/rfc3161.txt, August, 2001
  25. http://www.timestamp.co.kr/
  26. L. R. Knudsen, X. Lai, and B. Preneel, 'Attacks on fast double block length hash functions,' Journal of Cryptology, Vol. 11, No.1, pp.59-72, Winter, 1998 https://doi.org/10.1007/s001459900035
  27. Douglas R. Stinson, 'Cryptography theory and practice,' pp.233, CRC press, 1995