Keywords: Secure auction architecture, secure coprocessor.

Abstract: Increasing numbers of economic transactions are conducted through on-line auctions. Nevertheless, most current auction implementations fail to address important security concerns. In particular, most auction systems force buyers and sellers to trust the auctioneer; alternative secure systems are inflexible and have a high computational and/or communication overhead. To overcome these limitations, we propose a secure auction marketplace (SAM) architecture, based on the recently available tool of high-performance, programmable secure coprocessors. Unlike previous schemes, this approach provides a general framework that can incorporate arbitrary auction schemes by using different evaluation programs, as well as provide complex security properties by using the secure coprocessor and our auction protocols. Our approach features strong security guarantees for the buyers and sellers without trusting the auctioneer, precise definition of the information disclosed during and after the auction, and high flexibility to adapt to new types of auctions.

Keywords: web-pages,personalization technologies,Data Mining

Abstract: Tailoring web-pages to different user characteristics such as location, preferences and previous history (page-hits, products bought) have been shown to be effective tools for personalizing web-content. In this paper, we briefly summarize the techniques in these state-of-the-art personalization technologies. We first describe personalization using user preferences or history and then describe personalization based on user\'s current location. Whereas the former is applicable for deployment in web-sites, the latter is useful in providing location-based content to mobile users and wireless applications.

Keywords: Internet commerce ,privacy, security, and commerce

Abstract: In order to examine the emerging market for privacy-enhancing service in Internet commerce it is critical to examine the relationship between privacy, security, and commerce. In order to function, a privacy-protecting technology must have a coherent trust model, a sustainable business plan, and a solid design for security. Yet, the sustainability of business plans can vary across regulatory regimes and concepts of privacy vary between cultures. Furthermore, privacy can be understood as a right of property, autonomy or seclusion. This paper presents a new framework to assess the suitability and effectiveness of business approaches to privacy and tests it analyzing six well-known systems: Zero Knowledge, Incogno SafeZone, Privada Control, iPrivacy, Passport, and the Anonymizer. We have specifically chosen not to examine smart-card based approaches, such as the American Express Blue. Each system is examined based on its underlying conception of privacy (seclusion, autonomy, property); ACID characteristics (atomicity, consistency, isolation and durability); general business plan; consumer switching cost; availability or openness of software; usability and accessibility. This paper argues that these elements together illustrate the economic, privacy, and security implications of any one system. The analyzes can encompass the context generated by bias and ontology in the solution and the way in which -by the interaction of its technological and business dimensions- it creates realities, rule-setting and reaches minimum standards of integrity, nonrepudiation, confidentiality, reliability, authentication and security in their search for privacy. This work presents the framework, apply it to well-known systems, and offers the results not only as an examination of the privacy-enhancing commerce systems themselves, but also as an implicit commentary on the value of the framework developed.

Keywords: E-commerce,E-commerce,cryptography,Public Key Infrastructure

Abstract: According to recent surveys, one of the most severe restraining factors for the proliferation of E-commerce is the (lack of) security measures required to assure both businesses and customers that their business relationship and transactions will be carried out in priv acy, correctly, and timely. Several aspects of these requirements can be secured by means of cryptography, in particular public key cryptography. This paper first considers security requirements for E-commerce applications, then discusses the workings of t he Public Key Infrastructure and, finally, highlights its role in developing secure, hence trustworthy, E-commerce applications.