A flexible payment scheme and its user-role assignment

Wang, Hua and Zhang, Yanchun and Cao, Jinli (2002) A flexible payment scheme and its user-role assignment. In: 2nd International Workshop on Cooperative Internet Computing, 18-19 Aug 2002, Hong Kong.


A flexible payment scheme and its role-based user-role assignments are proposed in this paper. The scheme uses electronic cash for payment transactions. In this new protocol, from the viewpoint of banks, consumers can improve anonymity if they are worried about disclosure of their identities. A new role called anonymity provider agent (AP) provides a high anonymous certificate. The role AP certifies re-encrypted data after verifying the validity of the content from consumers, but with no private information of the consumers required. With this new method, each consumer can get a required anonymity level, depending on the available time, computation and cost.
There are two types of problems that may arise in user-role assignments. One is related to authorization granting process. Mutually exclusive roles may be granted to a user and the user may have or derive a high level of authority. Another is related to authorization revocation. When a role is revoked from a user, the user may still have the role from other roles. To solve these problems, we first analyze the duty separation constraints of the roles and role hierarchies in the scheme, then discuss granting a role to a user, weak revocation and strong revocation for the scheme.

Statistics for USQ ePrint 11112
Statistics for this ePrint Item
Item Type: Conference or Workshop Item (Commonwealth Reporting Category E) (Paper)
Refereed: Yes
Item Status: Live Archive
Additional Information: Chapter 7. Accepted version deposited in accordance with the copyright policy of the publisher. Electronic version of book available via USQ Library catalogue.
Faculty / Department / School: Historic - Faculty of Sciences - Department of Maths and Computing
Date Deposited: 30 Nov 2007 11:55
Last Modified: 09 Jul 2014 05:22
Uncontrolled Keywords: payment scheme; authorization; RBAC; AP agent
Fields of Research : 15 Commerce, Management, Tourism and Services > 1502 Banking, Finance and Investment > 150203 Financial Institutions (incl. Banking)
08 Information and Computing Sciences > 0806 Information Systems > 080608 Information Systems Development Methodologies
08 Information and Computing Sciences > 0803 Computer Software > 080303 Computer System Security
Socio-Economic Objective: B Economic Development > 90 Commercial Services and Tourism > 9001 Financial Services > 900101 Finance Services
URI: http://eprints.usq.edu.au/id/eprint/11112

Actions (login required)

View Item Archive Repository Staff Only