Design and Implementation of SET - Enabled E - Commerce System

Abstract

This study presents the design and implementation of a business to consumer e-commerce system that provides the basic e-commerce security requirements including confidentiality, integrity, non-repudiation, replay protection and the most important entity authentication. The above security features are obtained by adopting the Secure Electronic Transaction (SET) Protocol as being the emerging e-payment security standard. The security of the protocol is further enhanced using some of the most powerful cryptographic algorithms such as the Advanced Encryption Standard (AES) algorithm, the RSA-OAEP encoding, SHA-1 hashing and HMAC authentication functions. The system is based on the modular Three Tier client\server architecture and guarantees portability across any hardware and software platform. This feature is basically provided by the cross-platform capability feature of the Java language. Indeed, Java Servlet technology gives the system the very important multithreading feature. MySQL database along with the HTML language were also used for system implementation. The system had been successfully installed and tested. Experimentally, our system was found to be of a high security level, flexible, portable, robust, and a relatively good performance.