Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Security-Basics
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Proving non-repudiation in e-Commerce App

from [Joe] Network Security [Permanent Link]
Subject: Proving non-repudiation in e-Commerce App
Date: Thu, 1 Jun 2006 20:32:16 +0200 
Dear List-Members

I'm currently dealing with a review of an e-Commerce Application. One
goal is to prove that this application properly implements a
non-repudiation mechanism throughout the whole process-flow. This flow
starts at the user authentication, communication over the web to the
server component, then processing of the client requests and finally
logging.

The non-repudiation has similarities with e-Banking which points me to
the following keywords: digital signature, signed logging and time
stamp protocols. Using Google I also found various sources discussing
most of those points individually. However I'm looking for a more
general, broad and complete approach.

Do you guys have interesting sources and experiences about verifying
non-repudiation? Are there standards, defined processes, work-flows,
and implementation- or audit guidelines?

Thanks for your feedback
Joe

[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: Security Tips, Alexander Bolante
Next by Date:  RE: How can I track this down?, Roger A. Grimes
Previous by Thread:  How can I track this down?, Nick Duda
Next by Thread:  RE: Proving non-repudiation in e-Commerce App, Craig Wright
Indexes:  [Date] [Thread] [Top] [All Lists]