XML安全技術與相關規範是為了讓結構性XML文件有屬於自己的安全保護標準,促使XML標準更能安全地應用在電子商務上,利用XML安全技術來保護XML文件比傳統安全技術更能發揮XML本身的結構性與延展性。目前網站架構發展是以XML為基礎的網站服務導向,但是,如何應用XML安全技術來設計網站服務的安全機制甚少討論。以及其他XML為基礎的商務架構也不是應用XML安全技術來保護資訊,所以,我們在此整合W3C組織公佈的XML安全規範,應用XML安全技術作為網站服務環境之安全保護,建立一個XML為基礎的安全通訊架構XMLSeF,並依據XML安全的標準規範,制定安全交易授權書,XMLSeF架構是個集中授權的環境,使用者只要向網站服務安全提供者取得安全授權書,就可以與眾多合作網站進行交易,並且可以與其他網站服務安全提供者轉換安全授權書,到另一個網路聯盟進行交易。 研究實作方面,以XMLSeF架構為基礎實作具有「電子錢幣保護」與「電子錢幣付款系統之間溝通能力」的電子付款系統雛型-XMLSePay系統,提供電子錢幣便利流通環境的建置參考,希望為線上電子錢幣付款系統提供目前電子現金流通困境的解決方法。最後再提出旅遊行程規劃與電子交易網兩個XMLSeF架構應用劇本,映證XMLSeF架構的實用性與可行性,以及XMLSeF架構可以為網站聯盟提供一個具有安全交易的網站服務互動環境。 最終說明XMLSeF架構的五個主要特性:便利性、開放性、發展性、相容性、安全性,讓大眾更瞭解XML安全技術為XMLSeF架構所帶來的優勢。 Many organizations have instituted XML security technology and specification to protect the XML documents or files. That is to prompt XML standard to securely apply to E-Commerce. Using XML security technology to protect XML documents is better than traditional security information technology. Because XML security technology can retain structure and expansibility of XML documents. And now the development of Web-based framework is trending to XML-based Web Service. But there is less discussion or survey to introduce how to use XML security technology to build security model of Web Service. And many XML-based E-Commerce framework don’t use XML security technology to protect XML information. The result is that we integrate the XML security Specification that is published by W3C.org. Applying XML security technology to protect the Web Service environment and build a XML-based framework, XMLSeF, to support security communication between Web sites. According to XML Security specification to build Security Transactions Authorization. XMLSeF framework is a centralized authorized environment and users only need to get a Security Transactions Authorization from Web Service Security Provider. Then this user can proceed transactions with many Web sites. In the research implementation, we build an e-payment system model in accordance with XMLSeF framework. This e-payment system can protect e-cash and have an ability to transfer e-cash between the different e-payment systems. Its name-XMLSePay. XMLSePay can be a reference resource to support e-payment system and XMLSePay be a resolution for the convenient using of e-cash. Finally, introduce the five characteristic of XMLSeF framework: Convenience, Opening, Expansibility, Compatibility, Security.