博碩士論文 93423014 詳細資訊

姓名 高志中(Chih-Chung Kao)  查詢紙本館藏   畢業系所 資訊管理學系
論文名稱 以DR Signature配合隨機式RSA部分盲簽章所建構之數位內容多受款者付款機制
(Using DR-Signature and Randomized RSA-Based Partially Blind Signature to Design a Digital Content Payment Scheme for Multiple Payees)
檔案 [檢視]  [下載]
  1. 本電子論文使用權限為同意立即開放。
  2. 已達開放權限電子全文僅授權使用者為學術研究之目的,進行個人非營利性質之檢索、閱讀、列印。
  3. 請遵守中華民國著作權法之相關規定,切勿任意重製、散佈、改作、轉貼、播送,以免觸法。

摘要(中) 隨著寬頻網路逐漸普及、全球數位內容產值持續攀升等因素下,未來線上交易市場規模可望大幅成長,要如何有效確保涉入交易行為各成員之權益不受損害,線上交易機制的完善與否具有決定性之影響。此外處於現今知識密集時代下,多位彼此擁有相關知識的個體,可集體創作數位內容產品進行販售,該產品交易後之收入應能即時正確地分配予各創作者及賣方,以期對創作者產生較高的激勵效果。基於上述,本研究欲設計兼具下列特性之線上交易機制:(1)確保交易公平性及交易隱私性、(2)防堵詐欺行為發生及(3)支援多受款者即時付款。
本研究以隨機式RSA部分盲簽章、可轉換簽章DR Signature及多重簽章概念等加解密技術為基礎,設計四階段之線上付款機制:(1)初始階段、(2)提取電子現金階段、(3)交易及分配款項階段及(4)TTP涉入階段。於「初始階段」中,系統成員須向TTP進行註冊、銀行須產生RSA公私鑰、數位內容產品所屬各受款者須製作款項分配協議;顧客透過「提取電子現金階段」及「交易及分配款項階段」完成交易行為;系統成員可藉由「TTP涉入階段」,請求TTP進行仲裁,以維護自身權益。藉由加解密技術配合交易流程設計,本付款機制能確保交易公平性及隱私性、對不法詐欺行為進行反制,以及可支援多受款者付款。
摘要(英) As the broadband internet is popularized and the output value of digital content continues increasing, the market of online transaction is expected to grow dramatically in the future. How to assure rights and interests of participants don’t be damaged when they make online transaction? The dependable online payment scheme is the critical factor. Meanwhile, under the knowledge-intensive era, a digital content can be created by several individuals who have interrelated knowledge. The selling revenue of the digital content should be correctly assigned to each payee (authors and merchants) in real time, so that creators may have stronger motivation to create more digital content. Base on the above-mentioned, the purpose of this paper is to design an online payment scheme which has three features, include (1) assuring the payment security and transaction privacy, (2) preventing frauds from being made, and (3) supporting multiple payees payment.
In this paper, we combine the concepts of randomized RSA partially blind signature, DR-signature (a kind of convertible signature), and multi-signature, to propose a four phase online payment scheme, include (1) initializing phase, (2) withdrawing phase, (3) purchasing phase, and (4) requesting phase. In the initializing phase, all members (customers, merchants, and authors) register to the third trust party (TTP), bank needs to generate RSA-based private/public keys, and all payees belong to one digital content should make a multi-signature of a proportion of apportionment (PROPp_id). Customers, merchants, bank, and TTP complete an online transaction in withdrawing phase and purchasing phase. If someone finds his rights is damaged, he can request TTP to arbitrate to safeguard himself in the requesting phase. Base on cryptographic skill and design of transaction process, our proposed payment scheme can assure payment security and transaction privacy, prevent frauds, and support multilateral payment.
關鍵字(中) ★ 多受款者
★ 線上付款
★ 隨機式部分盲簽章
關鍵字(英) ★ randomized partially blind signature
★ multiple payees
★ online payment
★ DR-signature
論文目次 第一章 緒論 1
1.1 研究背景 1
1.2 研究動機 3
1.3 研究目的 4
1.4 研究方法 5
1.5 論文架構 6
第二章 文獻探討 7
2.1 盲簽章技術 (Blind Signature) 7
2.2 可轉換簽章技術 (Convertible Signature) 12
2.3 多受款者付款機制 (Multiple Payee Payment) 16
2.4 小結 21
第三章 系統設計 22
3.1 系統假設 22
3.2 系統流程總覽 23
3.3 系統流程說明 25
一、 初始階段 25
二、 提取電子現金階段 29
三、 交易及分配款項階段 31
四、 TTP涉入階段 34
3.4 核心系統實作 37
第四章 系統評估 41
4.1 交易安全部分 41
4.2 詐欺行為部分 43
4.3 系統效能部分 46
第五章 結論與未來研究方向 50
5.1 結論 50
5.2 未來研究方向 52
參考文獻 54
中文參考文獻 54
英文參考文獻 55
參考文獻 中文參考文獻
1. 行政會經建會部門計畫處,「我國數位內容產業發展前景看好」,2005年11月。http://www.cepd.gov.tw/upload/News/941103NEWS@860665.4484272@.doc
2. 財團法人台灣網路資訊中心(TWNIC),「九十五年度台灣寬頻網路使用狀況調查」,2006年1月。http://www.twnic.net.tw/download/200307/200307index.shtml
3. 孫鴻業,「美線上內容服務營收僅緩步成長 網路安全性為障礙」,FIND 網路脈動,2006年3月。http://www.find.org.tw/find/home.aspx?page=news&id=4195
4. 張玉霜,「2005年美國消費者線上交易總額突破800億美元」,FIND 網路脈動,2005年12月。http://www.find.org.tw/find/home.aspx?page=news&id=4079
5. 陳俊光,「全球線上購物蓬勃 台灣明年逾1300億」,CPRO,2006年3月。http://cpro.com.tw/channel/news/content/?news_id=29446
6. 經濟部數位內容產業推動辦公室,「2005台灣數位內容產業白皮書」,經濟部工業局,2005年12月。
7. 劉定衢、林熙禎,民94,「以隨機式RSA部分盲簽章電子現金為基礎的採購多媒體串流多方付款方法」, 2005年第十一屆資訊管理暨實務研討會,827~ 837頁。
8. Abe, M. and Fujisaki, E., “How to Date Blind Signature,” LNCS 1163, 1996, pp:244-251.
9. Abie, H., Spilling, P., and Foyn, B., “A distributed digital rights management model for secure information-distribution systems,” Int J Inf Secur (2004) 3, 2004, pp:113-128.
10. Cao, T., Lin, D., and Xue, R., “A randomized RSA-based partially blind signature scheme for electronic cash,” Computer & Security Vol. 24, 2005, pp:44-49.
11. Chaum, D., “Blind Signatures foe Untraceable Payments,” Advances in cryptology, 1983, pp:199-203.
12. Chien, H.Y., Jan, J.K., and Tseng, Y.M., “RSA-Based Partially Blind Signature with Low Computation,” Proceedings of the eighth international conference on parallel and distributed systems, 2001, pp:385-389.
13. Computer Industry Almanac Inc, “Worldwide Internet Users Top 1B in 2005,” January 4, 2006. http://www.c-i-a.com/pr0106.htm
14. Coron, J.S., Naccache, D., and Stern, J.P., “On the Security of RSA Padding,” Advances in Cryptology, 1999, pp:1-18.
15. Craig, C. and Grabam, R., “Rights management in the digital world,” Computer Law & Security Report Vol. 19 no. 5, 2003, pp:356-362.
16. Dodis, Y. and Reyzin, L., “Breaking and Repairing Optimistic Fair Exchange from PODC 2003,” Proceedings of the 2003 ACM Workshop on Digital Rights Management, 2003.
17. Fan, C.I., Chen, W.K., and Yeh, Y.S., “Randomization enhanced Chaum’s blind signature scheme,” Computer Communications, Vol. 23, 2000, pp:1677-1680.
18. Huang, Y.L., Shieh, S.P., and Ho, F.S., “A Generic Electronic Payment Model Supporting Multiple Merchant Transactions,” Computer & Security, Vol.19, No.5, 2000, pp:453-465.
19. Hwang, S.O., Yoon, K.S., Jun, K.P., and Lee, K.H., “Modeling and implementation of digital rights,” The Journal of Systems and Software 73, 2004, pp:533-549.
20. James Irwin, “Digital Rights Management: The Open Mobile Alliance DRM Specifications,” Information Security Technical Report. Vol. 9, No. 4, 2004, pp:22-31.
21. Jeffrey Grau, “Online Privacy and Security: The Fear Factor,” eMarketer Reports, April 2006. http://www.emarketer.com/Report.aspx?privacy_retail_apr06
22. Kwon, M. and Cho, Y., “Randomization Enhanced Blind Signature Schemes Based on RSA,” IEICE TRANS, E86-A, No.3, 2003, pp:730-733.
23. Linda Rosencrance, “E-commerce fraud rises to $2.8 billion,” TECHWORLD, November 11, 2005. http://www.techworld.com/security/news/index.cfm?NewsID=4773&inkc=0
24. Mueller, K., “World Broadband Statistics: Q4 2005,” Point Topic, March 2006.
25. Nah, F., “A study on tolerable waiting time: how long are Web users willing to wait,” Behaviour and Information Technology, Vol. 23, No. 3, 2004.
26. Park, J.M., Chong, E., Siegel, H., and Ray, I., “Constructing fair exchange protocols for E-commerce via distributed computation of RSA signatures,” 22-th Annual ACM Symp. Principles of Distributed Computing, 2003, pp:172-181.
27. Tsiakis, T. and Sthephanides, G., “The concept of security and trust in electronic payments,” Computers and Security (2005) 24, 2005, pp:10-15.
28. Wang, H., Guo, H., Lin, M., Yin, J., He, Q., and Zhang, J., “A new dependable exchange protocol,” WICS’05, 2005.
29. Zhu, J., Wang, N., and Ma, J., “A Micro-payment Scheme for Multiple-Vendor in M-Commerce,” Proceedings of the IEEE International Conference on E-Commerce Technology for Dynamic E-Business (CEC-East’04), 2004, pp:202-208.
指導教授 林熙禎(Shi-Jen Lin) 審核日期 2006-7-8

若有論文相關問題,請聯絡國立中央大學圖書館推廣服務組 TEL:(03)422-7151轉57407,或E-mail聯絡