E-commerce security: A new methodology for deriving effective countermeasures design models

Abstract

There is a need for a systematic methodology that allows security architects to specialize standard security models (such as the NIST models) for use in e-commerce systems. This methodology must enable security architects to provide proper security measures for legitimate users and prescribe proper countermeasures against malicious users at system design time. In this thesis, we address this problem by providing a systematic methodology for deriving countermeasures design models for e-commerce systems based on the NIST security services model. We introduce and illustrate a new term, malicious user requirements, which denotes the features which if present enable malicious security attacks to succeed. Our methodology targets security by satisfying legitimate user requirements and blocking malicious user requirements at system design time. Furthermore, we evaluate our methodology by means of a case study. In particular, we derive four security countermeasures design models; namely authentication, authorization, access control enforcement, and transaction privacy models. (Abstract shortened by UMI.)