IDEAS home Printed from https://ideas.repec.org/a/ris/joibac/0108.html
   My bibliography  Save this article

TLS Protocol Verification for Securing E-Commerce Websites

Author

Listed:
  • Asma, Daassa

    (Electronics and Microelectronics Laboratory, Faculty of Sciences, Monastir, National Engineering School of Tunis, University of Tunis El Manar, Tunisia)

  • Mohsen, Machhout

    (Electronics and Microelectronics Laboratory, Faculty of Sciences, University of Monastir, Monastir, Tunisia)

  • Taoufik, Aguili

    (Syscom Laboratory, Department of Information and Communications Technology, National Engineering School of Tunis, Tunis, Tunisia)

Abstract

E-commerce security is very important especially nowadays but internet is entrusted due to the attacks and hackers exploitations. To improve the security of electronics transactions, many protocols are developed. SSL/TLS is the most commonly used, although many dangerous attacks were found. So, developers have to upgrade SSL/TLS to avoid these attacks and enhance security. To achieve their goals, hackers exploit flaws and errors found in SSL/TLS protocol implementations, it is necessary to verify and validate the security of the entire software code. Therefore, to improve the security of SSL/TLS protocol, researchers try to find solutions; protocols must therefore be tested and validated before their launch. In this paper, we will focus on analyzing SSL/TLS protocol with automated formal verification tool AVISPA. We study the renegotiation attack and try to detect it using AVISPA. We use formal models for automatic verification of security protocol to discover new attacks, to prevent similar attack in the future and also to increase the tool efficiency.

Suggested Citation

  • Asma, Daassa & Mohsen, Machhout & Taoufik, Aguili, 2017. "TLS Protocol Verification for Securing E-Commerce Websites," Journal of Internet Banking and Commerce, , vol. 22(02), pages 01-15, August.
    • Handle: RePEc:ris:joibac:0108
    as

    Download full text from publisher

    File URL: https://www.icommercecentral.com/open-access/tls-protocol-verification-for-securing-ecommerce-websites.php?aid=86177
    File Function: Full text
    Download Restriction: no
    ---><---

    More about this item

    Keywords

    SSL/TLS; Security; e-Commerce; HLPSL; AVISPA; Attacks;
    All these keywords.

    JEL classification:

    • A11 - General Economics and Teaching - - General Economics - - - Role of Economics; Role of Economists

    Statistics

    Access and download statistics

    Corrections

    All material on this site has been provided by the respective publishers and authors. You can help correct errors and omissions. When requesting a correction, please mention this item's handle: RePEc:ris:joibac:0108. See general information about how to correct material in RePEc.

    If you have authored this item and are not yet registered with RePEc, we encourage you to do it here. This allows to link your profile to this item. It also allows you to accept potential citations to this item that we are uncertain about.

    We have no bibliographic references for this item. You can help adding them by using this form .

    If you know of missing items citing this one, you can help us creating those links by adding the relevant references in the same way as above, for each refering item. If you are a registered author of this item, you may also want to check the "citations" tab in your RePEc Author Service profile, as there may be some citations waiting for confirmation.

    For technical questions regarding this item, or to correct its authors, title, abstract, bibliographic or download information, contact: Dale Pinto (email available below). General contact details of provider: .

    Please note that corrections may take a couple of weeks to filter through the various RePEc services.

    IDEAS is a RePEc service. RePEc uses bibliographic data supplied by the respective publishers.