Check out the new USENIX Web site.

Home About USENIX Events Membership Publications Students
Abstracts - 3rd USENIX Workshop on Electronic Commerce

Secure WWW Transactions Using Standard HTTP and Java Applets

F. Bergadano, B. Crispo, and M. Eccettuato
Università di Torino, Italy


Can users access information on the Web securely with their unchanged, normal broswers, and yet without relying on the cryptographic software contained in those browsers? In this paper we show that this is possible, with a communication architecture based on Java applets. This is important, because cryptographic functions need be separated from both the user interface and the communications routines. It must be possible to acquire the source code for the relevant modules and alternative software vendors must be available, in order to avoid hidden trapdoors and undetected implementation problems. Our approach is alternative to solutions at the protocol level (e.g., SSL), because the unchanged HTTP/TCP/IP stack is maintained. Moreover, it does not require the installation of proxies.
  • View the full text of this paper in PDF form.

  • If you need the latest Adobe Acrobat Reader, you can download it from Adobe's site.

  • To become a USENIX Member, please see our Membership Information.

?Need help? Use our Contacts page.

Last changed: 9 Apr 2002 ml
Technical Program
Workshop Index