|
Title:
|
ELECRONIC INSURANCE SECURITY |
|
Author(s):
|
Ali Sanayei , Mohammad Saleh Torkestani , Pari Ahadi |
|
ISBN:
|
978-972-8924-68-3 |
|
Editors:
|
Pedro Isaías, Miguel Baptista Nunes and Dirk Ifenthaler |
|
Year:
|
2008 |
|
Edition:
|
Single |
|
Keywords:
|
Electronic Insurance, Insurance, Security, Public Key Infrastructure (PKI), Information Technology |
|
Type:
|
Full Paper |
|
First Page:
|
59 |
|
Last Page:
|
66 |
|
Language:
|
English |
|
Cover:
|
|
|
Full Contents:
|
click to dowload 
|
|
Paper Abstract:
|
The low-cost nature of the Internet coupled with the ease of making transactions has led to an explosive growth in ebusiness
but trust in this medium is still a major concern. E-security is the foundation that enables trust in e-business. In
this sense, main cryptographic aspects of modern TCP/IP computer networks are: digital signature technology based on
asymmetrical cryptographic algorithms, data confidentiality by applying symmetrical cryptographic systems, and PKI
system Public Key Infrastructure.
The Internet is also changing the way the insurance industry does business. It offers astounding opportunities to share
information between insurance professionals and to reduce the costly paper trail. However, insurance organizations must
create secure architecture to protect the privacy of insured records since main security requirements in e-insurance
include privacy and integrity of information related to insured. Such information includes information related to person,
medical history, and e.g. social status, and should be kept out of reach of unauthorized persons. Insurance security
benefits are: protect insured confidentiality from network-based violations, securely provide information to remote
partners, and branch offices, and comply with government regulations on network security.
This paper is devoted to the emerging topic in domain of electronic insurance systems E-insurance security based on
Public Key Infrastructure (PKI) systems. we consider possible vulnerabilities of the e-insurance systems and possible
techniques to eliminate them. We signify that only a general and multi-layered security infrastructure could cope with
possible attacks to e-insurance systems. We evaluate security mechanisms on application, transport and network layers of
ISO/OSI reference model and give examples of the today most popular security protocols applied in each of the
mentioned layers. |
|
|
|
|
|
|
