LEX MERCATORIA: ELECTRONIC COMMERCE AND ENCRYPTION PAGES ******************************************************** ELECTRONIC COMMERCE & ENCRYPTION ================================ ELECTRONIC COMMERCE DOCUMENTS ----------------------------- UNCITRAL Model Law on Electronic Commerce (1996) [link: ] document manifest [link: ] [^1] html, segmented text [link: ] html, scroll, document in one [link: ] pdf, landscape [link: ] pdf, portrait [link: ] odf:odt, open document text [link: ] plain text utf-8 [link: ] concordance [link: ] dcc, document content certificate (digests) [link: ] WTO Declaration on Global Electronic Commerce (Adopted on 20 May 1998) [link: ] document manifest [link: ] [^2] html, segmented text [link: ] html, scroll, document in one [link: ] pdf, landscape [link: ] pdf, portrait [link: ] odf:odt, open document text [link: ] plain text utf-8 [link: ] concordance [link: ] dcc, document content certificate (digests) [link: ] OECD Recommendation of the OECD Council Concerning Guidelines for Consumer Protection in the Context of Electronic Commerce (Organisation for Economic Co-operation and Development) 1999 [link: ] document manifest [link: ] [^3] html, segmented text [link: ] html, scroll, document in one [link: ] pdf, landscape [link: ] pdf, portrait [link: ] odf:odt, open document text [link: ] plain text utf-8 [link: ] concordance [link: ] dcc, document content certificate (digests) [link: ] Summary Of Electronic Commerce And Digital Signature Legislation [link: ] McBride Baker & Coles !pick Technology-Neutral, Non-PKI, Minimalist E-Commerce Legislation [link: ] EFF "Privacy - Crypto - Export Restrictions, ITAR and EAR" Archive [link: ] Electronic Frontier Foundation eCommerce & Legal issues [link: ] at eComInfoCenter.com For other documents related to electronic commerce (such as EDI or cryptography) look under the relevant subject heading below. CRYPTOGRAPHY /ENCRYPTION ------------------------ This list does not attempt to be exhaustive. It provides links to sources we have found particularly useful, and to other more comprehensive lists of sources on the subject. Elsewhere off this site: Electronic Commerce compendium Cryptography applied in various ways and circumstances is essential for security and trust: * confidentiality * integrity * authentication * non-repudiation In sum, read, cryptography impacts upon every aspect of considered e-commerce and private e-business relations. #agreements Agreements #groups Interest Groups #aes AES Algorithm (Advanced Encryption Standard) #reference Reference #software Security Software Crypto Law Survey [link: ] Bert Jaap Koops [link: ] A Short History of Cryptography [link: ] by Fred Cohen from Introductory Information Protection [link: ] "a book about keeping people and organizations from harm caused by information. It requires little or mathematics and is suitable as a text for a graduate level or advanced undergraduate course." Fred Cohen & Associates Why Cryptography Is Harder Than It Looks [link: ] by Bruce Schneier CTO and Founder Counterpane Internet Security, Inc. [link: ] AGREEMENTS .......... Wassenaar Arrangement [link: ] INTEREST GROUPS ............... Center for Democracy and Technology [link: ] CryptoRights Foundation [link: ] Cyber Rights and Cyber Liberties UK [link: ] on the Wassenaar Arrangement [link: ] at Cyber Rights & Cyber Liberties [link: ] Electronic Frontier Foundation [link: ] International Cryptography Campaign [link: ] Foundation for Taxpayer and Consumer Rights [link: ] Global Internet Liberty Campaign [link: ] Free Congress Foundation [link: ] Echelonwatch [link: ] the American Civil Liberties Union [link: ] Electronic Frontiers Texas [link: ] Center for Media Education [link: ] INDUSTRY ........ Direct Marketing Association [link: ] TRUSTe [link: ] AES ALGORITHM (ADVANCED ENCRYPTION STANDARD) ............................................ NIST AES ........ AES Algorithm [link: ] Advanced Encryption Standard (AES) Development Effort, Computer Security Division, National Institute of Standards and Technology, NIST is an agency of the U.S. Commerce Department's Technology Administration see Encryption toolkit [link: ] Advanced Encryption Standard of the National Institute of Standards and Technology (NIST) Report [link: ] "SPECIAL NOTE - Intellectual Property NIST reminds all interested parties that the adoption of AES is being conducted as an open standards-setting activity. Specifically, NIST has requested that all interested parties identify to NIST any patents or inventions that may be required for the use of AES. NIST hereby gives public notice that it may seek redress under the antitrust laws of the United States against any party in the future who might seek to exercise patent rights against any user of AES that have not been disclosed to NIST in response to this request for information." Information Technology Laboratory [link: ] "Our goals are to strengthen the U.S. economy and improve the quality of life by providing the information technology industry and users with needed measurements and standards and to provide NIST with high quality information technology services." Federal Information Processing Standards Publications [link: ] AES [link: ] entry on Wikipedia AES WINNER ANNOUNCED OCTOBER 2^ND^, 2000 ........................................ Rijndael [link: ] by Joan Daemen [link: ] and Vincent Rijmen [link: ] [link: ] of Belgium. publications Vincent Rijmen list [link: ] DBLP Bibliography Server list [link: ] 2everything Joan Daemen list [link: ] DBLP Bibliography Server list [link: ] 2everything Cryptix [link: ] The Rijndael algorithm is based on a block cipher algorithm (The Block Cipher Square Algorithm) described in an article in the October, 1997 issue of DDJ [link: ] 6{ 5 Finalists, August 1999 Twofish [link: ] Rijndael [link: ] Serpent [link: ] MARS [link: ] RC6 [link: ] DATA ENCRYPTION STANDARD (DES) .............................. Data Encryption Standard (DES) [link: ] Data Encryption Standard (DES), Triple DES, and Skipjack Algorithms [link: ] Triple DES Validation List [link: ] Overview Triple DES Encryption [link: ] Easy DES File Encryption Software for Organizations! [link: ] Strong Encryption Package [link: ] Federal Information Processing Announcing the Standard for Data Encryption Standard (DES) [link: ] FIPS PUB 46-2, Supersedes FIPS PUB 46-1, 1988 January 22 Federal Information Processing Standards Publication 46-2 1993 December 30. REFERENCE & LINKS ................. The Crypto Link Farm - Encryption and Security-related Resources [link: ] A few of (the many) mirrors auto-updated: [link: ] Security and Encryption-related Resources and Links [link: ] by Peter Gutmann Security pointers [link: ] by Tom Dunigan Security and Cryptography [link: ] by Mark McCutcheon Crypto - Cryptography resource on the Web [link: ] by Matt Blaze Cryptography and Security [link: ] [+] [link: ] by Ronald L. Rivest [link: ] [+] [link: ] Crypto Page [link: ] Paulo Barreto Encryption and Security Tutorial [link: ] Cryptome [link: ] A Cryptographic Compendium [link: ] [link: ] alternative location [link: ] EFF "Privacy - Crypto - Export Restrictions, ITAR and EAR" Archive [link: ] Electronic Frontier Foundation Cryptography [link: ] Francis Litterio Security & Cryptography [link: ] standards [link: ] by Michael Waidner Security and Encryption [link: ] * [link: ] Quick Links Encryption and Security Tutorial [link: ] Encryption, Security & Privacy News [link: ] All E-Commerce Cryptographic Algorithms [link: ] Mach5 Cryptography Archives [link: ] What's Hot in Encryption - Bulletins [link: ] EFF Cryptography: The Study of Encryption [link: ] Cryptography [link: ] Francis Litterio How electronic encryption works and how it will change your business [link: ] Viacorp . com [link: ] Security Encryption PGP [link: ] GPG - The GNU Privacy Guard [link: ] (Open PGP) The Linux Encryption-HOWTO Homepage [link: ] Linux Encryption HOWTO [link: ] by Marc Mutz OpenPGP (RFC2440) [link: ] Snake Oil Warning Signs: Encryption Software to Avoid [link: ] an FAQ by Matt Curtin Mitre [link: ] CVE - Security Dictionary of Common Vulnerabilities and Exposures Counterpane [link: ] Infosyssec - Security Portal for Information System Security Professionals [link: ] SECURITY SOFTWARE ................. SECURE POINT TO POINT CONNECTION AND FILE SHARING ................................................. Open Secure Shell [link: ] - openSSH Linux FreeS/WAN [link: ] Secure point to point connection anywhere on the Internet, Strong Encryption. Developed outside the United States and not subject to US export restrictions. Linux PPTP Server [link: ] the PPTP Linux Server works with WinNT PPTP clients and C. S. Ananian's PPTP Linux clients. Virtual Private Networking technology enables the use the public Internet backbone for private data communications, encryption and encapsulation technology, permitting the carving out of a private channel/passageway through the Internet. Bizee [link: ] free download of V-ONE technology that permits secure connection with other users of the same technology. It performs authentication and uses 168-bit Triple DES encryption to secure e-commerce, as well as to encrypt data being transmitted as part of auctions, chat rooms, e-mail and classified advertisements. Adequate security has been a big obstacle to business-to-business commerce to date... July 1999 Gnutella [link: ] Gnut [link: ] Linux/Unix console gnutella clone Freenet [link: ] (The Free Network Project Homepage) "Re-Wiring the Internet". Hosted by Source Forge [link: ] "Freenet is a peer-to-peer network designed to allow the distribution of information over the Internet in an efficient manner, without fear of censorship. Freenet is completely decentralized, meaning that there is no person, computer, or organisation in control of Freenet or essential to its operation. This means that Freenet cannot be attacked like centralized peer-to-peer systems such as Napster. Freenet also employs intelligent routing and caching meaning that it learns to route requests more efficiently, automatically mirrors popular data, makes network flooding almost impossible, and moves data to where it is in greatest demand. All of this makes it much more efficient and scalable than systems such as Gnutella." Mojo Nation [link: ] claimed to be "a revolutionary new publishing and content-sharing network. [That]combines the flexibility of the marketplace and the distributed computing power of the Internet to go far beyond current filesharing systems... Mojo Nation is building an efficient, massively scalable and secure marketplace for distributors and consumers of digital content." Wheres dot com [link: ] Internet file sharing programs ENCRYPTED FILES AND MAIL ........................ #linux Linux Solutions #commercial Commercial UP - Ultimate Privacy [link: ] Speek Freely [link: ] Speak Free [link: ] Secure fully encrypted Chat Program Speak Freely Unix [link: ] Windows [link: ] HushMail [link: ] web based secure e-mail Freedom [link: ] "Untraceable" privacy system from ZeroKnowledge 1on1 Secure Mail [link: ] The free-to-use service that requires the use of a sizable e-mail Windows PC client, which may be downloaded from the site or obtained on CD. Mutt [link: ] a pgp-aware mailer SUIDNet [link: ] "secure IRC network" The International PGP Page [link: ] Top level home page for www.pgp.net [link: ] GPG - GNU Privacy Guard [link: ] Download GPG [link: ] which uses only free algorithms, and conforming to the OpenPGP standard OpenPGP (RFC2440) [link: ] PGP Sites #fix [link: ] PGP DH v RSA FAQ [link: ] LINUX ENCRYPTION SOLUTIONS .......................... See also Linux Encryption GPG - GNU Privacy Guard [link: ] Download GPG [link: ] which uses only free algorithms, and conforming to the OpenPGP standard Project Aegypten (Free Software Sphinx-Clients) [link: ] for Linux "The Sphinx project launched by German authorities aims to improve secure email exchange... Proprietary products are already on the way, but with the project ?gypten there is now also a Free Software solution going to be realized for popular mail user agents (sphinx-enabling KMail and mutt are essential goals)." SuSE Linux (since v7.2) provides a Secure Crypto File System based on Twofish [link: ] The Linux Encryption-HOWTO Homepage [link: ] Linux Encryption HOWTO [link: ] by Marc Mutz Encrypting Disks [link: ] Encrypting your Disks with Linux [link: ] Doobee. R. Tzeck PPDD [link: ] requires recompiling (patching) the Linux kernel to allow strong encryption and a special device. Good documentation. TCFS [link: ] involves the running of a daemon which exports an encrypted filesystem as an NFS share. Crypto Kernel Patch [link: ] a patch for any given Linux kernel to make the loopback device use encryption algorithms. BestCrypt [link: ] Jetico [link: ] STEGANOGRAPHY ............. Steghide [link: ] Outguess [link: ] Steganography StegFS - A Steganographic File System for Linux [link: ] ORGANIZATIONS ............. Internet Engineering Task Force [link: ] IEEE Computer Society [link: ] International Association for Cryptography Research [link: ] National Security Agency [link: ] U.S.A. National Institute of Standards and Technology [link: ] NIST is an agency of the U.S. Commerce Department's Technology Administration NCSA [link: ] DSS Defense Security Service [link: ] National Infrastructure Protection [link: ] U.S. Department of Homeland Security The Critical Infrastructure Assurance Office (CIAO) [link: ] moved to the U.S. Department of Homeland Security ANSI - American National Standards Institute [link: ] National Information Assurance Partnership [link: ] Office of Information Security [link: ] International Telecommunication Union [link: ] Internet Security Alliance [link: ] a non-profit collaboration between EIA and Carnegie Mellon's CERT Coordination Center (CERT/CC), with a diverse and international membership ETSI [link: ] Telecom Standards SET Secure Electronic Transactions [link: ] Association for Computing Machinery [link: ] SANS Institute [link: ] CSI - Computer Security Institute [link: ] TruSecure [link: ] CERT [link: ] a center of Internet security expertise [link: ] COMMERCIAL .......... RSA Data Security [link: ] RSA [link: ] RSA Security [link: ] "the most trusted name in e-security" RSA Security Incorporated owned key encryption patents (US) which expired September 26^th^ 2000. Baltimore Security [link: ] OTHER ..... UP - Ultimate Privacy [link: ] VeriSign [link: ] Speek Freely [link: ] Speak Free [link: ] Secure fully encrypted Chat Program Speak Freely Unix [link: ] Windows [link: ] Crypto-Central SHA algorithm MD5 etc. [link: ] Delphi: Advanced encryption Components BIOMETRICS .......... The Biometric Consortium [link: ] The International Biometric Society [link: ] Biometrics [link: ] A Journal of the International Biometric Society Biometric Consortium [link: ] Biometrics [link: ] Biometric Encryption information [link: ] The Bio API [link: ] VeriSign [link: ] QUANTUM PHYSICS CRYPTOGRAPHY ............................ NTT [link: ] Almaden Research Lab [link: ] Los Alamos [link: ] British Telecom [link: ] DIGITAL SIGNATURES ------------------ This list does not attempt to be exhaustive. It provides links to sources we have found particularly useful, and to other more comprehensive lists of sources on the subject. Elsewhere off this site: Electronic Commerce compendium UNCITRAL Model Law on Electronic Signatures (2001) [link: ] Electronic Signatures in Global and National Commerce Act, 2000, United States is law, granting (from 1^st^ October, 2000) electronic signatures the same binding legal status as hand-written signatures and thereby making the signing of enforceable contracts online possible on the click of a mouse, with all that that may imply. Bill [link: ] "A bill to regulate interstate commerce by electronic means by permitting and encouraging the continued expansion of electronic commerce through the operation of free market forces, and for other purposes" Interdisciplinary Centre for Law & Information Technology, ICRI [link: ] Legal Aspects of the E-Revolution [link: ] (archived site) [link: ] European Commission - Information Society Directorate-General Internet Law & Policy Forum [link: ] "dedicated to promoting the global growth of e-commerce by contributing to a better understanding of the particular legal issues which arise from the cross border nature of the electronic medium" Links on Law, Cryptography and Electronic Communications [link: ] Prepared by Juan A. Avellan of the Information Technology Law Unit, Queen Mary and Westfield College Law Center on Electronic Signatures [link: ] Global E-Commerce Law [link: ] Baker & McKenzie The CyberNotary Committee [link: ] Science and Technology Section of the American Bar Assocation co Chairs: Theodore S. Barassi & Joseph H. Alhadeff Digital Notary Systems [link: ] American Bar Association Digital Signatures Guidelines [link: ] American Bar Association ELECTRONIC CONTRACTS AND ELECTRONIC COMMERCIAL DOCUMENTS -------------------------------------------------------- This list does not attempt to be exhaustive. It provides links to sources we have found particularly useful, and to other more comprehensive lists of sources on the subject. Elsewhere off this site: Electronic Commerce compendium ebXML [link: ] The UN and OASIS effort: "Creating a Single Global Electronic Market" Monthly Archives for ebxml-awareness [link: ] Electronic Business XML Initiative (ebXML) [link: ] The XML Cover Pages by Robin Cover [link: ] XAML [link: ] (Transaction Authority Markup Language) "vendor neutral that enables the coordination and processing of online transactions in the rapidly developing in the rapidly emerging world of XML web services" backed by Hewlet Packard, IBM, Oracle, and Sun. XAML Cover Page [link: ] FAQ [link: ] Bolero [link: ] * [link: ] Bolero backed by about 120 banks and logistics firms is trying to set up a global standard that would be accepted by governments, shippers, and banks. In doing so the plan to tackle such age old legal concepts as the bill of lading. Bolero plans to use an encrypted communication network to shuffle documents around the world, a process that's now hampered by incompatible computer systems and bureaucrats. Bolero is owned 50-50 by the eOriginal [link: ] Electronic Original (Steven Bisbee). From 1999 "eOriginal, Inc. has developed and markets, under two U.S. patents, a fully integrated transaction system that delivers the trusted means for producing electronic documents that are unique, secure and reliable for all business and legal purposes. The company's product suite, marketed as eOriginal, enables the creation of the Electronic Original." EDI - ELECTRONIC DATA INTERCHANGE --------------------------------- This list does not attempt to be exhaustive. It provides links to sources we have found particularly useful, and to other more comprehensive lists of sources on the subject. Elsewhere off this site: Electronic Commerce compendium Electronic Commerce and EDI [link: ] at NRCCL's Law and Information Technology Links Norwegian Research Center for Computers and Law NRCCL [link: ] check UNECE for the United Nations/EDIFACT Standards. Revised articles of draft uniform rules on the legal aspects of electronic data interchange United Nations Revised draft model statutory provisions on the legal aspects of electronic data interchange X12 Transaction Set Index Version 3040 [link: ] Harbinger [link: ] Now holds Premonos materials UNeTradeS.net [link: ] Electronic Commerce & Electronic Data Interchange: Internet Resources [link: ] Golden Gate University Library Guide ELECTRONIC PAYMENTS ------------------- Elsewhere off this site: Electronic Commerce compendium SOLUTIONS ......... NACHA - Electronic Payments Association [link: ] "NACHA is a not-for-profit trade association that develops operating rules and business practices for the Automated Clearing House (ACH) Network and for other areas of electronic payments. ? NACHA activities and initiatives facilitate the adoption of electronic payments in the areas of Internet commerce, electronic bill payment and presentment (EBPP), financial electronic data interchange (EDI), international payments, electronic checks, electronic benefits transfer (EBT) and student lending. We also promote the use of electronic payment products and services, such as Direct Deposit and Direct Payment. NACHA represents more than 12,000 financial institutions through our network of regional ACH associations.? We have over 600 members in our seven industry councils and corporate Affiliate Membership program." Internet Council - NACHA [link: ] Project ACTION [link: ] "a program to develop a payment product for Internet transactions utilizing Automated Clearing House (ACH) credits" E-Cash Technologies Inc. [link: ] "global software solutions that extend and enhance physical-world payment methods" Cybercash [link: ] "VeriSign and CyberCash join forces to offer complete e-commerce solutions" Globeset Trinitech [link: ] "securing payment in the digital age" Mobey Forum [link: ] "a financial industry-driven forum, whose mission is to encourage the use of mobile technology in financial services ... - such as payment, remote banking and brokerage" Paypal [link: ] Confinity. Paypal now Nokia approved allows you to make instant payments to anyone with a cell phone, two-way pager, or handheld device, such as the Palm? organizer. Permits such things as the settlement of debts, borrowing of cash and splitting of bills/ expenses without the hassle of going to ATMs or keeping track of debts. Paypal is free and works seamlessly with your existing credit card and bank account. PayPal? software can be "beamed" to your friend or business associate who can then be "beamed" money instantly. The system charges your credit card when you next sync your device, and your friend can register later at PayPal.com. E-Commerce Guide [link: ] BigStep [link: ] Build your own web-based e-commerce site, free service ECML [link: ] Electronic Commerce Modeling Language (ECML) is to be a universal format for wallets and merchant web sites. ECML uses a set of uniform field names to streamlines the process by which merchants collect electronic data for shipping, billing, and payment. Its development is a collaboration between: American Express, AOL, Compaq, CyberCash, IBM, MasterCard, Microsoft, SETCo, Sun Microsystems, Transactor Networks, Trintech, and Visa. 18/06/1999 FpML [link: ] FpML, an XML-based markup language that allows for Net-based integration of services such as electronic trading and risk analysis backed by IBM, PricewaterhouseCoopers and J.P. Morgan. 18/06/1999 WorldPay [link: ] NetBanx [link: ] Payment mechanisms designed for the Internet [link: ] by Michael Peirce Digital Money, Credit Cards, and Electronic Payment Systems [link: ] Page of links to resources on Electronic Money or E-Money [link: ] by Roy Davies. DigiCash (went under) [link: ] Electronic Money (That's What I Want) [link: ] (Read up on David Chaum) Article by Steven Levy for HotWired, December 1994. David Chaum Publications [link: ] How much do you trust Big Brother? [link: ] interview of David Chaum, 1997 & the Mark Twain Bank [link: ] CyberCash [link: ] CheckFree [link: ] "the undisputed leader in moving money electronically" VeriFone [link: ] Millicent [link: ] (Digital / Compaq) Open Market [link: ] MasterCard [link: ] Visa [link: ] Hyper Mart [link: ] free service with advertising part of the Go2Net network Sitematic [link: ] monthly charges MindSpring Biz [link: ] monthly charges MS Solutions for small businesses [link: ] E-Commerce servers DISCUSION ......... This list does not attempt to be exhaustive. It provides links to sources we have found particularly useful, and to other more comprehensive lists of sources on the subject. Elsewhere off this site: Electronic Commerce compendium W3C - Electronic Commerce Interest Group? [link: ] W3C has closed its Ecommerce and Micropayment Activity, but through a number of activities W3C is committed to key factors for success in the evolution of Electronic Commerce. Guide to Online Payments [link: ] US Federal Trade Commission NACHA - Electronic Payments Association [link: ] NACHA is a not-for-profit trade association that develops operating rules and business practices for the Automated Clearing House (ACH) Network and for other areas of electronic payments. NACHA represents more than 12,000 financial institutions through our network of regional ACH associations.? We have over 600 members in our seven industry councils and corporate Affiliate Membership program.? Electronic Payments Forum [link: ] Electronic Money, or E-Money, and Digital Cash [link: ] links by Roy Davies Epayment Links [link: ] Institute for eCommerce, Carnegie Mellon University Electronic Commerce, Payment Systems, and Security [link: ] links by Michael Waidner Internet Funds Transfer Services - Electronic Payments [link: ] Elsop - Electronic Software Publishing Corporation A Bibliography of Electronic Payment Information [link: ] Links related to Smart Cards and Electronic Payment Systems [link: ] Payment Systems Information Resources [link: ] Federal Reserve Bank of New York United States Government Electronic Commerce Policy [link: ] European ePayments Observatory [link: ] The Future of Money [link: ] edited by Robert Knautz, 1997 Policy Spotlight Payment mechanisms designed for the Internet [link: ] by Michael Peirce Epayment Solutions - page sponsored by IBM [link: ] Joint Electronic Payments Protocol (JEPI) to make it easier for consumers to use multiple payment systems from Web browsers: World Wide Web Consortium [link: ] CommerceNet [link: ] Millicent [link: ] from Digital Equipment Corporation Information [link: ] Microsoft: Passport [link: ] Electronic Money / Internet Payment Systems [link: ] Network Payment Mechanisms and Digital Cash by Michael Peirce [link: ] Central Banking Resource Center [link: ] Mark Bernkopf e$ Page [link: ] Robert Hettinga Debt, Money and Ancient Meme [link: ] 21^st^ Century Banking Alert Page [link: ] also Additional Online Resources [link: ] and BancMail Archive [link: ] at Fried, Frank, Harris, Shriver and Jacobson [link: ] A Bibliography of Electronic Payment Information [link: ] WRITINGS AND LINKS TO THEM .......................... E-Commerce Times [link: ] News A Bibliography of Electronic Payment Systems [link: ] Alternative Money Systems [link: ] New Civilization Network [link: ] Money - Past, Present & Future [link: ] Sources of Information on Monetary History, Contemporary Developments, and the Prospects for Electronic Money maintained by Roy Davies The Future of Money in the Information Age [link: ] by the Cato Institute, 1997. The Surprise Weapon: Private Enterprise Money [link: ] by E. C. Riegel, 1944. Array [link: ] including the Journal of Internet Banking and Commerce [link: ] and Journal of Internet Purchasing [link: ] The Surprise Weapon: Private Enterprise Money [link: ] by E. C. Riegel, 1944. Implications for Central Banks of the Development of Electronic Money [link: ] 11th November 1996 by the Central Banker's Central Bank [link: ] the Bank for International Settlement, Basle, Switzerland. Crypto-Anarchy and Virtual Communities [link: ] by Timothy C. May (1995) Commerce Related Sites including Banking and Finance AUTHENTICATION SOLUTIONS - VIRTUAL IDENTITIES --------------------------------------------- Liberty Alliance Project [link: ] (Sun etc.) Passport [link: ] Passport, Hailstorm, .Net etc. [link: ] Microsoft Oblix | Identity-Based Security Solutions(TM) [link: ] The DotGNU Project [link: ] Linux-PAM [link: ] "Pluggable Authentication Modules for Linux is a suite of shared libraries that enable the local system administrator to choose how applications authenticate users." PAM - Pluggable Authentication Modules [link: ] documentation for Linux-PAM [link: ] PAM - FAQ [link: ] PAM [link: ] User Authentication HOWTO [link: ] "Explains how user and group information is stored and how users are authenticated on a Linux system (PAM), and how to secure your system's user authentication." by Peter Hernberg GOVERNMENT AND OTHER DOCUMENTS: STANDS/APPROACHES TO ELECTRONIC COMMERCE ------------------------------------------------------------------------ This list does not attempt to be exhaustive. It provides links to sources we have found particularly useful, and to other more comprehensive lists of sources on the subject. Elsewhere off this site: Electronic Commerce compendium Electronic commerce in the WTO [link: ] Electronic Commerce [link: ] at the International Chamber of Commerce United States Government Electronic Commerce Policy [link: ] International Sites [link: ] A Framework for Global Electronic Commerce [link: ] A Framework For Global Electronic Commerce [link: ] W3C Activities Related to the US "Framework for Global Electronic Commerce" [link: ] Electronic Commerce and the European Union [link: ] Legal Aspects of the E-Revolution [link: ] European Commission - Information Society Directorate-General WTO's work programme on electronic commerce [link: ] Electronic Commerce and the European Union [link: ] ECLIP [link: ] EU Initiative in Electronic Commerce [link: ] 1997 Wassenaar Arrangement [link: ] Ecommerce [link: ] at the Global Information Infrastructure Commission [link: ] of the Center for Strategic & International Studies [link: ] This group backed "The Commerce Standard", described as: a uniform open and free standard for Electronic Commerce. ZiffDavis publisher initiative developed collaboratively with more than 200 top global Internet merchants, IT vendors, analysts, policymakers, consumer advocates, academics and journalists in an effort to establish a set of merchant practices and policies. Topics for Draft 1.0 include: merchant information, product availability, charges and fee information, warranties, product support, search capabilities, privacy, security, payment and billing, receipt of order notification, order status and history, shipping delivery and order execution, cancellations, returns, refunds and customer support. Launched in 12 July 1999, completion planned for December 1999. Global Information Infrastructure. Global Business Dialogue on Electronic Commerce [link: ] (GBDe) [link: ] An international non-governmental organization, managed by executives of 29 major enterprises in the United States, Europe and Asia, that promotes establishing global rules for electronic commerce over the Internet. GBDe member companies submit requests for legal arrangements for electronic commerce representing the interest of industries during the first GBDe convention held on 13 September 1999 in Paris, and these will be submitted to the government of each country. The following nine themes will be covered: (1) authentication and security, (2) consumer credibility, (3) contents/business communication, (4) inter-operability of information infrastructure and governance, (5) intellectual property, (6) control, (7) reliability, (8) protection of private data and (9) taxes/tariffs. Member companies include: Japan - Fujitsu Ltd., NEC Corp., Toshiba Corp., Mitsui & Co., Ltd., Mitsubishi Bank Ltd., Nippon Telegraph and Telephone Corp; North America - IBM Corp., MCIWorldcom Inc., Nortel Networks Corp., Time Warner Inc. and Walt Disney Co.; Europe - France Telecom, Nokia of Finland, DaimlerChrysler Corp. of Germany and others. CYBERCRIME ---------- Convention on Cybercrime [link: ] Budapest, 2001, Council of Europe Other COE Pages related to the Convention on Cybercrime [link: ] Draft Convention on Cyber-crime (Draft N? 19) [link: ] politechbot PRIVACY ------- See also Linux Encryption Electronic Privacy Information Center [link: ] P3P [link: ] WWW Consortium Encryption, Security & Privacy News [link: ] All E-Commerce What's Hot in Encryption - Bulletins [link: ] EFF GPG - The GNU Privacy Guard [link: ] (Open PGP) Privacy Foundation [link: ] NON-PRIVACY / SECURITY? ....................... Echelon Watch [link: ] administered by ACLU (American Civil Liberties Union) in conjunction with the Free Congress Foundation, the Electronic Privacy Information Center, Cyber-Rights and Cyber-Liberties (UK) and the Omega Foundation. Echelon Watch [link: ] Cyber-Rights & Cyber-Liberties (UK) Statewatch [link: ] monitoring the state and civil liberties in the European Union INTEREST GROUPS & CAMPAIGNS --------------------------- This list does not attempt to be exhaustive. It provides links to sources we have found particularly useful, and to other more comprehensive lists of sources on the subject. Elsewhere off this site: Electronic Commerce compendium Wassenaar Arrangement [link: ] Center for Democracy and Technology [link: ] Center for Media Education [link: ] Cyber Rights and Cyber Liberties U.K [link: ] a non-profit civil liberties organisation founded by Yaman Akdeniz. Information on Wassenaar [link: ] and on the UK Freedom of information Files [link: ] Distributed.Net [link: ] Electronic Freedom Frontier [link: ] Electronic Frontier Foundation [link: ] Electronic Privacy Information Center [link: ] EU Freedom Campaign* [link: ] Foundation for Taxpayer and Consumer Rights [link: ] CryptoRights Foundation [link: ] Global Internet Liberty Campaign [link: ] International Cryptography Campaign [link: ] Echelonwatch [link: ] The Internet Law and Policy Forum [link: ] "dedicated to promoting global growth of e-commerce by contributing to a better understanding of the particular legal issues which arise from the cross border nature of the electronic medium" Free Congress Foundation [link: ] the American Civil Liberties Union [link: ] Center for Media Education [link: ] Security Forum [link: ] INDUSTRY ........ Direct Marketing Association [link: ] Interactive Services Association [link: ] TRUSTe [link: ] Global Information Infrastructure Commission [link: ] This group backed "The Standard for Internet Commerce", described as: a uniform open and free standard for Electronic Commerce. ZiffDavis publisher initiative developed collaboratively with more than 200 top global Internet merchants, IT vendors, analysts, policymakers, consumer advocates, academics and journalists in an effort to establish a set of merchant practices and policies. Topics for Draft 1.0 include: merchant information, product availability, charges and fee information, warranties, product support, search capabilities, privacy, security, payment and billing, receipt of order notification, order status and history, shipping delivery and order execution, cancellations, returns, refunds and customer support. Launched in 12 July 1999, completion planned for December 1999. Global Information Infrastructure. Global Business Dialogue on Electronic Commerce [link: ] (GBDe) [link: ] An international non-governmental organization, managed by executives of 29 major enterprises in the United States, Europe and Asia, that promotes establishing global rules for electronic commerce over the Internet. GBDe member companies submit requests for legal arrangements for electronic commerce representing the interest of industries during the first GBDe convention held on 13 September 1999 in Paris, and these will be submitted to the government of each country. The following nine themes will be covered: (1) authentication and security, (2) consumer credibility, (3) contents/business communication, (4) inter-operability of information infrastructure and governance, (5) intellectual property, (6) control, (7) reliability, (8) protection of private data and (9) taxes/tariffs. Member companies include: Japan - Fujitsu Ltd., NEC Corp., Toshiba Corp., Mitsui & Co., Ltd., Mitsubishi Bank Ltd., Nippon Telegraph and Telephone Corp; North America - IBM Corp., MCIWorldcom Inc., Nortel Networks Corp., Time Warner Inc. and Walt Disney Co.; Europe - France Telecom, Nokia of Finland, DaimlerChrysler Corp. of Germany and others. ELECTRONIC COMMERCE RESOURCE SITES ---------------------------------- eComInfoCenter.com [link: ] Summary Of Electronic Commerce And Digital Signature Legislation [link: ] McBride Baker & Coles !pick E-Business Research Center [link: ] CIO E-Commerce [link: ] Follesdal, Coolconnect (check details) Technology-Neutral, Non-PKI, Minimalist E-Commerce Legislation [link: ] E-Commerce News Archive [link: ] Electronic Commerce and EDI [link: ] NRCCL's Law and Information Technology Links E-Commerce Project [link: ] America Online Electronic Commerce [link: ] by Michael Waidner Electronic Commerce Online Resources [link: ] List maintained by Gilbert & Tobin, Australia Electronic commerce section of the WTO website [link: ] WTO's work programme on electronic commerce [link: ] Electronic Commerce [link: ] at the International Chamber of Commerce US Government Ecommerce Policy [link: ] Ecommerce [link: ] at the Global Information Infrastructure Commission [link: ] of the Center for Strategic & International Studies [link: ] Electronic Commerce [link: ] Morino Institute Electronic Commerce and the European Union [link: ] European Internet Forum [link: ] (including Globalisation and the Information Society; Digital signatures and encryption; Internet Governance) DTI ECommerce [link: ] UK Department of Trade and Industry DTI E-Commerce Directive [link: ] Communications and information industries [link: ] Electronic Commerce Library [link: ] American Bar Association: "a research project funded by the European Commission's DG XIII, which seeks to set up a platform on the legal issues of electronic commerce with the objective of providing legal support to EC-funded RTD projects on any issue of law linked to electronic commerce, thereby stimulating expertise and increasing general awareness of the existing or recommended legal framework of electronic commerce." E-Comm Links [link: ] E-Commerce Task Force, Canada Center for Law, Commerce and Technology [link: ] School of Law University of Washington Electronic Frontiers Australia [link: ] "representing Internet users concerned with on-line freedoms" The Commerce Standard [link: ] The Standard for Internet Commerce is a uniform open and free standard for Electronic Commerce. ZiffDavis publisher initiative developed collaboratively with more than 200 top global Internet merchants, IT vendors, analysts, policymakers, consumer advocates, academics and journalists in an effort to establish a set of merchant practices and policies. Topics for Draft 1.0 include: merchant information, product availability, charges and fee information, warranties, product support, search capabilities, privacy, security, payment and billing, receipt of order notification, order status and history, shipping delivery and order execution, cancellations, returns, refunds and customer support. Launched in 12 July 1999, completion planned for December 1999. Global Information Infrastructure. Global Business Dialogue on Electronic Commerce [link: ] (GBDe) [link: ] An international non-governmental organization, managed by executives of 29 major enterprises in the United States, Europe and Asia, that promotes establishing global rules for electronic commerce over the Internet. GBDe member companies submit requests for legal arrangements for electronic commerce representing the interest of industries during the first GBDe convention held on 13 September 1999 in Paris, and these will be submitted to the government of each country. The following nine themes will be covered: (1) authentication and security, (2) consumer credibility, (3) contents/business communication, (4) inter-operability of information infrastructure and governance, (5) intellectual property, (6) control, (7) reliability, (8) protection of private data and (9) taxes/tariffs. Member companies include: Japan - Fujitsu Ltd., NEC Corp., Toshiba Corp., Mitsui & Co., Ltd., Mitsubishi Bank Ltd., Nippon Telegraph and Telephone Corp; North America - IBM Corp., MCIWorldcom Inc., Nortel Networks Corp., Time Warner Inc. and Walt Disney Co.; Europe - France Telecom, Nokia of Finland, DaimlerChrysler Corp. of Germany and others. Guidelines of the Electronic Commerce and Consumer Protection Group [link: ] [the "Group" appears to be gone] (America Online, AT&T, Dell Computer Group, IBM, Microsoft, Network Solutions, Time Warner Inc., Visa USA Inc) [1]: [2]: [3]: ============================================================================== Title: Lex Mercatoria: Electronic Commerce and Encryption Pages Creator: Lex Mercatoria Rights: Copyright (C) 2004 Lex Mercatoria Subject: electronic commerce, encryption Publisher: SiSU http://www.jus.uio.no/sisu (this copy) Date: 2004 Sourcefile: electronic.commerce.sst Filetype: SiSU text 2.0 Source digest: SHA256(electronic.commerce.sst)= ccfe617ec8b817852135ed4ec5760872ec0c341a3624ea2b08b8f177351198cd Skin digest: SHA256(skin_lm_nav.rb)= 87fe13748e3cbcb0dedea211464f31bb26b0b111fd877b18f1812e06ec059cd5 Generated by: Generated by: SiSU 2.6.3 of 2010w30/3 (2010-07-28) Ruby version: ruby 1.8.7 (2010-08-16 patchlevel 302) [i486-linux] Document (dal) last generated: Tue Sep 21 16:44:59 -0400 2010 ============================================================================== Other versions of this document: manifest: http://www.jus.uio.no/lm//electronic.commerce/sisu_manifest.html html: http://www.jus.uio.no/lm//electronic.commerce/toc.html pdf: http://www.jus.uio.no/lm//electronic.commerce/portrait.pdf http://www.jus.uio.no/lm//electronic.commerce/landscape.pdf plaintext (plain text): http://www.jus.uio.no/lm//electronic.commerce/plain.txt at: http://lexmercatoria.org * Generated by: SiSU 2.6.3 of 2010w30/3 (2010-07-28) * Ruby version: ruby 1.8.7 (2010-08-16 patchlevel 302) [i486-linux] * Last Generated on: Tue Sep 21 16:45:04 -0400 2010 * SiSU http://www.sisudoc.org/