What matters in the digital shopping mall? : A study of Chinese consumers’ adoption of E-business platforms and vendors

Shan, Min

January 2012

E-business is growing rapidly all over the world and especially in China, which now has the largest C2C market in the world. Most studies of users’ experience of E-business either focus on the platform usage, platform adoption or include platform usage and vendors’ behavior as variables in general e-retailing models. However, we do not know much about what effect the interplay between E-business platforms and vendors operating on the platform has on consumers E-business behavior. In this paper, buyers' behavior in terms of choosing platforms and choosing stores is examined separately, while measurements for influencing factors such as size of vendor base and trust of platform owner is included to capture second order effects. Data was gathered through a questionnaire, published on a professional Chinese survey website for collecting data. Afterwards, SPSS was used for analyzing data. Similarities and differences between the outcomes for the two research questions were analyzed. The main patterns in the two models are similar, suggesting that the interaction between platform owners and vendors has impact on buyers as well. Price, which was one of the most important features of E-business, proved to be of minor importance for choosing both E-business platform and vendors. However, there are some differences between adoption of platforms and vendors, range of market is important for platform adoption, while it is not a indicator for consumers to choose a certain vendor. These findings suggest that there are second order effects involved in E-business platforms. Further, they indicate that once an E-business platform has acquired a large enough user base, the owner might consider increasing revenues from vendor fees, as long as they translate to small product price increases rather than a decreased vendor user base.

C2C

users' behavior

platform owner

vendor

Informatics

Informatik

A Secure Infrastructural Strategy for Safe Autonomous Mobile Agents

Giansiracusa, Michelangelo Antonio

January 2005

Portable languages and distributed paradigms have driven a wave of new applications and processing models. One of the most promising, certainly from its early marketing, but disappointing (from its limited uptake)is the mobile agent execution and data processing model. Mobile agents are autonomous programs which can move around a heterogeneous network such as the Internet, crossing through a number of different security domains, and perform some work at each visited destination as partial completion of a mission for their agent user. Despite their promise as a technology and paradigm to drive global electronic services (i.e.any Internet-driven-and-delivered service, not solely e-commerce related activities), their up take on the Internet has been very limited. Chief among the reasons for the paradigm's practical under-achievement is there is no ubiquitous frame work for using Internet mobile agents, and non-trivial security concerns abound for the two major stake holders (mobile agent users and mobile agent platform owners). While both stake holders have security concerns with the dangers of the mobile agent processing model, most investigators in the field are of the opinion that protecting mobile agents from malicious agent platforms is more problematic than protecting agent platforms from malicious mobile agents. Traditional cryptographic mechanisms are not well-suited to counter the bulk of the threats associated with the mobile agent paradigm due to the untrusted hosting of an agent and its intended autonomous, flexible movement and processing. In our investigation, we identified that the large majority of the research undertaken on mobile agent security to date has taken a micro-level perspective. By this we mean research focused solely on either of the two major stakeholders, and even then often only on improving measures to address one security issue dear to the stake holder - for example mobile agent privacy (for agent users) or access control to platform resources (for mobile agent platform owners). We decided to take a more encompassing, higher-level approach in tackling mobile agent security issues. In this endeavour, we developed the beginnings of an infrastructural-approach to not only reduce the security concerns of both major stakeholders, but bring them transparently to a working relationship. Strategic utilisation of both existing distributed system trusted-third parties (TTPs) and novel mobile agent paradigm-specific TTPs are fundamental in the infrastructural framework we have devised. Besides designing an application and language independent frame work for supporting a large-scale Internet mobile agent network, our Mobile Agent Secure Hub Infrastructure (MASHIn) proposal encompasses support for flexible access control to agent platform resources. A reliable means to track the location and processing times of autonomous Internet mobile agents is discussed, withfault-tolerant handling support to work around unexpected processing delays. Secure,highly-effective (incomparison to existing mechanisms) strategies for providing mobile agent privacy, execution integrity, and stake holder confidence scores were devised - all which fit comfortably within the MASHIn framework. We have deliberately considered the interests - withoutbias -of both stake holders when designing our solutions. In relation to mobile agent execution integrity, we devised a new criteria for assessing the robustness of existing execution integrity schemes. Whilst none of the existing schemes analysed met a large number of our desired properties for a robust scheme, we identified that the objectives of Hohl's reference states scheme were most admirable - particularly real - time in - mission execution integrity checking. Subsequently, we revised Hohl's reference states protocols to fit in the MASHIn framework, and were able to overcome not only the two major limitations identified in his scheme, but also meet all of our desired properties for a robust execution integrity scheme (given an acceptable decrease in processing effiency). The MASHIn offers a promising new perspective for future mobile agent security research and indeed a new frame work for enabling safe and autonomous Internet mobile agents. Just as an economy cannot thrive without diligent care given to micro and macro-level issues, we do not see the security prospects of mobile agents (and ultimately the prospects of the mobile agent paradigm) advancing without diligent research on both levels.

MASHIn

MASHs

RECDAM

SCC4MAP

application-independent mobile agents

autonomous mobile agents

checking hosts

confidence scores

distributed systems

dummy call back classes

first-hand observations

itinerant agents

language-independent mobile agents

mobile agent execution integrity

mobile agent paradigm

mobile agent platform

mobile agent platform owner

mobile agent privacy

mobile agent security

mobile agent user

mobile agents

mobile computing

real call back classes

real-time in-mission checking

reference state

reputation

second-hand opinions

secure call back classes

trusted third party

ubiquitous framework