E-commerce Security Requirement

-

 E-commerce Security Requirement

commerce over open networks (such as the internet) can secure if the following happens:

  1. Server Security
  2. Message Privacy (or confidentiality)
  3. Message integrity
  4. Authentication
  5. Authorization
  6. Audit mechanism and non-repudiation
  7. Payment and settlement

1. Server Security:

  • Use firewalls and proxy servers
  • Every packet going from the firm's computer to the internet or vice versa will be checked
  •  “Security” against ” attacks” such as viruses, unauthorized access of hackers, the trojan horse can be provided.

2. Message Privacy 

  • A key requirement for E-commerce
  • it assures that the communication between trading parties are not revealed to others, therefore unauthorized party can not read or understand the message

3. Message integrity

  • another key requirement for e-commerce
  • it assures that the communication between trading parties is not alerted by an enemy. 

4. Authentication

  • Assures that the “sender” of the message is actually the person he/she claims.
  • <br />Paper message<br />
  • The term “authentication” determines the user of the computer is actually who he/she claims. 
  • <br />The term “authentication of the receiver”: allows the sender to be sure that the party he/she intend to get the message is the one who is receiving it.<br />

5. Authorization

  • Ensures that the trading party has the authority of transaction
  • It prevents the risks that employees transactions create economic damage
  • Authentication vs Authorization:
  • Once the system knows who the user is through authentication, authorization is how the system decides what the user can do

6.Audit mechanism and non-repudiation

  • Enables exchanging parties to maintain and revisit the history/sequence of events during a period of transaction
  • In e-commerce, these could be computer time stamps or records of the different computer of different stages of transactions

7. Payment and settlements

  • Vital to widespread e-commerce
  • Secure e-payment ensures that “commitment” to pay for goods/services over media are met

                                              OR,


Comments

Post a Comment

Popular posts from this blog

Suppose that a data warehouse for Big-University consists of the following four dimensions: student, course, semester, and instructor, and two measures count and avg_grade. When at the lowest conceptual level (e.g., for a given student, course, semester, and instructor combination), the avg_grade measure stores the actual course grade of the student. At higher conceptual levels, avg_grade stores the average grade for the given combination. a) Draw a snowflake schema diagram for the data warehouse. b) Starting with the base cuboid [student, course, semester, instructor], what specific OLAP operations (e.g., roll-up from semester to year) should one perform in order to list the average grade of CS courses for each BigUniversity student. c) If each dimension has five levels (including all), such as “student < major < status < university < all”, how many cuboids will this cube contain (including the base and apex cuboids)?

-
Image
a) A Snowflake Shema is shown in figure below: b) The specific OLAP operations to be performed: 1. Roll-up on course from course_id to department. 2. Roll-up on a student from student_id to university. 3. Dice on course, student with department ="CS" and university = "biguniversity" 4. Drill-down on a student from the university to student_name. c) N = 4 dimensions The cube will contain 54 = 625 cuboids.
Read more

Pure Versus Partial EC

-
Image
Pure Versus Partial EC EC takes several forms depending on the degree of digitization (the transformation from physical to digital). Companies utilizing pure EC conduct all of their business online. Businesses utilizing partial EC conduct a portion of their business online and a portion of their business off-line OR,    Pure E-electronic commerce refers to a situation where a business transacts its business activities PURELY online. that is, the goods or services sold do not have any physical presence. take a business that sells software, for example, you just pay and download, or one that sells music files online. Partial E-Commerce on the other hand refers to a slightly opposite situation where a business has an online presence, but still has a physical location for the goods and services it sells. For example, Amazon, Walmart, and any other you can think of. you buy the goods online but receive them physically.                   ...
Read more

Discuss classification or taxonomy of virtualization at different levels.

-
Image
Taxonomy of virtualization Virtualization is mainly used to emulate the execution environment, storage, and networks. The execution environment is classified into two: – Process-level – implemented on top of an existing operating system.  – System-level – implemented directly on hardware and does not or minimum requirement of the existing operating system. OR,  Virtualization covers a wide range of emulation techniques that are applied to different areas of computing. A classification of these techniques helps us better understand their characteristics and use  V irtualization is mainly used to emulate  ● Execution Environments: To provide support for the execution of the programs eg. OS, and Application.  ○ Process Level: Implemented on top of an existing OS that has full control of the hardware  ○ System Level: Implemented directly on Hardware and do not require support from existing OS.  ● Storage: Storage vi...
Read more