E-commerce Security Requirement

-

 E-commerce Security Requirement

commerce over open networks (such as the internet) can secure if the following happens:

  1. Server Security
  2. Message Privacy (or confidentiality)
  3. Message integrity
  4. Authentication
  5. Authorization
  6. Audit mechanism and non-repudiation
  7. Payment and settlement

1. Server Security:

  • Use firewalls and proxy servers
  • Every packet going from the firm's computer to the internet or vice versa will be checked
  •  “Security” against ” attacks” such as viruses, unauthorized access of hackers, the trojan horse can be provided.

2. Message Privacy 

  • A key requirement for E-commerce
  • it assures that the communication between trading parties are not revealed to others, therefore unauthorized party can not read or understand the message

3. Message integrity

  • another key requirement for e-commerce
  • it assures that the communication between trading parties is not alerted by an enemy. 

4. Authentication

  • Assures that the “sender” of the message is actually the person he/she claims.
  • <br />Paper message<br />
  • The term “authentication” determines the user of the computer is actually who he/she claims. 
  • <br />The term “authentication of the receiver”: allows the sender to be sure that the party he/she intend to get the message is the one who is receiving it.<br />

5. Authorization

  • Ensures that the trading party has the authority of transaction
  • It prevents the risks that employees transactions create economic damage
  • Authentication vs Authorization:
  • Once the system knows who the user is through authentication, authorization is how the system decides what the user can do

6.Audit mechanism and non-repudiation

  • Enables exchanging parties to maintain and revisit the history/sequence of events during a period of transaction
  • In e-commerce, these could be computer time stamps or records of the different computer of different stages of transactions

7. Payment and settlements

  • Vital to widespread e-commerce
  • Secure e-payment ensures that “commitment” to pay for goods/services over media are met

                                              OR,


Comments

Post a Comment

Popular posts from this blog

Legislations and IT in Nepal MCQ IT Officer(PSC)

-
  1. A genetic term that is concerned to the legal and regulatory aspects of Internet and computer technology. a. Copyright law b. Cyber law c. Computer Crime d. None of them Correct Answer: b Explanation: Cyber law encompasses the legal and regulatory aspects of internet and computer technology. The correct answer is "b". 2. "The Electronic Transaction and Digital Signature Act Ordinance" is Known as: a. Intellectual Property Law b. Cyber Law c. Telecommunication Law d. Data Protection Law Correct Answer: b Explanation: This act is commonly referred to as Cyber Law in Nepal, governing electronic transactions and digital signatures. The correct answer is "b". 3. A criminal activity within the information technology infrastructure. a. Digital crime b. Intellectual property c. Cybercrime d. All of them Correct Answer: c Explanation: Cybercrime specifically refers to criminal activities conducted within IT infrastructure. The correct ...
Read more

Explain Aneka thread life cycle /Explain local thread and Aneka thread.

-
Image
 Thread Life Cycle As Aneka threads exist and operate in a distributed environment, their life cycle differs from that of local reads.  The following figure depicts the possible execution states for local threads supported by the .Net framework.  A thread may be in one or more of those statuses at any given moment. When a new thread is created, its status is Unstarted, and when the Start method is called, it changes to Running. There is also a Background state that specifies whether a thread is operating in the background or the foreground. The diagram below depicts the life cycle of an Aneka Thread. Because the two thread types are essentially different, one is local and the other is distributed, the possible states they might take vary from instantiation to termination. Most state transitions in local threads are managed by the developer, who causes the state transition by executing methods on the thread instance, but many state transitions in Aneka threads are handled ...
Read more

Explain advantages of authority delegation

-
Image
Advantages of authority delegation 1. Reducing workload:     Delegation of authority allows subordinates to make decisions in their responsibility area. Routine and operating functions can be performed by delegating authority to subordinates. Thus, a delegation of authority allows top-level management to be focused on strategic areas. 2. Improving efficiency:  Effective delegation increases the speed of decision-making. This facilitates increasing the rate of job accomplishment. Subordinates need not wait for their superior for decisions. Subordinates can complete more jobs within a limited time because which efficiency of employees, as well as an organization, can be improved. 3. Empowering employees:  Delegation of authority provides decision-making power to the subordinates which is the means of their empowerment. Delegation of authority makes employees more loyal, dedicated, creative, and efficient as they have to make effective decisions. It increases the mortal...
Read more