Secure Negotiated - E-Commerce - Lecture Slides, Slides of Fundamentals of E-Commerce

E-Commerce is taking over the traditional commerce practices. It is of special concern for the IT students. Following are the key points of these Lecture Slides : Secure Negotiated, Protecting Networks, Firewall, Hardware, Security Policy, Packet Filters, Application Gateways, Proxy Servers, Software Servers, Communications

Typology: Slides

2012/2013

Uploaded on 07/30/2013

asif.ali
asif.ali 🇮🇳

5

(3)

129 documents

1 / 11

Toggle sidebar

This page cannot be seen from the preview

Don't miss anything!

bg1
Secure Negotiated Sessions Using
SSL
Figure 5.12, Page 303
Docsity.com
pf3
pf4
pf5
pf8
pf9
pfa

Partial preview of the text

Download Secure Negotiated - E-Commerce - Lecture Slides and more Slides Fundamentals of E-Commerce in PDF only on Docsity!

Secure Negotiated Sessions Using

SSL

Figure 5.12, Page 303

Protecting Networks

Firewall

Hardware or software

Uses security policy to filter packets - Two main methods:  Packet filters  Application gateways

Proxy servers (proxies)

Software servers that handle all communicationsoriginating from or being sent to the Internet

Protecting Servers and Clients

Operating system security enhancements

Upgrades, patches

Anti-virus software:

Easiest and least expensive way to prevent threatsto system integrity

Requires daily updates

Management Policies, Business

Procedures, and Public Laws

U.S. firms and organizations spend 14% of ITbudget on security hardware, software,services ($35 billion in 2010)

Managing risk includes

Technology

Effective management policies - Public laws and active enforcement

Developing an E-commerce

Security Plan

Figure 5.14, Page 308

The Role of Laws and Public Policy

Laws that give authorities tools for identifying,tracing, prosecuting cybercriminals:

National Information Infrastructure Protection Act of 1996 - USA Patriot Act - Homeland Security Act  Private and private-public cooperation - CERT Coordination Center - US-CERT  Government policies and controls on encryptionsoftware  OECD guidelines

Types of Payment Systems

(cont.)

Stored value

Funds deposited into account, from which fundsare paid out or withdrawn as needed, e.g., debitcards, gift certificates

Peer-to-peer payment systems

Accumulating balance

Accounts that accumulate expenditures and towhich consumers make period payments

e.g., utility, phone, American Express accounts

Payment System Stakeholders’

Priorities

Consumers

Low-risk, low-cost, refutable, convenience, reliability

Merchants

Low-risk, low-cost, irrefutable, secure, reliable

Financial intermediaries

Secure, low-risk, maximizing profit

Government regulators

Security, trust, protecting participants and enforcingreporting