More and more peoples in there daily life use computer to make things that previously they do without computer, for example, buy and sell! Of course, its takes less time and can be done from home, but not so offten peoples thinking about: how safe it is! And from other side seller invent, that he want to start e-commerce, but he not sure what it is and how its works!
This article is for both side...For understanding, how e-commerce mechanism works and how do this cooperation safer!
What is E-commerce?
Electronic commerce or ecommerce is a term for any type of business, or commercial transaction, that involves the transfer of information across the Internet or other network.(www.monstercommerce.com)Different types of E-commerce.
B2B (Business-to-Business)
is a from of electronic commerce in which companies doing business with each other such as manufacturers selling to distributors and wholesalers selling to retailers. Pricing is based on quantity of order and is often negotiable.
B2C (Business-to-Consumer)
is a form of electronic commerce in which products or services are sold from a firm or company to a consumer. This selling usually happened through catalogs, e-shops!
B2E - Business to Employee
is a form of electronic commerce which is more commonly known as an “Intranet”. A basic focus of business is the employee, rather than the consumer! Usually it is some kind of portal for everyone within an organization. This portal is designed to include not only everything that an employee might hope to find on an intranet, but also any personal information and links that the employee might want.·
C2C (Consumer-to-Consumer)
is a form of electronic commerce in which involves the electronically-facilitated transactions between consumers through some third party. A common example is the online auctio, in which a consumer posts an item for sale and other consumers bid to purchase it; the third party generally charges a flat fee or commision. There are also other types of E-commerce, for example, G2G (Goverment-to-Goverment), G2B (Goverment-to-Bussines) and other which are connected to goverment, but these four are the main.
E-commerce and security
How we already know that to make e-commerce we need computer and of course - systems.
Any system which provide any type of e-commerce need to answer four requirements:
✗ privacy: information must be kept from unauthorized parties.
✗ integrity: message must not be altered or tampered with.
✗ authentication: sender and recipient must prove their identities to each other.
✗ non-repudiation: proof is needed that the message was indeed received.These requirements is needed to make safe cooperation between service provider and customer, and, of course, prevent third side interference!
How execute these requirements?
To execute these requirements you can choose one or some of the different sugestions:
✗ PKI – Public Key Infrastructure - to provide privacy and authentication.
✗ Digital Signature – to provide authentication and integrity.
✗ SSL – Secure Socket Layer - to provide privacy and authentication.
✗ Time Stamp and others.
For now, most popular solution in e-commerce security is Secure Socket Layer or SSL. It is so because its merge the best attributes from PKI. SSL uses PKI and Digital Certificates to ensure privacy and authentication. The procedure is something like this: the client sends a message to the server, which replies with a digital certificate. Using PKI, server and client negotiate to create session keys, which are symmetrical secret keys specially created for that particular transmission. Once the session keys are agreed, communication continues with these session keys and the digital certificates. (ecommerce-digest.com)To known that this page is secure with SSL, you need just look to the address bar: if the address begins with "https" and there is padlock icon at the bottom of the page, than you can be sure that this page is safer than other!
Why safer,but not totally safe? Because totally safe web pages didn't exist!Most of e-commerce provider leave the mechanics of security to hosting company or IT staff, but for each who want to start e-commerce, is important known how it works and whats responsibilieties are asked from this side!
To find out more information about e-commerce and security the best way is make special information security awareness training for e-commerce providers and users!
Article source: infosecuritylab
Related Articles
Tips for Network Security
By: InfoSecurityLab | 22/01/2007 | Security
Network in nowadays give us possibilities communicate and do more other things possible and much faster. But not everything is so nice how we thing in first moment. There are a lot of threats which grow up every day in networking!
External Storage Formats for Backup Files
By: InfoSecurityLab | 22/01/2007 | Security
There are many different ways how to store backup copies. The safest way from information security awareness viewpoint, of course, is save these copies on external storage devices and put it as far as possible away from your office.
Back-up Data
By: InfoSecurityLab | 22/01/2007 | Computers
In nowadays computer takes important place almost in every people life. We use computers for all types of things including entertainment, work, and corresponding with others. And there is a lot of important information which we don't want lose. And the better way how to make these data safe from various disasters is to make backup copies!
Information Security Policy
By: InfoSecurityLab | 22/01/2007 | Security
nformation security policy is a set of suggestions (laws) which company has to write to make their information system safe and immune against malicious attacks!
Wireless and Security
By: InfoSecurityLab | 22/01/2007 | Security
Wireless computing gives us freedom of getting online without any restriction in time and space. Now you can take your laptop and get connection to the Internet wherever is offered wireless service. It can be a library, café or even beach. You can also purchase a wireless base station, called a router, for your home so you can get online anywhere in the house or in the immediate vicinity outdoors.
Laptops and Security
By: InfoSecurityLab | 23/01/2007 | Security
Year from year more and more often, people try to find some ways how to spend more time working out of office. And technologies really help them – laptops, wireless internet, other mobile devices, and people have more choice possibility when work and when relax!
Risk Management
By: InfoSecurityLab | 23/01/2007 | Security
From viewpoint of information security awareness, each oraganization need their own information security strategy. And now, it is not only the latest tools or technology. Organization need to understand what exactly they need to protect and why. Risk management is the process of measuring, or assessing
Unbelievable Data Loss Disasters
By: InfoSecurityLab | 23/01/2007 | Security
You need to make backup copies! You must do it regullary! These are the sentences which we heard almost every day, but it is just a words and often, we don't even pay attention to these things! It is so until one moment... One fatal moment and there is no information to our computers and also there is no backup copies from which restore information!
Got a Question? Ask.
Ask the community a question about this article:
Frequently Asked Questions
I can't delete my browser settings, help.. when I ...
By: mathius78 | 24-07-2008
I can't delete my browser settings, help.. when I select tools, delete history, nothing happens. Also, my folder options won't allow me to view hidden files...
For a conventional loan, can you gross-up the ...
By: Charlie | 23-07-2008
For a conventional loan, can you gross-up the social security income on the mortgage application?
And if so, by what % ______% ?
Thank You!
Too expensive
By: sammo | 22-07-2008
I have a small business and its getting too expensive to run checks on people. I do have their names and SS numbers. Any thoughts
Security guard training rhode island
By: digz | 21-07-2008
security guard training rhode island is there any place?
Death of father
By: Gil Pacheco | 21-07-2008
Is it necessary to send a death ctf. to Social Security regarding my father's death?
I am a retired Federal Correctional Officer and ...
By: peptides01 | 21-07-2008
I am a retired Federal Correctional Officer and would like to know,where to get a security job on a oil rig in Texas? Thanks for your time PEPTIDES01@AOL.COM
Q&A Powered by:
Latest Computers Articles
Get the Most Out of Your Nanny Spy Cameras - Use Them For Other Purposes!
By: Nahshon Roberts | 25/07/2008
Lest you think that nanny spy cameras are only good for spying on the nanny, think again. The term is another designation for hidden surveillance cameras, supposedly because these are now more commonly used to monitor childcare providers in an increasingly nanny-paranoid society.
Nanny spy cameras are usually...
Analyzing Consumer Electronics Devices
By: James Brown | 24/07/2008
Many consumers are drawn to consumer electronics because of the technology that makes each device perform its mission. While many consumers might not have a technical degree, many have a working knowledge of what the device is equipped with and the selling points of the device after they enter a...
Types of Consumer Electronics
By: James Brown | 24/07/2008
With so many updates and changes made to consumer electronics lately, some consumers are having a difficult time understanding what types of consumer electronics are most popular among middle class Americans and those who live on limited incomes where budget cuts made most consumer electronics seem unaffordable. Families across the...
Benefits of Unlocked Cellular Phones
By: Abe S. | 24/07/2008
You may not know much about your cellular phone other than that you cannot live without it! Your cell phone is your connection to the rest of the world and is a very important tool. Many cell phones are made to use a SIM card - a Subscriber...
How to Start a Business Selling Cell Phones
By: Abe S. | 24/07/2008
In today's unstable economy with reduced income and rising prices, everyone wants to save money if they can. Even if the economy were booming, saving money is always a wise choice. There is no shame in wanting to save as much money as possible when it comes to...
How Can I Work With Sybase Database Tools?
By: Patricia Stevens | 23/07/2008
To use a Sybase server, you are should have Netscape Enterprise Server. You cannot get an access to Sybase from Netscape FastTrack Server. Sybase has both one-line, and multiline drivers on some Unix-platforms. If Sybase has the multiline driver for the concrete Unix-machine, you are obliged to use LiveWire for...
Baselining--Stress Testing--Performance Testing--Oh My--Part TWO-Testing
By: Barry Koplowitz | 23/07/2008
This article is also available as a Podcast on "The ROOT Cause" available on iTunes. Written and Narrated by Barry Koplowitz.
This is the second of two articles discussing the topic of Test Environments and Testing Practices. The first one, "Baselining--Stress Testing--Performance Testing--Oh My--Part One--Environments," focused on proper testing environment design....
Page Yield / Cartridge Yield
By: Kwan Lo | 23/07/2008
Page yield is the number of pages that you can print with a printer cartridge. It is also known as cartridge yield. Many cartridge manufacturers use the terms "standard yield" or "high yield" to describe their printer cartridge but each cartridge should have a page yield value. It...
More from InfoSecurityLab
Computer Viruses
By: InfoSecurityLab | 23/01/2007 | Security
In information security , computer virus is a manmade program or piece of code that is loaded onto your computer without your knowledge and runs against your wishes.
Internet Attack Methods
By: InfoSecurityLab | 23/01/2007 | Security
The U.S. Government’s National Information Assurance Glossary defines Information Security as: Protection of information systems against unauthorized access to or modification of information, whether in storage, processing or transit, and against the denial of service to authorized users or the provision of service to unauthorized users, including those measures necessary to detect, document, and counter such threats.
Security Using Public Internet Access
By: InfoSecurityLab | 23/01/2007 | Security
Internet comes to peoples lives and then suddenly comes truth, that WE CAN'T LIVE WITHOUT INTERNET. We can't even simple daily activities do without Internet, but not always we can use Internet at work or home. It is a fact and no one can deny that. Because more and more cities going wireless - get wireless network which spread all city so that everyone with laptop an wireless card can get access to the Internet, and also there are Internet café and other Internet access points.
Information Security Endangered
By: InfoSecurityLab | 23/01/2007 | Security
our time is coming. Spy programs are stealing information more easily. The reason is weak algorithms, which provide systems safety, for example data encryption and hashing.
Tips of Security
By: InfoSecurityLab | 23/01/2007 | Security
Information is the lifeblood of most, if not all, modern organisations, so protecting (this) information against unauthorised disclosure, modification or erasure is a basic requirement of management.
Anti-virus Software Comparison Test
By: InfoSecurityLab | 23/01/2007 | Security
Virus.gr tested quite a few different software companies to see how they would stack up against each other. How did the 147,000+ virus test pan out?
Security Awareness
By: InfoSecurityLab | 23/01/2007 | Security
Security awareness is knowledge and attitude members of an organization possess regarding protection of the physical and information assets of that organization. Many organizations require formal security awareness training for all employees when they take up sensitive assignments and, in some cases, periodically thereafter.
Quick Tips of E-mail Security
By: InfoSecurityLab | 23/01/2007 | Security
Feature-rich email is not only a powerful way of communication, but also a major security threat. The more features an email service provides the security holes are made for hackers. In addition to the usual email security headache - executable attachments - HTML messages introduce new problems. HTML is not a plain text, it is rendered and it may contain executable code. You get dozens emails daily. Every time you read an HTML email message - something could be executed. It is just like you woul
Computers 
