Presentation is loading. Please wait.

Presentation is loading. Please wait.

E-C OMMERCE S ECURITY Presented by SAGAR CHAKRABORTY.

Published byIrene Jackson Modified over 9 years ago

Similar presentations

Presentation on theme: "E-C OMMERCE S ECURITY Presented by SAGAR CHAKRABORTY."— Presentation transcript:

1 E-C OMMERCE S ECURITY Presented by SAGAR CHAKRABORTY

2 W HAT IS C OMMERCE AND E-C OMMERCE ? Commerce --Commerce refers to all the activities the purchase and sales of goods or services. --Marketing, sales, payment, fulfillment customer service E-Commerce --Electronic commerce (E-Commerce) is doing commerce with the use of computers, networks and commerce-enabled software (more than just online shopping)

3 A PPLICATIONS OF E-C OMMERCE Online Shopping Supply chain management Video on demand Remote banking Procurement and purchasing Online marketing and advertisement Auctions

4 Increased sales Reach narrow market segments in geographically dispersed locations Create virtual communities Decreased costs Handling of sales inquiries Providing price quotes Determining product availability A DVANTAGES OF E LECTRONIC C OMMERCE

5 D ISADVANTAGES OF E LECTRONIC C OMMERCE Loss of ability to inspect products from remote locations Rapid developing pace of underlying technologies Difficult to calculate return on investment Cultural and legal impediment Payment Security

6 E-C OMMERCE : C HALLENGES Trusting others electronically --E-Commerce infrastructure Security threats – the real threats and the perceptions Network connectivity and availability issues --Better architecture and planning Global economy issues --Flexible solutions

7 T RUSTING OTHERS ELECTRONICALLY : Q UESTIONS Am I connected to the correct web site? Is the right person using the other computer? Did the appropriate party send the last email? Did the last message get there in time, correctly?

8 E-C OMMERCE : S OLUTIONS T RUSTING O THERS Public-Key Infrastructure (PKI) Distribute key pairs to all interested entities Certify public keys in a “trusted” fashion --The Certificate Authority Secure protocols between entities Digital Signatures, trusted records and non- repudiation

9 E-C OMMERCE : S ECURITY T HREATS Authentication problems Privacy problems Integrity problems Repudiation problems

10 S ECURE P ROTOCOLS How to communicate securely: SSL – “the web security protocols” SET – “credit card transaction security protocol” IPSEC – “the IP layer security protocol” SMIME – “the email security protocol”

11 S ECURE S OCKET L AYER (SSL) Authenticate Client and Server to each other. Operates between application and transport layers TCP/IP SSL HTTPNNTP Web Applications FTP Future Apps Etc.Telnet

12 C ONTD ….. Negotiates and employs essential functions for secure transactions Mutual Authentication Data Encryption Data Integrity Data Privacy Send Session messages

13 S ECURED E LECTRONIC T RANSACTIONS (SET) Developed by VISA & MasterCard SET Specifications: Digital Certificates (Identification) Public Key (Privacy) On-Line Shopping Steps: C.H. Obtain Digital Wallets C.H. Obtain Digital Certificates C.H. & Merchants conduct Shopping Dialog Authentication & Settlement Process

14 E-C OMMERCE : C HALLENGES C ONNECTIVITY AND AVAILABILITY Issues with variable response during peak time Guaranteed delivery, response and receipts Spoofing attacks Attract users to other sites Denial of service attacks Prevent users from accessing the site Tracking and monitoring networks

15 E-C OMMERCE : C HALLENGES G LOBAL E CONOMY Variable connectivity levels and cost Variable economies and cultures Taxation and intellectual property issues Interoperability between different economies

16 R EFERENCES [1] David J. Olkowski, Jr., “Information Security Issues in ECommerce”, SANS GIAC Security Essentials, March26,2001. [2] Paul A. Greenberg, “In E-Commerce We Trust … Not “, Ecommerce Time, February 2, 2001, URL: http://WWW.ecommercetimes.com/perl/story/?id=7194. http://WWW.ecommercetimes.com/perl/story/?id=7194 [3] William Stallings, “Cryptography and network Security”, 3rd edition, Prentice Hall,2003. [4] Michall E. Whitman and Herbert J. Maiiord, “Information Security”, Thomson, Inc., 2003. [5] Dave Chaffey, “E-Business and E-Commerce”, 2nd, Prentice Hall, 2005 [6] Mark Merkow. Jim Breithaupt, "Information Security Principles and Practices", Pearson Prentice Hall, 2006.

17 T HANK Y OU ……..

Download ppt "E-C OMMERCE S ECURITY Presented by SAGAR CHAKRABORTY."

Similar presentations

Chapter 10 Encryption: A Matter of Trust. Awad –Electronic Commerce 1/e © 2002 Prentice Hall 2 OBJECTIVES What is Encryption? Basic Cryptographic Algorithm.

Chapter 10 Encryption: A Matter of Trust. Awad –Electronic Commerce 1/e © 2002 Prentice Hall 2 OBJECTIVES What is Encryption? Basic Cryptographic Algorithm.
Security Controls and Systems in E-Commerce

Security Controls and Systems in E-Commerce
CP3397 ECommerce.

CP3397 ECommerce.
Cryptography and Network Security

Cryptography and Network Security
SSL : An Overview Bruhadeshwar Bezawada International Institute of Information Technology, Hyderabad.

SSL : An Overview Bruhadeshwar Bezawada International Institute of Information Technology, Hyderabad.
SECURITY IN E-COMMERCE VARNA FREE UNIVERSITY Prof. Teodora Bakardjieva.

SECURITY IN E-COMMERCE VARNA FREE UNIVERSITY Prof. Teodora Bakardjieva.
1 Pertemuan 12 Authentication, Encryption, Digital Payments, and Digital Money Matakuliah: M0284/Teknologi & Infrastruktur E-Business Tahun: 2005 Versi:

1 Pertemuan 12 Authentication, Encryption, Digital Payments, and Digital Money Matakuliah: M0284/Teknologi & Infrastruktur E-Business Tahun: 2005 Versi:
E-Business Risks Chapter Seven. E-Business Models EDI Web pages The online environment Distributed e-business and intranets Supply chain linkage Collaborative.

E-Business Risks Chapter Seven. E-Business Models EDI Web pages The online environment Distributed e-business and intranets Supply chain linkage Collaborative.
Principles of Information Systems, Sixth Edition Electronic Commerce Chapter 8.

Principles of Information Systems, Sixth Edition Electronic Commerce Chapter 8.
Client/Server Computing Model of computing in which very powerful personal computers (clients) are connected in a network with one or more server computers.

Client/Server Computing Model of computing in which very powerful personal computers (clients) are connected in a network with one or more server computers.
Electronic Transaction Security (E-Commerce)

Electronic Transaction Security (E-Commerce)
Principles of Information Systems, Sixth Edition 1 Electronic Commerce Chapter 8.

Principles of Information Systems, Sixth Edition 1 Electronic Commerce Chapter 8.
Cryptography and Network Security Chapter 17

Cryptography and Network Security Chapter 17
EMTM 553 Electronic Commerce Systems

EMTM 553 Electronic Commerce Systems
EMTM 553 Electronic Commerce Systems

EMTM 553 Electronic Commerce Systems
Elias M. Awad Third Edition ELECTRONIC COMMERCE From Vision to Fulfillment 13-1© 2007 Prentice-Hall, Inc ELC 200 Day 23.

Elias M. Awad Third Edition ELECTRONIC COMMERCE From Vision to Fulfillment 13-1© 2007 Prentice-Hall, Inc ELC 200 Day 23.
Building E-Commerce and E-Learning Models Hassanin M. Al-Barhamtoshy

Building E-Commerce and E-Learning Models Hassanin M. Al-Barhamtoshy
Electronic Commerce. On-line ordering---an e-commerce application On-line ordering assumes that: A company publishes its catalog on the Internet; Customers.

Electronic Commerce. On-line ordering---an e-commerce application On-line ordering assumes that: A company publishes its catalog on the Internet; Customers.
Management Information system E-commerce E-business Supervised by: Miss : Rasha Ragheb Atallah Presentation provided by: Salah Imad AlQady Ramzy Shafeeq.

Management Information system E-commerce E-business Supervised by: Miss : Rasha Ragheb Atallah Presentation provided by: Salah Imad AlQady Ramzy Shafeeq.
Secure Electronic Transactions (SET). SET SET is an encryption and security specification designed to protect credit card transactions on the Internet.

Secure Electronic Transactions (SET). SET SET is an encryption and security specification designed to protect credit card transactions on the Internet.

Similar presentations

Ads by Google