Presentation is loading. Please wait.

Presentation is loading. Please wait.

Building Success Websites What to build and what to look out for!

Published byEdwina Sanders Modified over 9 years ago

Similar presentations

Presentation on theme: "Building Success Websites What to build and what to look out for!"— Presentation transcript:

1 Building Success Websites What to build and what to look out for!

2 What do you want to do? Publish company info with an online brochure Take orders for good and/or services Provide services or digital goods Add value to goods and/or services Cut costs

3 Publish company info with an online brochure Simple static information that dominated the web in the early 1990’s How can they fail? – Failure to provide important information – Poor presentation – Failure to respond to customer feedback – Allow info on site to go stale – Fail to track site usage stats

4 Take orders for good and/or services Ways to fail… – Unanswered questions about products/services – Trust – Ease of use – Compatibility – Wrong product – Bad marketing – Grow to fast

5 Provide services or digital goods Think information sites (stocks for instance) or digital media (ebook, video, mp3 etc.) Pros –cheap, immediate delivery Cons – Intellectual property rights (CISC355) Ways to fail – Not securing the IP rights to what customers want – Model is not scalable

6 Add value to goods and/or services Some websites are value added… – Think tracking on ups.com or fedex.com – Support forums for goods/services Ways to fail – Not providing timely responses (think usps.com) – Not adding the value you think you are (how do you get/respond to feedback?)

7 Cut costs Providing PDF manuals online instead of printing/shipping bulky physical copies Replacing brink and mortar stores with online only. – Not having a strategy or understanding your customer base

8 Risks and Threats Crackers – Secure your site against internal and external threats! Failure to attract sufficient business Infrastructure/Scaling issues (power, hardware, network, etc.) Reliance on Shipping Competition Software bugs Government policies and taxes

9 Security Threats to Websites Exposure of confidential data Loss of data Modification of data DoS Attacks Software bugs Repudiation

10 Ways to combat security threats The most secure website is one that is not connected to a network… Unfortunately it is not very usable! Need a balance between security and usability – Authentication – Encryption Private Key Public Key

11 Security… continued Certificates – combine you saying who you are via a Certifying Authority and encryption Data backups Physical Security

12 PHP Authentication Security is not a bolt on afterthought or something you will get to later… Successful websites have security built into the development process… But where to start… How about authentication? – There are many ways to implement but most sites only require a username/password combination

13 Some PHP Authentication Examples Simple Authentication ( secret.php - cool multistate page – very useful!) – What is good about this model? – What is bad about this model? Improved Simple Authentication (secret2.php) – What is good about this model? – What is bad about this model?

14 Encrypt Passwords Anyone have an issue with storing a password in clear text? PHP has several encryption algorithms available… Using one way hash functions – crypt() – old and not very secure – md5() – Message Digest 5 – medium secure – sha1() – Secure Hash Algorithm 1 – most secure

15 Other ways to secure HTTP Authentication Sessions (later chapter)

16

Download ppt "Building Success Websites What to build and what to look out for!"

Similar presentations

Driving Factors Security Risk Mgt Controls Compliance.

Driving Factors Security Risk Mgt Controls Compliance.
Internet Protocol Security (IP Sec)

Internet Protocol Security (IP Sec)
Intro To Secure Comm. Exercise 3. Problem The following scenario is suggested for establishing session keys  Alice and Bob share a secret (key phrase/password)

Intro To Secure Comm. Exercise 3. Problem The following scenario is suggested for establishing session keys  Alice and Bob share a secret (key phrase/password)
1 Chapter 8 Fundamentals of System Security. 2 Objectives In this chapter, you will: Understand the trade-offs among security, performance, and ease of.

1 Chapter 8 Fundamentals of System Security. 2 Objectives In this chapter, you will: Understand the trade-offs among security, performance, and ease of.
SECURITY IN E-COMMERCE VARNA FREE UNIVERSITY Prof. Teodora Bakardjieva.

SECURITY IN E-COMMERCE VARNA FREE UNIVERSITY Prof. Teodora Bakardjieva.
1 MIS 2000 Class 22 System Security Update: Winter 2015.

1 MIS 2000 Class 22 System Security Update: Winter 2015.
Chapters 14 & 15 Internet Databases. E-Commerce  Bringing new products, services, or ideas to market, supporting and enhancing business operations 

Chapters 14 & 15 Internet Databases. E-Commerce  Bringing new products, services, or ideas to market, supporting and enhancing business operations 
1 Pertemuan 12 Authentication, Encryption, Digital Payments, and Digital Money Matakuliah: M0284/Teknologi & Infrastruktur E-Business Tahun: 2005 Versi:

1 Pertemuan 12 Authentication, Encryption, Digital Payments, and Digital Money Matakuliah: M0284/Teknologi & Infrastruktur E-Business Tahun: 2005 Versi:
SECURITY Chapter 15 CNS 3660. Crackers malicious computer users Varying intentions and abilities What motivates people to break into computer systems?

SECURITY Chapter 15 CNS Crackers "malicious computer users" Varying intentions and abilities What motivates people to break into computer systems?
CSA 223 network and web security Chapter one

CSA 223 network and web security Chapter one
Client/Server Computing Model of computing in which very powerful personal computers (clients) are connected in a network with one or more server computers.

Client/Server Computing Model of computing in which very powerful personal computers (clients) are connected in a network with one or more server computers.
6/4/2015National Digital Certification Agency1 Security Engineering and PKI Applications in Modern Enterprises Mohamed HAMDI National.

6/4/2015National Digital Certification Agency1 Security Engineering and PKI Applications in Modern Enterprises Mohamed HAMDI National.
Chapter 12 Network Security.

Chapter 12 Network Security.
FIT3105 Security and Identity Management Lecture 1.

FIT3105 Security and Identity Management Lecture 1.
Wikis And Blogs Their role in the Corporate Environment Kevin Baker Nelson Brodyck Adam Garten-Zutter Darren Makovichuk Cameron Smith.

Wikis And Blogs Their role in the Corporate Environment Kevin Baker Nelson Brodyck Adam Garten-Zutter Darren Makovichuk Cameron Smith.
Chapter 9 Information Systems Controls for System Reliability— Part 2: Confidentiality and Privacy Copyright © 2012 Pearson Education, Inc. publishing.

Chapter 9 Information Systems Controls for System Reliability— Part 2: Confidentiality and Privacy Copyright © 2012 Pearson Education, Inc. publishing.
 Proxy Servers are software that act as intermediaries between client and servers on the Internet.  They help users on private networks get information.

 Proxy Servers are software that act as intermediaries between client and servers on the Internet.  They help users on private networks get information.
SSL (Secure Socket Layer) and Secure Web Pages Rob Sodders, University of Florida CIS4930 “Advanced Web Design” Spring 2004

SSL (Secure Socket Layer) and Secure Web Pages Rob Sodders, University of Florida CIS4930 “Advanced Web Design” Spring 2004
Chapter 8.  Cryptography is the science of keeping information secure in terms of confidentiality and integrity.  Cryptography is also referred to as.

Chapter 8.  Cryptography is the science of keeping information secure in terms of confidentiality and integrity.  Cryptography is also referred to as.
SMUCSE 5349/49 Email Security. SMUCSE 5349/7349 Threats Threats to the security of e-mail itself –Loss of confidentiality E-mails are sent in clear over.

SMUCSE 5349/49 Security. SMUCSE 5349/7349 Threats Threats to the security of itself –Loss of confidentiality s are sent in clear over.

Similar presentations

Ads by Google