|
|
This is only a preview of the paper
Click here to register and get the full text.
Existing members click here to login
|
|
|
Web Security: Is implementation of SSL enough to protect data on an e-commerce site?
Abstract
Web security is a very sensitive and extensive topic. Many aspects of web security have been discussed for years and there are numerous publications and documentations in this regard. The focus of this essay is not to dive deep into the subject, but to touch on one of the component of web security that focuses on SSL and e-commerce. The objective is to explain that in the world of web commerce, data integrity and confidentiality cannot be achieved only by protecting the site by SSL. Security is addressed when all the elements of site vulnerabilities are well covered and protected. This process is initiated when a web server opens its doors to the world, and never finishes as long as it’s accessible.
Introduction
In the recent years we have experienced the bloom and blast of e-commerce sites. Most of major retailers and stores have expanded their sales operations to virtual stores on the web. ... These virtual institutions are open 24 hours a day, and offer variety of services to customers through their web sites. ... However they all have one thing in common; they all use SSL to protect their site from security vulnerabilities. These include protection against interception and modification of data and impersonation. Every day, customers provide these sites with the most private personal and financial information with the confidence that the site and the information are protected by SSL. On the other hand we have seen many cases where a hacker has posted all the credit card numbers hacked from an online site. So are the on-line stores and sites really safe, just because they have implemented SSL?
E-commerce Security goes beyond general web and computer security. The traditional assumptions about computer and web security are not applicable anymore. An e-commerce site allows anyone on the Internet, from anywhere in the world and at any time to access the site without authentication. ... Any vulnerability that bypasses the security of any implemented component can open a door to a hacker to have full access to the entire private and sensitive data. ... Web security should be viewed as a set of procedures, practices and technologies to protect the servers, users and their organization.
Approximate Word count = 1863
Approximate Pages = 7.5
(250 words per page double spaced)
|
|
|
|
|
|