E-Commerce

Security Issues of E-commerce.Tools to manage the risks.

E-Commerce Starts….

E- commerce is a short for electronic commerce. It has become synonymous with buying and selling over the internet

E-commerce includes all business transactions that use electronic communications and digital information processing technology

EDI is the early form of E-commerce

Contd.….

The internet made possible the rapid global adoption of E-commerce because of lower costs involved and it is being based on open standards

E-commerce is concerned with the buying and selling information, products and services over communication networks

Meaning and Definition of E-Commerce

WTO defines E-commerce as “ a commercial process that include productions, distributions, sales or delivery of goods and services through the electronic means”.

E-commerce emphasizes the generation and exploitation of new business opportunities over internet.

Importance of E-commerce

Benefits include: better quality, greater customer satisfaction, better decision making, low cost, high speed and real time interaction

1. Customization

2. New markets

3. Efficient use of resources

4. Employment opportunities

5. Quick and speedy disposal of customers

6. Managing competition

Types of E-commerce

Business -to- Business(B2B)

Business -to- Consumer(B2C)

Business -to- Government(B2G)

Business -to- Employee(B2E)

Consumer -to- Consumer(C2C)

Business -to- Business(B2B)

Business to Business e-commerce has been in use for quite a few years and is more commonly known as EDI (electronic data interchange).

In the past EDI was conducted on a direct link of some form between the two businesses where as today the most popular connection is the internet.

The two businesses pass information electronically to each other. B2B e-commerce currently makes up about 94% of all e-commerce transactions

ChemConnect.com and Chemdex.com (which deal with chemicals) are B2B E-commerce initiatives, that bring two firms together on the virtual market place.

Business -to- Consumer(B2C)

Business to Consumer e-commerce is relatively new to some countries.

This is where the consumer accesses the system of the supplier.

It is still a two way function but is usually done slowly through the Internet

Amazon.com, which sells books over the Internet, is an example of a B2C E-commerce initiative where the company gets in touch with its consumers directly.

Consumer -to- Business(C2B)

Consumer to Business is a growing arena where the consumer requests a specific service from the business.

Example: Harry is planning a holiday in Darwin. He

requires a flight in the first week of December and is only willing to pay $250. Harry places a submission with in a web based C2B facility.JetAirways accesses the facility and sees Harry's submission. Due to it being a slow period, the airline offers Harry a return fare for $250.

Business -to- Employee(B2E)

Business to Employee e-commerce is growing in use.

This form of e-commerce is more commonly known as an 'Intranet'.

An intranet is a web site developed to provide employees of an organization with information.

The intranet is usually accessed through the organization's network, though it can and is often extended to an entrant who uses the Internet but restricts uses by sign on and password.

Consumer -to- Consumer(C2C)

These sites are usually some form of an auction site. The consumer lists items for sale with a commercial

auction site. Other consumers access the site and place bids on

the items. The site then provides a connection between the

seller and buyer to complete the transaction. The site provider usually charges a transaction cost.

In reality this site should be call C2B2C. E.g.: www.eBay.com

Benefits of E-Commerce

To Customers1. Providing value to customers. 2. Providing service and performance 3. Providing an incentive for customers to buy and

to return. 4. Providing personal attention. 5. Providing a sense of community. 6. Owning the customer's total experience. 7. Letting customers help themselves. 8. Helping customers do their job of consuming.

Benefits contd……

To Business Organization1. lower transaction costs

2. reduce inventory holdings

3. provide a competitive business advantage

4. expand one's market network

5. increase speed to market

6. streamline supply chain management

Applications of E-commerce

E-commerce and baking

E-commerce and retailing

Online based shopping

Online publishing

E-commerce and baking

ATM Card Debit card and Credit Cards Western Union Money Transfer Payment of bills & taxes

E-commerce and retailing

Internet Retailing is selling retail goods or services through the Internet. Also Known As Retail E-Commerce

Eg- B2C business

Online based shopping

Online based shopping is the transaction of payment at the same time.

Eg- buying an laptop from www.ebay.com

Security issues of E-commerce

E-commerce is buying and selling of goods and services across the world through internet

Issues are the following– Economic issues – Social issues – Privacy issues– Technical issues

Security Objectives

DATA

Protect Integrity

DATA

Protect Confidentiality

DATA

Easy Availability

Major Risks faced in E-Commerce

Spoofing– Building illegitimate web sites that appear to be

published by established organizations

Unauthorized Disclosure– Hackers catches the valuable&sensitive information

Unauthorized Action & Data alteration– Does some malfunctions to the information flowing

Eavesdropping– Unprotected information can be diverted to some

other route

Security Tools For Risk Management

Many tools are available to ensure the security of E-commerce

Major threats include viruses, worms, Trojans, hackers, denial of services, sniffers and information theft.

To protect the information from these threats, many security tools are being used.

Security tools are……

They include Anti-virus programs

Eg- Norten antivirus, AVG antivirus, Panda anti virus…etc

Integrity checking softwareEg- afick - Another File Integrity Checker, HP Data Integrity Check LTU,HP Storage Works Data Integrity Check LTU

Audit logsEg-Security audit log,

Security tools are……

FirewallsEg-kaspersky firewall, AVG Firewall, Panda Firewall

Backup and restore s/w & h/w Eg-Nero backup. Encryption

Eg-Power archiver, winzip, winrar…etc Digital signature Digital certificates

VeriSign --A Certification Authority

Structure of a VeriSign Certificate