Professional Documents
Culture Documents
By
o internet shop
o online marketing
o Other e-marketing
Essential E-commerce Processes
■ Access Control & Security
– Access control
– Authentication
– Security measures
■ Catalog Management
– Pricing calculation
– Product
configuration
– Catalog
Essential E-commerce Processes
■ Search Management
– Content-based search
– Parametric-based search
– Rule-based search
■ Content Management
– Dynamic content generation
– Data repository
Essential E-commerce Processes
■ Payment
– Shopping cart
– Payment method support
– Payment verification
■ Workflow Management
– Buying process automation
– Document management
– Rule & role-based content routing
E-Business Infrastructure Requirements
■ Web Hosting
■ Domain Name Services
■ Location
■ Price
■ Internet Tool Kit
E-Business Infrastructure Requirements
■ Internet Security
■ Internet Security Software
■ Anti-Virus Software
■ Firewall
■ Privacy Policy
■ Legal statement
■ Data sharing
■ Log files
■ Email addresses
E-Business Infrastructure Requirements
■ Broadband Internet Access
■ Narrowband
■ ISDN (Integrated Services Digital
Network)
■ Broadband
■ Faster Uploads and Downloads
■ Affordability
■ Speed
■ Constant Internet Access
■ Reliability
Electronic Payment System
What is Electronic Payment System ?
■ Electronic payment system is a system which helps the customer or user to make
online payment for their shopping.
■ The content of this exchange is usually some form of digital financial instrument
(such as encrypted credit card numbers, electronic cheques or digital cash) that
is backed by a bank or an intermediary, or by a legal tender.
■ The various factors that have lead the financial institutions to make use of
electronic payments are:
– Decreasing technology cost:
– Reduced operational and processing cost:
– Increasing online commerce.
Requirements for e-payments
■ Atomicity
– Money is not lost or created during a transfer
■ Good atomicity
– Money and good are exchanged atomically
■ Non-repudiation
– No party can deny its role in the transaction
Desirable Properties of Digital Money
■ Universally accepted
■ Transferable electronically
■ Divisible
2. PayPal
3. Electronic Cash
5. Smart Cards
■ Then the user is redirected to the bank's website, where one can
authenticate oneself and then approve the payment.
■ It is typically seen as being safer than using credit cards, with the result
that nearly all merchant accounts in India offer it as an option
PayPal
■ PayPal is a global e-commerce business allowing payments and money transfers
to be made through the Internet.
■ The fees depend on the currency used, the payment option used, the country of
the sender, the country of the recipient, the amount sent and the recipient's
account type.
■ Like the serial numbers on real currency notes, the E-cash numbers are
unique.
Most favored E-Wallets in India are Paytm, PayU Money, Mobikwik and
Oxigen
Smart Cards
■ Smart Cards are Plastic card containing an embedded microchip
■ The card issuer (usually a bank) creates a revolving account and grants a line
of credit to the cardholder, from which the cardholder can borrow money for
payment to a merchant or as a cash advance.
Credit Card Transactional
Process
Payment Gateways
o A payment gateway is an e-commerce application service provider service that
authorizes payments for e-businesses, online Shopping, etc.
o Merchant’s risk :
o Main issue:
Secure payment scheme
E-Payment Issues
o Secure transfer across internet
o Atomic transactions
o Anonymity of buyer
o Privacy:
A user expects to trust in a secure system; just as a telephone is
a safe
o Security:
A secure system verifies the identity of two-party transactions
through “user authentication” & reserves flexibility to restrict
information/services through access control
o Intuitive interfaces:
The payment interface must be as easy to use as a telephone.
Designing E-Payment Systems (Contd..)
o Database integration:
With home banking, for ex, a customer wants to play with all
his accounts.
o Brokers:
A “network banker” - someone to broker goods & services,
settle conflicts, & financial transactions
electronically, must be in place
o Pricing:
One fundamental issue is how to price payment system
services.
For e.g., From cash to bank payments, from paper based
to
e-cash. The problem is potential waste of
resources.
o Standards:
Without standards, the welding of different payment users
Security Requirements Of E-Payment Systems
Integrity Privacy
Safety
Authentication Non-repudiation
Security Environment
The E-commerce Security Environment
■ Overall size and losses of cybercrime unclear
– Reporting issues
■ Other factors
– Time value of money
– Cost of security vs. potential loss
– Security often breaks at weakest link
The E-commerce Security Environment
E-Business General Security
Issues
o Confidentiality
o Authentication
o Integrity
o Access Control
o Non-Repudiation
o Firewalls
Customer & Merchant Perspectives On The
Different Dimensions Of E-Business Security
The Tension Between Security and Other
Values
■ Ease of use:
– The more security measures added, the more difficult a site is to use,
and the slower it becomes
1. Internet communications
channels
2. Server level
3. Client level
A Typical E-commerce
Transaction
Vulnerable Points in an Typical E-commerce
Environment
■ Malicious code
– Viruses
– Worms
– Trojan horses
– Bots, botnets
■ Unwanted programs
– Browser parasites
– Adware
– Spyware
Most Common Security Threats
(cont…)
■ Phishing
– Deceptive online attempt to obtain confidential information
– Social engineering, e-mail scams, spoofing legitimate Web
sites
– Use of information to commit fraudulent acts (access checking
accounts), steal identity
■ Spoofing
■ Pharming
■ Insider jobs
■ Once key used to encrypt message, same key cannot be used to decrypt
message
– Hardware or software
1. Packet filters
2. Application gateways
– Upgrades, patches
■ Anti-virus software:
– Easiest and least expensive way to prevent threats to
system integrity
– Requires daily updates
Management Policies, Business Procedures, & Public
Laws
■ Security policy
■ Implementation plan
– Security organization
– Access controls
– Authentication procedures,
inc. biometrics
– Authorization policies, authorization
management systems
■ Develop Security Protocol
■ Security audit
Ethical, Social & Political Issues in E-Business
Understanding Ethical, Social, and Political Issues in
E-Business
■ Internet technology and its use in e-business disrupts existing social and
business relationships and understandings
– Information rights
– Property rights
– Governance
■ Liability
■ Information privacy:
■ Anonymous information:
■ Two models:
– Opt-in
– Opt-out
– e.g. Epic.org
Technological Solutions to Privacy Invasion
on the Web
■ Spyware, cookie, pop-up blockers
■ Designed to provide security for card payments as they travel on the Internet
■ SET specification
– Uses public key cryptography and digital certificates for validating both
consumers and merchants
– Provides privacy, data integrity, user and merchant authentication, and consumer
nonrepudiation
The SET Protocol
Intellectual Property Rights
■ Intellectual property:
– Copyright
– Patent
– Trademark law
■ Primary questions:
– Privatization (1995–1998)
– Self-Regulation (1995–present)
Who Governs E-commerce and the Internet?
■ ICANN
■ Currently, all Internet traffic treated equally – all activities charged the same
rate,
no preferential assignment of bandwidth.
– Passing legislation that will survive court challenges has proved difficult:
– Lower cost
– More familiar software
– Worldwide
connectivity
■ Disadvantages of Web
EDI
– Low speed
– Poor security
The Importance of Electronic Data Interchange
■ Globalization of organizations
EDI Software
1. Document Support
Database
2. Mapping
4. Translation
Communications
X12
3. Standards Support
Value Added Network
(VAN)
o A Value Added Network (VAN) is a private network provider used to
facilitate electronic data interchange (EDI).
1 A
2 B
3 C
4 D
Value Added Network (VAN) EDI:
Buyer Supplier
1 A
2 B
3 C
4 D
Interconnect Strategy Of VAN
EDI
AT&
GE T
VAN VAN
Why do Companies use EDI?
60%
50%
Customer/supplier
Percent
40%
requirement
30%
Quick access to data
20%
Cost savings
10%
Data accuracy/error reduction
0%
1990 1995 2000 2005 2006
In 2006, EDI grew substantially due to customer / major supplier requirements or requests. EDI
is an element used to streamline business processes.
Government Health care Retail Grocery Transportation
Policy
USERS
Construction Manufacturing