CIS 1310 – HTML & CSS
Download
Report
Transcript CIS 1310 – HTML & CSS
12
E-Commerce Overview
CIS 1310 – HTML & CSS
Learning Outcomes
Define E-commerce
Identify Benefits & Risks of E-Commerce
Describe E-Commerce Business Models
Describe E-Commerce Security & Encryption
Describe Issues Related to E-Commerce
CIS 1310 – HTML & CSS
E-Commerce
In Relation to the Sale of Goods & Services:
Allow Individuals & Organizations to Exchange Information
Integrate Communications, Data Management, & Security
Major Functionality:
◦
Buying of Goods
◦
Selling of Goods
◦
Performance of Financial Transactions over the Internet.
CIS 1310 – HTML & CSS
Advantages
Business
Reduced Costs
Increased Customer Satisfaction
More Effective Data Management
Potentially Higher Sales
Consumer
Convenience
Easier Comparison Shopping
Wider Selection of Goods
CIS 1310 – HTML & CSS
Risks
Business
Need for a Robust, Reliable Web Site
Fraudulent Transactions
Customer Reluctance to Purchase Online
Increased Competition
Consumer
Possible Security Issues
Possible Privacy Issues
Purchasing from Photos & Descriptions
CIS 1310 – HTML & CSS
Issues
Intellectual Property
Security
Fraud
Taxation
International Commerce
CIS 1310 – HTML & CSS
Trends
Positive
Bigger Product Images
Glean More Detail
More Robust Reviews
Useful Coupons
Negative
Smaller and Hidden Product Descriptions
Fail to Give Feedback After Adding Items to the Cart
CIS 1310 – HTML & CSS
E-Commerce Business Models
B2C (Business-to-Consumer)
B2B (Business-to-Business)
C2C (Consumer-to-Consumer)
B2G (Business-to-Government)
CIS 1310 – HTML & CSS
Web Services
Transmit Data Between Companies Using the Internet
Software System
Support Interoperable Machine-to-machine Interaction
Other Systems Interact Using HTTP with XML
CIS 1310 – HTML & CSS
Security
Encryption
Ensures Privacy within Organization & on Internet
Converts Data into an Unreadable Format
Decryption
Process of Converting Ciphertext Back into its Original Form
Ciphertext
Plaintext or Cleartext
Encrypt/Decrypt Process Requires Algorithm & Key
CIS 1310 – HTML & CSS
Symmetric-Key Encryption
AKA Single-key Encryption
Encryption & Decryption Use Same Key
Sender & Receiver Must Know Key
Before Communicating Using Encryption
Advantage: Speed
CIS 1310 – HTML & CSS
Asymmetric-Key Encryption
AKA Public-key Encryption
Two Keys are Created at the Same Time
Public Key
Private Key
Much Slower than Symmetric-key Encryption
CIS 1310 – HTML & CSS
Hash Encryption
Purpose is to Verify Integrity of Information
Hash Algorithm Transforms String of Characters
Creates “Digest”
Shorter Fixed-length Value or Key that Represents Original String
One-way Encryption
For Information that Will Not be Read or Decrypted
CIS 1310 – HTML & CSS
Secure Sockets Layer (SSL)
Protocol that Allows Data to be Privately Exchanged
Over Public Networks
Developed by Netscape
Encrypts Data Sent Between Client & Server
Utilizes Both Symmetric & Asymmetric Keys
https Protocol
Browsers Display a “Lock” Icon
CIS 1310 – HTML & CSS
Secure Sockets Layer (SSL)
Server & (Optionally) Client Digital Certificates
For Authentication
Symmetric-key Cryptography
Using a "Session Key" for Bulk Encryption
Public-key Cryptography for Transfer of Session Key
Hash Encryption to Verify Integrity of Transmission
CIS 1310 – HTML & CSS
Digital Certificate
Form of an Asymmetric Key
Used by SSL to Authenticate Identity of Web Server
Contents of a Digital Certificate Include:
Public Key
Effective Date of Certificate
Expiration Date of Certificate
Details About Certificate Authority (Issuer)
Details About Certificate Holder
A Digest of Certificate Content
CIS 1310 – HTML & CSS
Digital Certificate
Obtaining
Request Certificate from a Certificate Authority
Pay Application Fee
Certificate Authority:
Verifies Your Identity
Issues Your Certificate
Supplies You With a Public/Private Key Pair
Store Certificate In Server, Browser, or E-mail Application
Certificate Authority Makes Your Certificate Publicly Known
CIS 1310 – HTML & CSS