Untitled Quiz

Questions and Answers

What type of attack can prevent legitimate users from accessing an online store?

• Worm attack
• Phishing attack
• Trojan horse
• Denial of service (correct)

Which of the following is NOT a consequence of data theft in e-commerce?

• Loss of customers' trust
• Financial losses
• Increased market share (correct)
• Legal consequences

What is one effective method for enhancing security in e-commerce?

• Allowing unlimited login attempts
• Using only basic passwords
• Employing a single security measure
• Implementing Multi-Factor Authentication (correct)

Which of the following is NOT an essential requirement for safe e-payments?

Responsiveness (D)

How might Trojan horses be employed in cyber attacks?

They hijack systems via false software (A)

What is the role of encryption in e-commerce security?

To protect data during transmission (A)

Which factor contributes to uncertainty during online transactions?

Complex payment processes (C)

What does non-repudiability in e-commerce mean?

The sender and recipient cannot deny the transmission of messages (A)

What is a digital signature in the context of e-commerce?

An e-signature that is verified through encryption (B)

Which of the following poses a security risk for businesses in e-commerce?

Counterfeit sites (C)

Flashcards

E-commerce Security

Measures to protect online transactions against unauthorized access, alteration, or denial of information.

Encryption

Encoding data to make it unreadable to unauthorized users.

Digital Signature

Authenticates the sender of a message.

Counterfeit Website

A fake website pretending to be a legitimate company.

Website Alteration

Unauthorized changes to a website's content.

Worm or Virus Attack

A type of attack where malicious software infiltrates and spreads within a company's computer network, potentially causing damage to online stores or systems.

Denial of Service (DoS) Attack

A cyberattack intended to overwhelm an online store's resources by sending a flood of traffic, preventing legitimate users from accessing the website.

Fraudulent Access to Data

Hackers gaining unauthorized access to sensitive information like intellectual property, stealing, altering, or destroying it for their malicious purposes.

Multi-Layer Security

Combining various security measures to strengthen protection against cyber threats, like using a Content Delivery Network (CDN) and multi-factor authentication.

Two-Factor Authentication

An extra security layer requiring users to provide two forms of identification (e.g., password and a code sent to their phone) to access their account.

Study Notes

E-Commerce Security Systems

• Security is crucial for online transactions
• Customer trust is lost if security is compromised
• Essential requirements for secure payments:
  • Confidentiality: Information must not be accessible to unauthorized users
  • Integrity: Information must not be altered during transmission
  • Availability: Information must be available when needed
  • Authenticity: Users must be authenticated before accessing information
  • Non-Repudiability: Sender/recipient cannot deny actions
  • Encryption: Data must be encrypted and decrypted only by authorized users
  • Auditability: Data must be auditable for integrity

E-Commerce and Internet Marketing Security Environment

• Encryption: Data is encrypted using secret codes, only the receiver can decrypt it
• Digital Signatures: Authenticate information through encryption and passwords
• Security Certificates: Unique digital IDs verify user/website identity
• Security Risks in E-commerce:
  • Counterfeit Websites: Fake versions of legitimate sites, damaging reputation

Security Threats in E-Commerce

• Malware, Viruses, and Online Frauds:
  • Hackers use malware to cause financial losses and reputation damage.
  • Trojan horses, worms, and viruses infect systems.
• Uncertainty and Complexity in Online Transactions:
  • Online transactions can be vulnerable to fraud in areas like payment, dispute resolution, and delivery

E-commerce Website Security Measures

• Multi-Layer Security:
  • Use Content Delivery Networks (CDNs) to block Distributed Denial-of-Service (DDoS) attacks

E-Commerce Policies

• Terms of Service: Rules and regulations for website usage.
• Privacy Policy: Required by law (e.g., GDPR), for data processing consent, anonymity, and breach notification
• Returns and Exchanges Policy: Policies for returns and exchanges
• Shipping Policy: Details regarding shipping options, costs, and times.
• Taxes: Must adhere to sales tax regulations in relevant jurisdictions based on nexus

Static vs Dynamic Websites

• Static Websites: Fixed pages, simple layout, fast loading, low cost
  • Advantages: Fast, cheaper hosting
  • Disadvantages: Difficult to change, limited functionality
• Dynamic Websites: Interactive & functional pages, frequently updated content, complex structures, higher costs
  • Advantages: Interactive, easy updates, versatile, quicker responsiveness
  • Disadvantages: Slower loading times, higher costs, more complex