Posts: 2,481
Threads: 1,434
Joined: Mar 2010
ABSTRACT
The internet has been a wide usage in all the fields in the present competitive world. It is being used in the education, research, business and what not, in everything. But providing security for the users information or transactions or any other data in any of the field has become a paramount. This paper gives a vivid picture of E-commerce and the vulnerabilities they are facing in providing a secure system for the users. In other words, how the security attacks are made either by the hackers or the intruders, the ways how they attack and exploit to illegitimate means.
This paper is an overview of the security and privacy concerns based on the experiences as developers of E-commerce. E-commerce is a business middleware that accelerates the development of any business transaction-oriented application, from the smallest retailer to the distributor, to the consumer (user). These transactions may apply b between manufacturers and distributors or suppliers. Here, the user needs to be assured with the privacy of his/her information. In this article, we focus on possible attack scenarios in an e-Commerce system and provide preventive strategies, including security features that one can implement.
Here we present you the better ways of how to defend from the attacks and protect your personal data without depending on the network providerâ„¢s security with the help of personnel firewalls and honey pots.
Posts: 2,300
Threads: 878
Joined: Sep 2010
[attachment=5683]
Internet Security – Password Based Authentication and Prevention of Dictionary Attacks
Abstract
Today, the World Wide Web is used for information, commerce, news, weather, music, telephony, audio and video conferencing, database access, file sharing, with new features cropping up almost daily. Each has its own security concerns and weaknesses. The frequency and sophistication of Internet attacks have increased. These changes in the Internet community and its security needs prompted the first bona fide defense measures. The network must be protected from outside attacks that could cause loss of information, breakdowns in network integrity, or breaches in security. As the Internet has matured, however, so have the threats to its safe use, and so must the security paradigms used to enable business use of the Internet. This paper summarizes a multi-dimensional approach (which is mandatory these days to discourage ever-more sophisticated threats to the network) to security in the present scenario as against a single-dimensional approach, which is no longer adequate, and very much a popular target to attack.
Introduction
Single dimensional approach to security is unable to handle the commercialization of Internet and the changing dynamics of the attacks. Two widespread viruses—Melissa and the Love Bug—caused major disruptions of e-mail systems around the world. Business transactions when conducted over an insecure channel pose great risk and attract real criminal activity. A series of distributed denial-of-service attacks interrupted service at many high-profile sites, including Yahoo, CNN, and eBay. As against single dimensional approach, multi dimensional approach uses better security techniques thus preventing attacks that have disrupted businesses. This approach provides a defense mechanism, which gives a controlled and audited access.
Authentication – What? Why? and How?
Authentication refers to the act of verifying the identity of an entity or an object.
A computer can Authenticate humans through -
Biometric Devices such as fingerprint analyzers or retinal scanners which directly identify – who a user is
Smart Cards and physical keys that can authenticate – what the user has
And Passwords which authenticate – what the user knows