- Paperback: 304 pages
- Publisher: John Wiley & Sons; Highlighted edition (17 Feb 1998)
- Language English
- ISBN-10: 0471192236
- ISBN-13: 978-0471192237
- Product Dimensions: 23.1 x 18.8 x 1.8 cm
- Average Customer Review: 4.3 out of 5 stars See all reviews (3 customer reviews)
- Amazon Bestsellers Rank: 1,488,286 in Books (See Top 100 in Books)
- See Complete Table of Contents
Did you know you can trade in your old books for an Amazon.co.uk Gift Card to spend on the things you want? Visit the Amazon.co.uk Trade-In Store for more details. |
Product details |
More About the Author
Product Description
Amazon.co.uk Review
Online security investigator and research scientist Anup Ghosh takes a realistic look at the state of security for electronic commerce. He is neither a Pollyanna believing that all is fine, nor a doomsayer predicting catastrophe for transactions lacking virtual armour. In fact, he feels that some levels of security are excessive. But he emphasises that any security system is only as strong as its weakest point. If you're going to trust your money to online transactions, you need to know where your weaknesses lie and how to correct them.
To that end, Ghosh discusses real-life security failures, how they occurred and how recurrences can be prevented. He then takes a systematic look at the areas of risk. One chapter deals with potential problems in active Web content, such as Java applets, ActiveX controls and push technology. He examines data protocols to secure transactions with the warning that the data can be vulnerable before and after the secure transmission. The weaknesses of server hardware and software come under scrutiny as well. Ghosh calls for greater attention to security as software and looks at what advances are likely to be coming down the road. --Elizabeth Lewis
Product Description
"This is a very important book . . . mandatory reading for anyone thinking about getting into e–commerce."–Peter G. Neumann Moderator of the Risks Forum and author of Computer Related Risks
The World Wide Web is changing the way the world engages in business. With this paradigm shift comes uncertainty about how secure e–commerce transactions are over an inherently insecure medium–the Internet. Businesses have learned the hard way that there is no "silver bullet" solution–not encryption, not firewalls, not even secure protocols. Like a chain, the security of e–commerce is only as strong as its weakest link.
Written by security expert Anup K. Ghosh, E–Commerce Security highlights the weak links and provides best defenses for individuals and enterprises connected to the Internet. This valuable guide addresses vulnerabilities in four essential components of electronic commerce–the data transport protocol, Web server, Web clients, and the network server operating system.
E–Commerce Security:
∗ Exposes the dangers of new Internet innovations in today′s Web browsers, including push technology and desktop integration with the Internet
∗ Methodically explains the dangers of active content programs downloaded from Web sites, such as Java applets, ActiveX controls, and JavaScript
∗ Provides a comparison of different secure protocols for e–commerce, including digital cash protocols used in smart cards
∗ Presents security considerations for Web servers, online databases, and server–side application software
∗ Details shortcomings in firewall technology and other host security measures.
Visit our website at www.wiley.com/compbooks/
Visit this book′s companion website at www.rstcorp.com/EC–security.html.
The World Wide Web is changing the way the world engages in business. With this paradigm shift comes uncertainty about how secure e–commerce transactions are over an inherently insecure medium–the Internet. Businesses have learned the hard way that there is no "silver bullet" solution–not encryption, not firewalls, not even secure protocols. Like a chain, the security of e–commerce is only as strong as its weakest link.
Written by security expert Anup K. Ghosh, E–Commerce Security highlights the weak links and provides best defenses for individuals and enterprises connected to the Internet. This valuable guide addresses vulnerabilities in four essential components of electronic commerce–the data transport protocol, Web server, Web clients, and the network server operating system.
E–Commerce Security:
∗ Exposes the dangers of new Internet innovations in today′s Web browsers, including push technology and desktop integration with the Internet
∗ Methodically explains the dangers of active content programs downloaded from Web sites, such as Java applets, ActiveX controls, and JavaScript
∗ Provides a comparison of different secure protocols for e–commerce, including digital cash protocols used in smart cards
∗ Presents security considerations for Web servers, online databases, and server–side application software
∗ Details shortcomings in firewall technology and other host security measures.
Visit our website at www.wiley.com/compbooks/
Visit this book′s companion website at www.rstcorp.com/EC–security.html.
Inside This Book
(Learn More)
First Sentence
Electronic commerce, or e-commerce, is changing the way in which consumers, merchants, and businesses interact and transact. Read the first page
Front Cover | Copyright | Table of Contents | Excerpt | Index | Back Cover
Electronic commerce, or e-commerce, is changing the way in which consumers, merchants, and businesses interact and transact. Read the first page
Explore More
Concordance
Browse Sample PagesConcordance
Front Cover | Copyright | Table of Contents | Excerpt | Index | Back Cover
Tag this product(What's this?)Think of a tag as a keyword or label you consider is strongly related to this product.
Tags will help all customers organise and find favourite items. |
Sell a Digital Version of This Book in the Kindle Store
If you are a publisher or author and hold the digital rights to a book, you can sell a digital version of it in our Kindle Store.
Learn more
Customer Reviews
|
Share your thoughts with other customers:
|
||||||||||||||||||||||
|
Most Helpful Customer Reviews
2 of 2 people found the following review helpful:
4.0 out of 5 stars
Good coverage of Web-related e-commerce security issues,
By A Customer
This review is from: E-Commerce Security (Paperback)
The title is ever so slightly misleading in that the topic is not electronic commerce as a whole, but the (admittedly most popular) Web segment of it. However, within this limit, the book does provide solid coverage and good advice for a whole range of issues.Chapter one is a general introduction to the factors involved, looking at some recent "attacks" of various types, and then reviewing the client, transport, server, and operating system components to be examined in the remainder of the book. Client (generally browser) flaws are covered thoroughly in chapter two. The breadth of coverage even includes mention of topics such as the concern for privacy considerations with cookies. Active content is the major concern, with an excellent discussion of ActiveX (entitled "ActiveX [In]security"), a reasonably detailed review of the Java security model, and a look at JavaScript. Unfortunately, very little of this touches directly on e-commerce as such, except insofar as insecure client technology is going to make e-commerce a harder sell to the general public. While covering the transport of transaction information, in chapter three, Ghosh makes an interesting distinction between stored account systems (where you want to secure the transmission of identification data) and stored value systems (where the data, once transmitted, is useless to an eavesdropper). Many books concentrate on either channel security or electronic cash systems, so this comparison is instructive. A server involves multiple programs, and may involve multiple machines. Server security can quickly become complex, and this is quite evident in chapter four. While a great deal of useful and thought-provoking information is presented, the complicated nature of the undertaking works against this chapter. Not all topics are dealt with thoroughly, or as well as the previous material was. Oddly, one issue not covered in depth is the firewall, which is handled very well in chapter five, with operating system problems. Ghosh sets up a classification scheme for OS attacks, illustrated by specific weaknesses in Windows NT and UNIX. The book ends in chapter six with a call for certification of software, greater attention to security in all forms of software, and, interestingly, for greater use of component software. (From the jacket material, it appears that Ghosh is currently involved in the promotion of component software systems.) Each chapter ends with a set of references. Unlike all too many books with bibliographies stuff with obscure citations from esoteric journals, the bulk of the material listed is available on the Internet. A separate section lists Web sites used in the text. The various issues dealt with in the book are explained clearly, and generally present counsel on the best practices for secure online commerce. A compact but comprehensive guide to the current state of electronic transaction security.
5.0 out of 5 stars
great overview of the security issues for internet commerce,
By A Customer
This review is from: E-Commerce Security (Paperback)
This book is an excellent overview of the fundamental problems that need to be solved in order to build a secure internet-commerce system. It covers client-, server-, protocol-, and OS- related security holes and pitfalls. The author did a very good job of both painting the broad picture as well as giving concrete, real-world examples. I'm new to the e-commerce domain and this book did an excellent job of introducing me to the manifold pitfalls awaiting the unaware. I also very much liked how the author recommended concrete but general steps to take in order to avoid or minimize each category of vulnerability which he identified. A fascinating book on a fascinating topic.
0 of 1 people found the following review helpful:
4.0 out of 5 stars
An overall,
By A Customer
This review is from: E-Commerce Security (Paperback)
A very good starting book to understand the security aspects of e-commence. Correct views(e.g. The auther emphasized the importantance of the security of two communication ends) and moderate knowledge.
Share your thoughts with other customers: Create your own review
Would you like to see more reviews about this item?
|
|
Listmania!
Look for similar items by category
- Books > Business, Finance & Law > E-Commerce > E-business
- Books > Business, Finance & Law > E-Commerce > E-commerce
- Books > Business, Finance & Law > E-Commerce > Managers' Guides to Computing
- Books > Business, Finance & Law > Management > Management Skills > Communication & Presentation > Information Systems
- Books > Computing & Internet > Networking & Security > Security > Cryptography & Encryption
- Books > Computing & Internet > Networking & Security > Security > Network Security
- Books > Scientific, Technical & Medical
Look for similar items by subject
Feedback
- Would you like to update product info or give feedback on images?
- I am the Author, and I want to comment on my book.
- I am the Publisher, and I want to comment on this book.
