Ecommerce: The security problem
One of the deepest issues in e-commerce security is undoubtedly the means of payment. To date, popular banks marking and pay with your credit cards certainly are more affected by this issue. Initially, the transfer of information and data between vendor and customer was not encrypted. This was a huge security problem, since the data transferred were likely to be intercepted by third parties and then used for operations outside the commercial practice. Today, this practice of data transfer has been abandoned in favor of safer practices to ensure greater confidentiality of personal information and thus ensure the goodness of transactions.
In particular, most e-commerce sites today use high levels of encryption, such as:
- Transport Layer Security (SSL / TLS). Combining this with the normal HTTP protocol allows a new protocol: HTTPS. These ensure that your personal information in the form of encrypted packets. In this way, the transmission of information takes place safely, preventing intrusion, tampering and forgery of messages from third parties. The HTTPS protocol guarantees so much the transmission of confidential data, because their integrity.
- Today is definitely the most used, because it is supported by most browsers (Mozilla Firefox, Internet Explorer, Safari, Opera ,…) and requires no special software or password. Pages protected by this protocol are easily recognizable as the writing term “https” before the address of the secure site and its pages are marked with a padlock displayed in the bottom of your browser.
- Secure Electronic Transaction (SET). This protocol is a collaboration of Visa and MasterCard in order to make transactions more secure online payment, ensuring greater privacy and authenticity of data.
To use this protocol it is necessary that the seller has some software on your server and the PC buyer is in possession of a wallet and a PIN, certificate from the company that issued your credit card.
The big news of the SET protocol is the authentication system of the seller and the buyer: the “contractors” have, namely, the ability to identify with certainty before any transaction begins. This is achieved through the use of digital certificates that are issued to both parties from their bank.
In this way, the buyer can verify the identity of the seller, thereby acquiring greater assurance about the goods or services they receive and the seller can check in turn the identity of the buyer, acquiring more guarantees about the payment.
In order, therefore, electronic commerce (eCommerce) can develop is necessary that the people (the first buyer, the seller on the other) to perform their transactions in peace, without fear of external interference. In this sense, takes on great importance with the “user authentication”. Generally, this procedure is done by request from the server a user name which is associated with a password. However, it was demonstrated that this system can not be considered completely safe, since the time of detection of the password by third parties are increasingly smaller.
For this reason, today, it is increasingly recommended you change your password periodically. This is especially true for home banking systems that require their users must change password with a frequency fixed or that make use of a password “disposable (one-time password) which is replaced every time you log in service.
Although the guidelines on e-commerce are mainly to protect the consumer, do not forget the equivalent vendor’s right to operate in the online market calmly. One of the main problems affecting the person who decides to offer a product or service online is definitely non-repudiation by the buyer. In this direction by using a digital signature that makes a digitally signed contract can not be disregarded by those who have signed.
Initially, the transfer of data between e-commerce site and the client took place in the clear. This was a possible safety issue, especially when there was a payment by credit card. With the advent of Secure Socket Layer this risk has been reduced, but then other problems emerged as the emergence of phishing and Trojan viruses that try to steal information used for sinister purposes. With the spread of e-commerce, more insidious scams primarily affect buyers. The main cases are:
- Sales of products from sites owl on receipt of payment is not sent the goods, or is only simulated shipping. This problem also is evident with listings on eBay scam.
- Production of cloned sites with the purpose of stealing information such as credit card details.
- Companies that accumulate bankruptcy orders, and income, with no possibility of escape.
In many countries, the law requires that all e-commerce sites on the home page bring back the VAT and the name of the company. The most important sites of e-commerce have a digital certificate that verifies the authenticity of the site visited.
The main problem in terms of companies is the order management simulation, where they are false or incorrect specification of the dispatch. To reduce the problem many companies only accept advance payments.
The security problem also relates to technology used to access e-commerce. The phone is half unsafe to navigate the e-commerce sites, and to make payments in kind.
Type of E-Commerce Product
Some types of products or services are best suited to online sales, while others are more suitable for the traditional trade. E-commerce companies that have achieved the best performance without however totally virtual entity (without physically opening of shops) usually sell goods such as computer storage media, data recovery and treatment, the sale of music , films, courses and teaching materials, communication systems, software, photography, and financial intermediation. Among these companies is reported as an example: Schwab, Google, eBay, PayPal, Egghead, and Morpheus.
The online retailers are able to collect some success even in the event that also sell products and real services, not as software or digital images online. The digital products that lend themselves to being sold online may be those that create embarrassment (e.g., underwear) and / or those products that have “standard” and that need not be tested or evaluated “live”(e.g., books).
Also spare parts for both end users (e.g., dishwashers, washing machines) and for the needs of industrial activity (e.g., centrifugal pumps) may be considered good examples of products sold via the Internet. Since retailers do not accumulate spare parts at the point-retail, often have to order them later, in which case the competition is not between electronic commerce (eCommerce) and traditional commerce but with the order system provider and / or wholesaler. A key to success in this niche is the ability to offer customers accurate and reliable on the product you need, for example listing the available spare parts together with their identification code.
Therefore it is not surprising to note that, for the characteristics of virtuality (or if tangible, high value-added) and possible embarrassment, the purchase of pornography and sexual activities related to it are the sector with the highest profit margin of Electronic commerce (eCommerce).
Conversely, products that are not fit for the E-commerce are those with a low ratio value / weight of items that have a significant element in regard to their smell, taste or touch, the assets that need to be tested (e.g., shirts) and even if it is relevant to see it to understand all the nuances of color.
Acceptance of electronic commerce (eCommerce)
Consumers have embraced the e-commerce business model less readily than its proponents had expected. Also in classes of products suitable for e-commerce, electronic shopping has developed only slowly. Several reasons may explain the slow diffusion, including:
- Concerns about security. Many people do not use credit card on the Internet for fear of theft and fraud.
- Lack of instant gratification with most Internet purchases. Much of the attractiveness of purchasing a product lies in the immediate gratification of using and buying show. This attraction is not there when the ordered item does not arrive for days or weeks.
- The issue of access to commerce, especially for poor families and nations in the developing world. The limited availability of Internet access in these areas greatly reduces the potential for electronic commerce (eCommerce).
- The social aspect of shopping. Many people like to talk to sales staff, other customers, or their friends: this social side of the attractiveness of retail therapy there with the same size in shopping on the Internet.
Providers of professional services for electronic commerce (eCommerce)
Study: From Wikipedia, the free encyclopedia. The text is available under the Creative Commons.
- Cloud Computing: The Concept and Examples of its Virtual Services | Part 1 - July 23, 2012
- Why Rapidly Growing Companies Need Cloud Computing | Part 1 - July 22, 2012
- Web Designing Process | Strategic Planning | Part 1 - August 7, 2011