Professional Documents
Culture Documents
Kenneth C. Laudon
Carol Guercio Traver
Slide 5-1
Chapter 5
Online Security and Payment
Systems
Slide 5-2
Slide 5-3
Slide 5-4
Slide 5-5
Types of
Attacks
Against
Computer
Systems
Figure 5.3, Page 264
Slide 5-6
New technologies
Organizational policies and procedures
Industry standards and government laws
Other factors
Slide 5-7
Slide 5-8
Slide 5-9
Slide 5-10
Client
Server
Communications pipeline
Slide 5-11
A Typical
E-commerce
Transaction
Figure 5.5, Page 270
Slide 5-12
Slide 5-13
Slide 5-14
Malicious Code
Viruses:
Worms:
Trojan horse:
Bots:
Slide 5-15
Unwanted Programs
Browser parasites
Can
Adware
Calls
Spyware
Can
Slide 5-16
Slide 5-17
Hacker:
Cracker:
Cybervandalism:
Types of hackers
White hats
Black hats
Grey hats
Slide 5-18
Slide 5-19
Spoofing (Pharming)
Slide 5-20
Slide 5-21
Sniffing:
Insider jobs
Slide 5-22
Technology Solutions
Slide 5-23
Tools
Available to
Achieve Site
Security
Figure 5.9, Page 284
Slide 5-24
Encryption
Provides:
Message
integrity
Nonrepudiation
Authentication
Confidentiality
Copyright 2009 Pearson Education, Inc. Publishing as Prentice Hall
Slide 5-25
Slide 5-26
Slide 5-27
Slide 5-28
Hash function:
Slide 5-29
Slide 5-30
Digital Envelopes
Slide 5-31
Slide 5-32
Name of subject/company
Subjects public key
Digital certificate serial number
Expiration date, issuance date
Digital signature of certification authority (trusted
third party institution) that issues certificate
Other identifying information
Slide 5-33
Slide 5-34
Slide 5-35
Insight on Society
Slide 5-36
S-HTTP:
Slide 5-37
Slide 5-38
Protecting Networks
Firewall
filters
Application
gateways
Slide 5-39
Slide 5-40
Anti-virus software:
Slide 5-41
Slide 5-42
Risk assessment
Security policy
Implementation plan
Security organization
Access controls
Authentication procedures
Biometrics
Authorization policies
Authorization
management systems
Security audit
Slide 5-43
Slide 5-44
Insight on Technology
Slide 5-45
OECD guidelines
Slide 5-46
Cash
Checking Transfer
Credit Card
Stored Value
Accumulating Balance
Slide 5-47
Cash
Legal tender
Slide 5-48
Checking Transfer
Some float
Slide 5-49
Credit Card
Issuing banks:
Slide 5-50
Stored Value
e.g. PayPal
Slide 5-51
Accumulating Balance
Slide 5-52
Slide 5-53
Digital wallets
Digital cash
Digital checking
Slide 5-54
Slide 5-55
Security:
Cost:
Social equity:
Slide 5-56
Digital Wallets
Slide 5-57
Digital Cash
Slide 5-58
Smart cards
Mondex
EZPass
Octopus
Slide 5-59
Valistas PaymentsPlus
Clickshare
Slide 5-60
Example: PayByCheck
Slide 5-61
Slide 5-62
Insight on Business
Slide 5-63
Slide 5-64
Slide 5-65