To develop an E-commerce website we have to create a security policy. Some issues are point out below to build secure ecommerce website.
- How important is your information?
- Security threats
- Designing a security strategy
- Balancing usability, performance, cost and security
- Authentication principles
- Using authentication
- Encryption basics
- Private key encryption
- Public key encryption
- Digital signatures
- Digital certificates
- Secure web server
- Auditing and logging
- Backup data
- Physical security
How important is your information?
When considering website security, you need to assess the importance of data to both you and the hackers. It might be attractive to maintain highest level of security, but it increases the website development and maintenance cost. So, you have to calculate costs to implement security polices and the value of the information.
Security threats might include the following points. It depends on your website.
- Disclosure of secret data
- Passing or demolition of data
- Mutation of data
- Denial of service
- Inaccuracy in software
The above security threats will be discuss in details on next tutorials.