The security of e-commerce website design and management

Jul 5 posted in Development (RSS), comments.

The design of e-commerce website security needs

1. Network Security: how to prevent attacks on e-commerce site of the attack or equipment

2. Transaction security: trade secrets of how to guard against leakage of the process, to deceive, deny, etc.

3. System Security: It is critical data recovery and backup

Section II Access Control

1. The design of e-commerce website security needs

2. Access Control

1) the concept of

Through a set of mechanisms to control the different levels of the main network of protected resources is not the object

Unauthorized access to the same level

2) functions:

Ø illegal access to the main network resources protected

Ø legitimate users access to protected network resources

Ø prevent legitimate users of protected non-authorized access to resources

3) Center is the realization of the main body and the object of identification and authentication of the subject of unauthorized access

3. Implementation Strategy

1) Network Access Control:

Username Ø Identification and authentication,

Ø user identification and password authentication,

Ø the default user account limit checks

2) Network Access Control:

Ø trustee assigned: assigned to control the user or group how to use the web server directory, documents and equipment

Ø shielding inheritance rights: the equivalent of a filter to restrict subdirectory inheritance from the parent directory permissions which

Ø user is divided into: special users, general users, audit user

Ø user access to network resources can be used to describe the access control table.

3) The directory-level security control:

Ø Administrator privileges

Ø Reading Permissions

Ø write permission

Ø Create permissions

Ø delete permissions

Ø modify the permissions

Ø Find file permissions

Ø access control permissions

Depends on two factors:

Ø users and user groups assigned to the trustee

Ø inheritance rights

4) security control attributes

Ø write data to a file

Ø copy

Ø to delete the directory or file

Ø See the directory or file

Ø implementation of document

Ø hidden files

Ø Sharing

Ø System Properties

Section III of the firewall

1. Firewall Design

1) the design of the firewall in the security role

Ø refused without any special permission to visit

Ø not specifically refused to allow any visit

2) The overall security policy

3) the economic cost of the firewall

4) components of a firewall system or component

2. Firewall Product Selection

1) ease of firewall management

2) a firewall of its own security

3) NCSC in the accreditation standards

4) best able to make up for lack of other operating systems

5) can provide users with the choice of different platforms

6) to the user able to provide comprehensive after-sales service

7) Consider the special needs of enterprises

Section IV of VPN technology

1. The definition of

Also known as virtual private networks is the use of public network infrastructure, technology and other means through the tunnel to reach a similar network of private post-secondary transmission of a data security technologies, public networks including the Internet, frame relay, ATM, etc.

2. Advantages

Ø Safety

Ø QOS

Ø simple

Ø low-cost

3. Three options

Ø Remote Access VPN

Ø intranet VPN

Ø expansion VPN

4. IPSec VPN

1) The client expressly sent into the IP-VPN devices,

2) First of all, by the access control module to decide whether to allow their access to public networks,

3) If permitted, in accordance with the rules of safe settings, to determine expressly entered directly, or should be encrypted tunnel into the safe,

4) In the case of encrypted messages to the general need for encryption and a summary of signatures certified to deal with, and ensure the integrity of message and be able to identify and

5) and then enter the public IP network in accordance with the request message to re-IP package

6) Finally, after the package by the IP packet transmitted through the public purpose of the Internet client.

7) to receive the opposite side through the process of decryption of the message

1. Tunneling Protocol

Is a network security agreement, a network protocol can be used to transmit network protocol to another, involving three types of network protocols,

Ø Network Tunneling Protocol,

Ø tunneling protocol carries the following agreement,

Ø carried Tunneling Protocol agreement has been carrying

Tunneling Protocol network, including:

ü two tunneling protocol, network protocol for the transmission of two-story, mainly for construction of Access VPN, PPTP, L2F, L2TP

ü three Tunneling Protocol, network protocol for the transmission of the three, mainly used in Intranet VPN, Extrannet VPN, GRE, IPSEC

PPTP, L2F, L2TP, GRE, IP-SEC

2. VPN problems facing

1) the expansion of the network device

2) mobile and remote user access management

3) QOS needs to be improved

4) to solve interoperability

Section V WEB security

1. WEB threats

1) WEB server, the

WEB server important information leak occurred, or WEB server damage by intentionally or unintentionally, it may even cause a serious loss of information or even the collapse of the server

2) the browser, the

Client browser running programs may lead to information loss or even destruction of resources

3) WEB browser and server communications,

WEB browser and the server may be an important conversation eavesdropping and forgery

2. WEB security vulnerabilities

1) operating system security vulnerabilities

2) WEB server security vulnerabilities

3) server-side scripting security vulnerabilities, CGI, API

4) client-side scripting security vulnerabilities, VS, JS,

3. WEB security management solution

1) management, to improve safety awareness and strengthen safety management

2) the prevention of additional learning

4. WEB Information Security Transfer Protocol

1) SSL: is netscape for the TCP / IP socket developed an encryption technology, which is based on the channel encryption method for application layer protocol, such as to improve safety, enhance the communication between applications and secure the confidentiality of of

Ø is the development of the Netscape Secure Sockets Layer encryption protocol,

Ø encryption-based access methods,

Ø used to enhance the application layer protocol (http, telnet, ftp), such as security,

Ø to enhance communication between the application and reliability of confidentiality,

Ø features include data encryption, server authentication, message integrity and optional client TCP / IP connection verification

2) S-HTTP

SECUREHTTP the abbreviated is COMMERCENET requirements should VERIFONE developed a question-and-answer transaction. It is an extension of HTTP protocol. S-HTTP is to use the HTTP network data of the MIME package signatures, authentication and encryption.

3) SET

Ø is to address users, merchants and banks through the credit card payment transactions designed

Ø to ensure the confidentiality of payment information, payment process integrity, business and legal status of the cardholder, as well as operational,

Ø The main technologies, including the public key encryption, digital signatures, electronic envelopes, safety certificate

Section VI of the invasion of the audit trails to detect and trap technology

1. The basic concept

Intrusion Detection: Yes, from the computer network or computer system in a number of key points to collect and analyze information to detect network or system, whether there is any breach of security strategy and the signs of attack

The main activities:

1) to monitor, analyze user and system activities

2) on the system configuration and vulnerability audit

3) to identify known attack pattern matching activities

4) abnormal patterns of activity on the statistical analysis

5) assessment of critical systems and data integrity of documents

6) audit follow-up management of the operating system to identify users of the acts in violation of security policy

Invasion of the trap of technology: it is by setting the bait to trap the invaders introduced in order to capture intruder technical

2. The analysis of intrusion detection methods

1) Anomaly Discovery

Ø assuming that all intrusions and normal behavior are different.

Ø If the normal behavior of a system trajectory, then the theory can be different from all the normal trajectory of the system state as a suspicious attempt.

Ø abnormal threshold for the choice and characteristics of abnormalities found in the key technology. For example, through statistical analysis of the abnormal flow of time as a suspicious network traffic anomalies.

Ø abnormalities found in the limitations of technology is not all for the invasion have shown abnormal, and the system difficult to calculate and update the track.

2) Pattern Discovery Technology

Ø invasion and assuming that all means (and its variants) can be expressed as a model or characteristics,

Ø invasion, all known methods can be found by matching method.

Ø mode the key is to find how to express the mode of invasion, the invasion and the real distinction between normal behavior.

Ø mode false positives found the advantage of being small is that it can only be found in the limitations of known attacks, the attacks could do nothing about the unknown.

3) was found mainly in technology-based model, combined with unusual discovery technology

3. Intrusion Detection means

Attack signatures: It is a way to express a specific known attack methods

1) network-based IDS

The use of network-based IDS packet data network of the original attack packet analysis as a data source,

The general use of a network adapter to all real-time monitoring and analysis of transmission through the network of communications,

Once the attack is detected, IDS response module through the notice, such as alarm and disconnected way to respond to attacks

Ø Low cost of ownership

Ø evidence of the attacker even more difficult to transfer

Ø Real-time detection and response

Ø able to detect attempted attacks did not succeed

Ø Operating System independent

2) host-based IDS

Ø General Window host surveillance systems, incident, security log and Syslog on UNIX files,

Ø if any changes to these documents, IDS will be relatively new logging and attack signatures to detect whether they match,

Ø If the match, the detection system to alert the administrator to issue the invasion and take appropriate action issued

Ø is ideal for encryption and exchange of environmental

Ø near real-time detection and response

Ø do not need additional hardware

3) Integration: IDS trends

4. Invasion of the trap of technology to achieve strategic

1) The purpose of decoy servers:

Bait, "The main purpose of the server is based on data server, and to report to the police for hacking and records

2) bait server features:

Ø "bait" to imitate the real server data server, and the side of their normal work;

Ø "bait" to provide a number of network server resources and user accounts, causing the attention of hackers;

Ø "bait" the server side of the performance of its vulnerability to lure malicious hackers to attack it to start;

Ø "bait" has a very powerful server and a complete alarm and recording mechanism of invasion.

3) Redirect port to create decoys

4) Do you want to build

Ø Do you have sufficient resources

Ø Do you have surveillance systems to log;

Ø Do you intend to prosecute the intruder

Ø Do you have a contingency capacity to deal with emergency cases.

Section VII of the network to guard against viruses and

1. The concept of the virus and the basic characteristics of

Ø The concept:

Computer viruses: is the computer program in preparation to insert the damage or destruction of computer data functions, the impact of computer use, and a group of self-replicating computer program code or command,

Ø Features:

ü infectious

ü hidden

ü latent

ü destructive

2. New features of network viruses

Ø strong destructive

Ø strong dissemination

Ø and the potential to stimulate more

Ø targeted

The proliferation of a wide range Ø

3. Network virus prevention, detection and antivirus

Ø Anti-virus technology

1) encrypted executable program,

2) to guide the protection,

3) system monitoring and control to read and write

Ø virus detection technology

1) self-examination,

2) keyword,

3) document changes in

Ø Disinfection Technology

1) on the server document scanning and monitoring of frequent

2) the installation of the virus chip client

3) The directory file permissions control

1) measures:

Strengthen the management of safety awareness

Install anti-virus software

2) the precautionary principle:

Ø Anti-emphasis on the rule

Ø Anti-virus can not be stopped

Ø Integration with network management to form a multi-layered defense system

Ø Anti-Virus Network is part of the whole security system

Section VIII of the security of electronic payment

1. Network security requirements to pay

1) the identity of the two sides of the transaction authentication, based on credible third-party CA, the data signatures, authentication protocol, to prevent counterfeiting and fraud

2) transaction information to protect the confidentiality, integrity, through the SSL / TLS, SET, to prevent leakage and to amend

3) to ensure that both the transaction non-repudiation of transactions through digital certificates and signatures to prevent the post-repudiation

Payment gateway:

ü located internet and traditional private network between the banks,

ü The main role is to secure internet and private network connections, the internet would be unsafe on the transaction information to the Bank of special network security, isolation and play a role in the protection of private network,

ü The main functions:

1) Internet news decryption of data packets, and the banking system in accordance with the internal data communication protocol will be re-packaged;

2) to receive the mass within the banking system in response to message back will be transformed into the Internet to send data formats, and encrypted.

3) that the payment gateway to complete the main communication, protocol conversion and data encryption and decryption functions, to protect the bank's internal network.

2. Credit card payment security technology

Ø SET through four kinds of online payment security measures to protect the security of information

1) business card receivables to identify whether the use of SET is entitled to receive the standard payment card security

2) the use of SET to confirm the business transactions are using the payment card

3) SET uses advanced public-key cryptosystem and digital signatures, digital authentication technology

4) SET protection of payment information can only be designated by the recipient to read, information can only be used with the SET business deciphering financial institutions, businesses do not see the cardholder account

Ø SET includes 4 sub-systems:

1) the cardholder wallet:

Online consumers in the computer runs SET business have to be servers, payment gateway, accept the certification body of SET protocol subsystem information

2) Merchant Server:

Business e-commerce sites running on the server to handle payment card transactions and certification

3) The payment gateway:

Acquiring bank run on a computer to handle the authentication and payment of business information and financial network with a dedicated interface.

4) The certification body CA:

Running on a computer card-issuing bank, the issuing and verification by the other 3 sub-systems require the digital certificate.

Ø SET process:

View products to buy goods --- --- --- fill in the selected mode of payment orders to send orders and payment ---- ----- instruction card merchant account can not see merchant ----- Orders received after the cardholder's financial institution authorized to apply for payment to confirm ---- --- back to the merchant card business back to confirm orders ---- delivery business

Ø SET security measure:

1. Confidentiality

2. Integrity

3. To verify the authenticity of

4. Non-repudiation of

Ø SET Disadvantages:

1. Can not conceal the identity of consumers, consumers will leave a record of transaction information

2. Complex, higher operation and maintenance costs and increase the extra burden on consumers

3. E-cash to pay the security

Ø Definition:

E-cash is also known as digital cash or digital currency, is to be accepted by customers and merchants, through the Internet to purchase goods or services used in a medium of exchange

Ø Process:

Customers from the customer bank transfer to the e-banking customers --- e-banking e-cash payment to the customer ----- customers will be stored in the computer e-cash or smart card customers in the selection of goods --- and send e-cash merchant --- - businesses to provide customers with the goods will be e-cash merchant ----- sent to e-banking e-banking to the merchant ----- Bank recorded

Ø advantages:

1) the possibility of fraud in small

2) to prevent the customer refused to pay and overdraft

3) does not disclose the identity and customer-related information

Ø Disadvantages:

1) easily copied, only a one-time use

2) each step requires the direct involvement of banks, dealers, consumers, banks need to retain the three sides are digitally signed receipt for future verification

3) As long as the loss has been peeped on and so on, and can not find

4) also involves the legal and banking management

4. Security mechanism for electronic transactions, the overall evaluation

Section IX of system security

1. Definition: means the network security backup and disaster recovery, system security backup: it is important data and system backup information

2. Basic functions

1) file backup and recovery

2) Database Backup and Recovery

3) system disaster recovery of

4) the management of backup tasks:

Ø full backup

Ø incremental backup: After the last backup differences

Ø differential backup: After the last full backup of the differences

Ø On-demand backup: the need for temporary, selective backup

ü hot backup:

1) online backup,

2) Download the data to back up the computer and the network is still only reached a non-district or in another non-real-time processing system storage,

3) The first method is to open up the host system running a non-working space, dedicated backup data storage, that is, partition backup,

4) Another method is to back up data to another subsystem through the host system and the transmission between subsystems, the same call with the speed and convenience features, but the investment in expensive

ü Cold Backup:

1) is not an online backup,

2) to download the backup to a secure storage of media storage, which is running the media and the entire computer systems and networks are not directly linked

3. Disaster Recovery

1) the overall restoration of: the general application of accidents on the server all the data in a disaster led to the loss, system crash or a planned system upgrade, system reorganization, also known as System Restore

2) the restoration of individual files

3) Redirect the restoration is to restore backed up files to another location or a different system up