home / web software / website development / about / portfolio / news / contact us

home  >  news

Internet E-Commerce Security

I would like to address some of the misconceptions about online security. First lets start with some facts.

• 11.3 million Australians access the internet
• 61% of the 11.3 million have shopped online
• The majority of shoppers are aged 35-54
• Around 18% are over 55
• Visa International has found that online credit card transactions make up less than 2.5% of all credit card fraud
• Research indicates online merchants are at less risk than retail merchants of fraud
• 72% of personal information theft occurrs offline
• 50% of all identify theft is committed by friends, family members and neighbours

Sources: Purchasing of Goods and Services via the internet (2006-07) Australian Bureau of Statistics www.abs.gov.au, Visa International, www.ecommercewebsites.com.au

The dangers involved in online payments is generally exaggerated in the popular media and as a result alot of people I talk to are still uncomfortable sharing their credit card details online.

I see the risk break down into two main areas:

The Client Computerкомпютри втора употреба

A website and web server can be designed to take all the precautions in the world to protect your sensitive information, but that is only half of the picture. Your personal computer can be infected in ways that can capture your details BEFORE if even reaches the web server. Some general guidelines:

• regularly update your anti-virus and anti-spyware software
• regularly scan your computer for infections
• keep your operating system and software up-to-date
• make your passwords hard to guess, do not use dictionary words, combine letters and numbers

The Website

A website can securely communicate with a visitor. The golden rules to securely transmit data are based on encryption and common sense. For example:

• credit card details should never be emailed
• Sensitive information should always be transmitted on a secure connection (SSL)
• Encrypt passwords with an encryption algorithm that virtually eliminates the chance of them being decoded
• Do not store credit card details unless its absolutely necessary - the details can be instead stored with a 3rd party payment gateway with guaranteed security
• Always hire reputable website developers to build all systems - solid development practices make for rock solid websites

After working and studying in the web development field for a decade, it has become apparent that the internet landscape is not so different from everyday life. There are certainly dangers in dark alleyways, but on the other hand the majority of people are simply enjoying interacting with the wonderful online world.

It is certainly frightening to learn just how much spam and malicious robot activity trawl the internet trying to collect and pry information, but the reality is the success rate is very very low. Unfortunately there are enough insecure websites and insecure personal computers out there to sustain the hacking industry - and that is not going to change.

If some simple rules are followed by both the visitor and the web development team, the potential risk is reduced to virtually nil.

This article was published on May 29, 2008 and filed under Web Development

Comments