Web Commerce Security: Design and Development

Real and reasonable solutions to mobile and e–commerce security
Every system designer knows that securing the electronic commerce ecosystem is a nightmare. Each of us puts vital business and personal information at risk every time we use a computer network to make a bank transaction, pay a bill, buy something, or communicate online.
In this book, security experts Hadi Nahari and Ron Krutz provide real security solutions. They show how to analyze and understand both holistic and atomic perspectives, define risk–driven security, explain protection mechanisms and how best to deploy them, and offer ways to implement security that is both effective and user–friendly.
You will learn
How to design strong e–commerce and m–commerce security that users will actually use
Techniques for implementing an adaptive, risk–driven, and scalable security infrastructure
Fundamentals of architecting e– and m–commerce security infrastructure with high availability and large transactional capacity
Important "ilities" your solutions must have
How to identify weak security in a large–scale, transactional system and how to augment it
Specific vulnerabilities and threats and how toassess, detect, and prevent them

Spis treści:
Foreword (John Donahoe).
Foreword (Scott Thompson).
Introduction.
Part I Overview of Commerce.
Chapter 1 Internet Era: E–Commerce.
Chapter 2 Mobile Commerce.
Chapter 3 Important "Ilities" in Web Commerce Security.
Part II E–Commerce Security.
Chapter 4 E–Commerce Basics.
Chapter 5 Building Blocks: Your Tools.
Chapter 6 System Components: What You Should Implement.
Chapter 7 Trust but Verify: Checking Security.
Chapter 8 Threats and Attacks: What Your Adversaries Do.
Chapter 9 Certification: Your Assurance.
Appendix A Computing Fundamenta ls.
Appendix B Standardization and Regulatory Bodies.
Appendix C Glossary of Terms.
Appendix D Bibliography.
Index.

Nota biograficzna:
Hadi Nahari is a principal security architect at eBay and PayPal. His experience includes large scale, high–end enterprise solutions as well as embedded systems with primary focus on security, cryptography, complex systems design, and vulnerability assessment and threat analysis. He is a popular speaker on security issues.
Ronald L. Krutz, PhD, has worked with computer architecture, real–time systems, and information security for more than 40 years. He is the author or coauthor of more than a dozen books.
Visit our Web site at www.wiley.com/go/webcommercesecurity

Okładka tylna:
Real and reasonable solutions to mobile and e–commerce security
Every system designer knows that securing the electronic commerce ecosystem is a nightmare. Each of us puts vital business and personal information at risk every time we use a computer network to make a bank transaction, pay a bill, buy something, or communicate online.
In this book, security experts Hadi Nahari and Ron Krutz provide real security solutions. They show how to analyze and understand both holistic and atomic perspectives, define risk–driven security, explain protection mechanisms and how best to deploy them, and offer ways to implement security that is both effective and user–friendly.
You will learn
How to design strong e–commerce and m–commerce security that users will actually use
Techniques for implementing an adaptive, risk–driven, and scalable security infrastructure
Fundamentals of architecting e– and m–commerce security infrastructure with high availability and large transactional capacity
Important "ilities" your solutions must have
How to identify weak security in a large–scale , transactional system and how to augment it
Specific vulnerabilities and threats and how toassess, detect, and prevent them