EC Framework - Part 6

>> Sunday, February 1, 2009

Secure EC Communication

In Earlier section “EC Framework - Part 5” we discussed about best practices bullet point 1 – security risk management. In this post let’s discuss about point 2 – Securing EC Communication.

Securing EC Communication leads to secure transaction.

Ways and Means

  1. Access control
    • Two factor authentication
      1. Passive tokens
      2. Active tokens
    • Biometric systems

      1. Physiological biometrics

        e.g., fingerprint, iris, hand, facial characteristics
      2. Behavioral biometrics

        e.g., voice scans or keystroke monitoring
    • Digital signatures/certificates

      1. Authorization &
      2. Encryption
  2. Cryptography (Encryption)

    • Definition

      The process of scrambling (encrypting) a message in such a way that it is difficult, expensive, or time-consuming for an unauthorized person to unscramble (decrypt) it.
    • Methods

      1. Symmetric-key cryptography
      2. Public-key (asymmetric) cryptography
    • Protocols

      PGP and its variants - ssh, SSL/TLS, all PKIs, digital signatures/certificate, etc.

In next section we will discuss about securint networks.

Posted by SAM at 11:41 PM
Labels:

2 comments:

Gillian24 UK March 19, 2009 5:04 AM  

If you have a clearly defined process then it will have a positive impact in the overall service quality you provide. Setting up an online business process is not an easy task, hence care has to be taken while integrating front-end and back-office systems to develop and optimize your online business process. http://www.infyecommercesolution.com/

Janardan March 19, 2009 5:34 AM  

I agree, defining a process is a crucial task

Post a Comment

Subscribe to: Post Comments (Atom)