SSL, Encryption, Authorization, Authentication, and Accepting Payment Online
Authentication and authorization of credit cards, accepting electronic checks, using third party services such as PayPal, dealing with Merchant Accounts, and similar issues must be addressed for the online store to work. Fortunately, this area of web technology is fairly mature.
With credit card fraud having become a national and world wide issue, proper security in online transactions is a must. Secure Socket Layers, or SSLs provide security encryption certificates for the web. There are also several methods of accepting payment online that do not require SSL, such as using PayPal (PayPal provides the merchant account and the security so you don't have to) but as usual, there are ups and downs to these services.
E-Commerce systems must be compatible with the authentication service, and the authentication service must be compatible with your bank. Modules are available for most major shopping cart systems, but do require some work in many instances.
Getting Paid (with a "p")
How do you get an SSL? What are the requirements? What are the benefits of having your own merchant account? What are the drawbacks? How do you deal with refunds? What are the development issues surrounding the choice of services?
This area of the site contains articles, notes, and links to other resources that will help you answer these and other questions.
|
|
AWM Resource Area Sponsors |
|
|
Resource Links
|
|
Application Security for Ecommerce Systems - a brief review of security methods, and some decent links ot other resources. (+info)
Authentication technology: identity theft and account takeover - FBI Law Enforcement Bulletin,The, June, 2002 (+info)
Building a Web Site: Ecommerce - some intereseting comments on e-commerce (+info)
Common Security Vulnerabilities in e-commerce systems - n article by Linux Security.com News: Network Security (+info)
Credit Card Fraud Management - CyberSource supports the built-in fraud protection services provided by the processing network, including AVS (Address Verification Service) and Card Verification Value (+info)
Credit cards could offer key to e-government authentication - The UK Cabinet Office is exploring the use of verified credit cards as an alternative means of authenticating e-government transactions.
(+info)
Critical Components for E-Commerce on the Web - A quick overview of how e-commerce works (+info)
EVRSOFT: A developer resource - a fairly comprehensive collection of tools, articles, scripts, etc. (+info)
Finaincial Middlemen for small businesses - online payments require several transaction carriers, merchant accounts, authentication services, etc. (+info)
Fraud control - an article on Fraud Control for the e-commerce site... useful, important, and insightful (+info)
MS Passport takes on credit cards - Microsoft hopes to extend its Passport online identification system into authorizing credit card payments. (July 2002) (+info)
Testing E-Commerce Systems: A Practical Guide - As e-customers (whether business or consumer), we are unlikely to have confidence in a Web site that suffers frequent downtime, hangs in the middle of a transaction, or has a poor sense of usability (+info)
Web Developers Virtual Library - A great collection of essays, tutorials, tools, resources and forums on web developments for developers. (+info)
What Role Can Smart Cards Play in E-Commerce Systems? - Abit of a broad relation to what we thnk of as e-commerce, but interesting: Smart cards are seemingly an excellent medium for carrying password-protected personal data. (+info)
|
|
|
|
|
Authentication Services
