Chapter 5

Question 1

Major security risk and their costs/// E-commerce security environment

Answer 1

Internet is a vulnerable network
Costs: 
1. Cost of the actual crime
2. costs required to recover from cyber attcaks
3.reputation damage 
4. reduce trust in online activities
5. loss of ponentional sensitive info

Question 2

Most costly cybercrimes

Answer 2

malware
web-based attacks
Denial of service
Malicious insiders

Question 3

Dimensions of e-commerce security

Answer 3

1. Integrity
   Ability to ensure that the info over a website has not been altered in any way
2. Nonrepudiation
   Ability people don deny online actions
3. Authencity
   Ability to identify the identity of a person who we are making business with
4. Confidentiality
   Ability to ensure that data is available only to those who are authorized to view it.
5. Privacy
   The ability to control the use of infrmation about one self
6. Availability
   ability to ensure that e-commerce site continue to function

Question 4

3 points of vulnerability ///

Most common of most damaging threats of security

Answer 4

client//server// communication pipeline

////////////////////////////////////////////////////////////////////////

1. Malicious code
  Include threats as viruses, worms, ransonware, trojan 
  horses
* Exploit kit
* malvertising
    Only adevertising that use malicious code
* drive by download
* backdoor
* bots
* Botnet

2. Potentially Unwanted Programs
 Program that installs itself on a Computer usually without the users consent
* Adware
*Browser parasite
*Cryptojacking
*Spyware

3. Phising
   Social engineering
4. BEC (business email compromise)

5. hacker
    cracker
    Cyvervandalism
    Hactivism 
6. Data breach
    Credential stuffing

7. Credit card fraud/theft
8. Indentity Fraud
9. Spoofing, Pharming, and Spam (junk) websites
10. Sniffer and man in the middle
11. Denial of service (DOS) and distributed Denial of service (DDOS)
12. Mobile Platform security issues

CLOUD security issues

INTERNET OF THINGS SECURITY ISSUES

Question 5

Technology solutions

Answer 5

Encryption

Cipher text.
Text encrypted only can be read by the sender and receiver

substitution cipher

Transposition cipher

Symmetric Key cryptographic

Public key cryptographic

Hash function

Digital Signature

Digital envelope

Digital certificates and Public key infrastructure

Pretty good privacy

Question 6

Secure channels of communication

Answer 6

Secure sockets layer (SSL)
Transport layer security (TLS)
HTTPS

Session Key

Virtual Private network (VPN)

Firewalls

Proxy servers

Question 7

Major payment methods

Answer 7

xxxx