Chapter 11 - Online Payment Systems

What you Should Know:

1. B2C versus B2B
2. Payment Methods - Cash, cheque, credit card, debit card
3. Online Payments

Credit Cards

• 85% use their credit card
• 5% of all credit card transactions accounts for 50% of all fraud.

Scrip

Scrip cannot be exchanged for cash, but it can be used to buy things on the internet. In early 2006, they tried to do this but they failed, the following were to companies that failed:

• Flooz
• beenz

Consumer Concerns:

• Convenience - Simple to use
• Phishing - false links to bank accounts

Credit Cards:

Visa and master card - they are cards that provide open loop processing.

Charge Cards:

American Express - There can be no balance on them they must be paid off every month

Advantages to using payment cards:

• Consumer protection from fraud
• Worldwide Acceptance
• Currency conversion handled
• Merchant protection
• Merchant assurance from issuing companies

Disadvantages to using payment cards:

• Costs to merchants - per transaction and monthly fees
• Costs to consumers - Annual fee

Payment Processing:

• EMV Standard
• 30 day shipping requirement
• Merchant accounts required to accept credit cards
• general payment service providers - ICverify
• online payment service providers

Electronic Cash

Advantages:

• Good for micro payment
• Readily exchanged for real cash unlike scrip
• Useful for those who cannot get credit cards
• No need for authorizations as required by credit cards
• independence: unrelated to any proprietary network or storage devices
• Portability: Freely transferable between two parties
• Convenience: Does not require andy special hardware/software

Disadvantages:

• Not standardized or universally accepted
• No Audit trail, due to independance and privacy
• Security Issues: Potential for "double-spending" & Money Laundering
• Security Issues: Suseptable to forgery

Online Systems:

• Checkfree
• Clickshare
• eCharge
• Paypal
• Valista
• Worldpay - Europe
• Authorize.net

electronic wallets

Serverside - Billeo Services

Clientside - illium wallet

Smartcards - Benefits over magnetic

Chapter 10: E-commerce Security

Security Issues:

Types of security:
-Physical security
-logical security (routers etc.)

Minimum Level of Requirements:

-Privacy/secrecy - no unauthorized disclosure
-Data integrity - no unauthorized modification
-Availability/Necessity - No data or message delays
-Key Management - secure encription keys
-Nonrepudiation - end-to-end proof of identity
-Authentication - digital signitures and certificates

Security Policy:

-Physical Security
-Network security
-Access authorization
-Virus Protection
-Disaster Recovery

Risk Management:

1. Terminology
2. Action Model

Client-Side Security:

Cookies:

1. Session Cookie - is deleted whent the browser is exited.
2. Persistent Cookie - this is permanent, is always stored on the harddrive.
3. Web bugs - A little invisible graphic that tells something to store a cookie.

Uses of Cookies:

1. Personalize websites
2. Website tracking
3. User ID and Log-in

Active Content:

1. activeX controls
2. Java Applets
3. Javascript
4. Trojan Horse
5. Viruses, worms & zombies
6. Graphics and Plugins

Encryption:

1. Symmetric (shared key)
2. Asymmetric (public key, private key, digital signiture)
3. digital certificates - comodo, Entrust, Geotrust, Thawte, Verisign, Which SSL, SSL Shopper,

Uses:

1. email (pretty good privacy - pgp)
2. banks
3. accountants

Encryption of disks and folders:

1. Truecrypt
2. Encrypt my folders
3. Hide my folders
4. hide photos
5. VOIP can now be encrypted without slowing down.

Anonymity:

1. anonymizer
2. Operator
3. Onion Routing
4. TOR Project

antivirus:

1. AVG
2. F-Prot
3. McAfee - corp
4. Symantec Norton -corp
5. Microsoft Security Center

Spam:

1. CA Anti spam
2. Choice Mail One
3. Mailwasher
4. Spam Buster
5. Spam Eater
6. Spam Killer

Spyware:

1. Ad-Aware
2. CCleaner - best one
3. Spybot S&D - must be used in conjunction with ad aware
4. Webrobot spy sweeper - commercial spyware

Miscellaneous:

1. brave.net
2. free hostia
3. IPtect
4. Comodo personal firewall

Chapter 8 & 9: Web Server Hardware and Software

Web Server Tools:

AMPP - Consists of MAMPP (Mac Version), WAMPP (windows), and XAMPP (Directly from Apache, if you have a choice, you would always use this). Runs on an operating system called lynix or unix and is half the price of WindowsIIS which has to be run on a windows platform.

EasyPHP - frequently used.

HFS - Http File Server, running this on your computer will allow people to access your computer files through a web browster. http://rejetto.com/hfs/

Server2go - Similar to HFS but it is using XAMPP, but it is meant to be used off a usb drive or your computer.

WindowsIIS - You would only use this if you were using active server pages (.asp). Otherwise you would use an apachy server.

My Local Web:

When you run a web page on your local computer is HTTP://localhost so xampp will always run on the local host. HTTP://127.0.0.1 is the same as your local host.

Web Design Tools:

Free:
-Nvu
-KompoZer (Best one) , doesnt need to be installed.
-Net Objects
-Blocknote.Net

Commercial:
-Adobe Dreamweaver
-Microsoft Expression Web

Content Management Systems (CMS):
A content management system stores all of the data in a database. When you go to the website, the website will access the database and pull up the data. Most websites are built on content management systems.

Local Data Base: Based on your computer
-city desk
-CMS Encore
-Blogjet (blogging)
-Ecto (blogging)
-Windows Live Writer

Webbased:
The data base is stored on a website. The database can be changed and viewed from any computer.

Some examples are:
1) CMS matrix
2) CMS From Scratch
3) CMS Made simple
4) silverstripe

Web Hosting:
Once a website is built on your server, you must host it somewhere so that everyone can see.
Some examples of hosts are:

1. okanaganhosting.com
2. oakparksolutions.com
3. tophosts.com

Chapter 7 Mind Map

Chapter 6 Key Concepts

Chapter 6: Auctions, Communities & Portals

Online Auctions:

C2C - Amazon.com auctions, Ebay, Truste, Escrow.com, e-deposit.com
C2B - priceline.com, cruisecompete.com (this is where the customer has the buying power, etc see how much they are willing to sell it for)
B2B - Liquidation brokers, ingram micro(computer wholesalers)
B2C - Amazon.com store, Ebay Stores, Overstock auctions, Yahoo Merchants (online stores)
Resources - Autionbytes.com, Auctionguide.com, Pricewatch.com, snipe software

Types of Auctions:

English (Ascending Price)
Dutch (Descending Price)
Sealed-Bid Auctions
Open-outcry Auctions
Sealed Bid Double
Reverse (Seller Bid) - This is like what governments use to contract jobs out to companies.

Web Portals:

• Nielsens NetRatings
• Advertising-Supported
• Mixed Revenue --> AOL.com
• intranet portals

Building Longterm Customer Relationships:

• Blogs
• Wikis
• Forums
• Facebook
• Friendster
• Linkedin
• Myspace

Chapter 5 Key Concepts Map

Chapter 4 key concepts mind map