Web Commerce Security: Design and Development

  • 8h 51m
  • Hadi Nahari, Ronald L. Krutz
  • John Wiley & Sons (US)
  • 2011

A top-level security guru for both eBay and PayPal and a best-selling information systems security author show how to design and develop secure Web commerce systems.

Whether it's online banking or ordering merchandise using your cell phone, the world of online commerce requires a high degree of security to protect you during transactions. This book not only explores all critical security issues associated with both e-commerce and mobile commerce (m-commerce), it is also a technical manual for how to create a secure system. Covering all the technical bases, this book provides the detail that developers, system architects, and system integrators need to design and implement secure, user-friendly, online commerce systems.

  • Co-authored by Hadi Nahari, one of the world’s most renowned experts in Web commerce security; he is currently the Principal Security, Mobile and DevicesArchitect at eBay, focusing on the architecture and implementation of eBay and PayPal mobile
  • Co-authored by Dr. Ronald Krutz; information system security lecturer and co-author of the best-selling Wiley CISSP Prep Guide Series
  • Shows how to architect and implement user-friendly security for e-commerce and especially, mobile commerce
  • Covers the fundamentals of designing infrastructures with high availability, large transactional capacity, and scalability
  • Includes topics such as understanding payment technologies and how to identify weak security, and how to augment it.

Get the essential information you need on Web commerce security—as well as actual design techniques—in this expert guide.

About the Authors

Hadi Nahari is a principal security architect at eBay and PayPal. His experience includes large scale, high-end enterprise solutions as well as embedded systems with primary focus on security, cryptography, complex systems design, and vulnerability assessment and threat analysis. He is a popular speaker on security issues.

Ronald L. Krutz, PhD, has worked with computer architecture, real-time systems, and information security for more than 40 years. He is the author or coauthor of more than a dozen books.

In this Book

  • Foreword
  • Foreword
  • Introduction
  • Internet Era—E-Commerce
  • Mobile Commerce
  • Important “Ilities” in Web Commerce Security
  • E-Commerce Basics
  • Building Blocks—Your Tools
  • System Components—What You should Implement
  • Trust but Verify—Checking Security
  • Threats and Attacks—What Your Adversaries Do
  • Certification—Your Assurance
  • Appendix D—Bibliography


Rating 4.4 of 17 users Rating 4.4 of 17 users (17)
Rating 4.7 of 90 users Rating 4.7 of 90 users (90)