Preparing e-business  «Prev 

Safeguarding your site against unauthorized entry.

Security is an extremely diverse and complex topic. As an architect, your focus should be on considering security implications at every step in preparing the business for eBusiness, and in an ongoing effort to raise awareness within the enterprise, as well as with your customers. There are four steps to safeguard your site against unauthorized entry :
  1. Be explicit in educating their consumers on their products' security risks.
  2. Educate your employees on the preventative and defensive tools available for denial-of-service and other cyber attacks.
  3. Accept the fact that many websites have been tampered with; a willingness to share your experiences and solutions with others, even competitors, is a long term investment in addressing the problem.
Prepare to be held accountable for not taking basic steps to protect yourselves and your customers against computer-related crimes.

Insure the OS of your server is up to date

Often the operating system of your webserver may have several issues and could potentially have security vulnerabilities that can leave your server open to attacks that compromise your computer and your data. Software patches and updates are made available to clients to help keep a software program and operating system running properly and secure.
If the program you are using does not have any method of checking for updates on its own it is up to you to verify the program is up-to-date. Often this can be done by visiting the website of the developer who created the program. A listing of third-party companies and links to each of their pages can be found on our third-party support page.

Convenience versus Security

What we have witnessed was a surprisingly rapid and efficient transition. Just a couple of years ago, the Web used to function as an unassuming tool to deliver predominantly static, externally generated content to those who searched for it. However, this is no longer the case. We live in a world where the very same old-fashioned technology now serves as a method to deliver complex, highly responsive, dynamic user interfaces. In addition, the functionality was previously restricted to desktop software. The evolution of the Web is both exciting and frightening. Along with the unprecedented advances in the offered functionality, we see a dramatic escalation of the decades-old arms race between
  1. folks who write the code and
  2. those who try and break it.
This is not a glorious war of black and white hats, and for the most part, there is no good versus evil. It is a mundane clash we are dealing with here, one between convenience and security. Those of us working in the security industry must take sides for both of the opposing factions to strike a volatile and tricky compromise. There is no end to this futile effort and no easy solutions on the horizon.