A top-level security guru for both eBay and PayPal and a best-selling information systems security author show how to design and develop secure Web commerce systems. Whether it's online banking or ordering merchandise using your cell phone, the world of online commerce requires a high degree of security to protect you during transactions. This book not only explores all critical security issues associated with both e-commerce and mobile commerce (m-commerce), it is also a technical manual for how to create a secure system. Covering all the technical bases, this book provides the detail that developers, system architects, and system integrators need to design and implement secure, user-friendly, online commerce systems. Co-authored by Hadi Nahari, one of the world s most renowned experts in Web commerce security; he is currently the Principal Security, Mobile and DevicesArchitect at eBay, focusing on the architecture and implementation of eBay and PayPal mobile Co-authored by Dr. Ronald Krutz; information system security lecturer and co-author of the best-selling Wiley CISSP Prep Guide Series Shows how to architect and implement user-friendly security for e-commerce and especially, mobile commerce Covers the fundamentals of designing infrastructures with high availability, large transactional capacity, and scalability Includes topics such as understanding payment technologies and how to identify weak security, and how to augment it. Get the essential information you need on Web commerce security as well as actual design techniques in this expert guide.

A top-level security guru for both eBay and PayPal and abest-selling information systems security author show how to designand develop secure Web commerce systems.Whether it's online banking or ordering merchandise using yourcell phone, the world of online commerce requires a high degree ofsecurity to protect you during transactions. This book not onlyexplores all critical security issues associated with bothe-commerce and mobile commerce (m-commerce), it is also a technicalmanual for how to create a secure system. Covering all thetechnical bases, this book provides the detail that developerssystem architects, and system integrators need to design andimplement secure, user-friendly, online commerce systems.* Co-authored by Hadi Nahari, one of the world's mostrenowned experts in Web commerce security; he is currentlythe Principal Security, Mobile and DevicesArchitect at eBayfocusing on the architecture and implementation of eBay and PayPalmobile* Co-authored by Dr. Ronald Krutz; information system securitylecturer and co-author of the best-selling Wiley CISSP Prep GuideSeries* Shows how to architect and implement user-friendly security fore-commerce and especially, mobile commerce* Covers the fundamentals of designing infrastructures with highavailability, large transactional capacity, and scalability* Includes topics such as understanding payment technologies andhow to identify weak security, and how to augment it.Get the essential information you need on Web commercesecurity--as well as actual design techniques--in thisexpert guide.

Foreword by John Donahoe xxiForeword by Scott Thompson xxiiiIntroduction xxvPart I Overview of Commerce 1Chapter 1 Internet Era: E-Commerce 3Chapter 2 Mobile Commerce 41Chapter 3 Important "Ilities" in Web Commerce Security 77Chapter 4 E-Commerce Basics 109Chapter 5 Building Blocks: Your Tools 119Chapter 6 System Components: What You Should Implement 193Chapter 7 Trust but Verify: Checking Security 245Chapter 8 Threats and Attacks: What Your Adversaries Do 267Chapter 9 Certification: Your Assurance 293Appendix A Computing Fundamentals 331Appendix B Standardization and Regulatory Bodies 365Appendix C Glossary of Terms 385Appendix D Bibliography 449Index 457