Secure Technologies of e-Commerce

Module Information

Module Semester:
2
Module Part:
Theory
Sub-Module Code:
ΜΔΕ-Β2
Hours per Week:
3
Module ECTS Credits:
7.5
Available to ERASMUS Students:
No
Module Staff:


Module Objective

The purpose of the course is to teach safety on the internet and the application of such knowledge in web development practices.


Module Study Targets

This course presents the foundational principles of information and web security in the context of the application development for web commerce. It covers security principles; security needs, threats, and attacks; legal, ethical and professional issues; including secure web development. At the completion of this course, the student will:

  • Understand the business need for security, threats, attacks, security vulnerabilities, and secure software development
  • Understand security technologies, protocols, cryptography concepts, algorithms, and digital signatures used to protect information
  • Understand legal and ethical issues regarding computer crime
  • Able to develop secure web applications
  • Identify, assesses and evaluates information through the relevant websites


Module Acquired Abilities

  • Analysis of web attacks and development and implementation of defense in the context of web commerce
  • Evaluation of proposals related to handling problems in enterprise environment
  • Synthesis of techniques for composite problems
  • Implementation of secure web application for e-commerce
  • Ability for dialog and cooperation for the development of composite algorithms
  • Ability to follow the international bibliography and the scientific events


Module Description

  • Threats internet (denial of service, viruses, worms, malware, fraud, loss of identity, etc.)
  • PKI & Digital Certificates
  • Secure access systems (authentication / authorization, smartcards, biometrics)
  • Secure network architectures (DMZ, Firewalls, VPN)
  • Secure network protocols (TLS, SSL, HTTPS)
  • Safety operating systems
  • Secure web servers
  • Electronic Payment Systems
  • Architectural online shops (e-shops)
  • Platforms developing online shops
  • Recommender systems, Search Engine Optimization and online advertising systems
  • Legal framework

Module Student Evaluation

Written examination = 40%

Exercises = 60%


Bibliography

  • "Web Commerce Security Design and Development", H. Nahari and R. Krutz, Wiley Publishing
  • "SSL and TLS Essentials", Stephen A. Tomas, Wiley
  • "OpenSSL CookBook", Ivan Ristic, Qualys
  • "SQL Injection Attacks and Defense", Justin Clarke, Elsevier
  • "The Web Application Hacker's Handbook: Finding and Exploiting Security Flaws", D. Stuttard and M. Pinto, Willey
  • "Learning PHP, MySQL, JavaScript, CSS & HTML5", Robin Nixon, O'Reilly
  • "Pro PHP Security: From Application Security Principles to the Implementation of XSS Defenses", Chris Snyder, Thomas Myer, and Michael Southwell, APress