Establishing security and privacy policies for an on-line auction

dc.contributor.author Meiners, Michael
dc.contributor.department Electrical and Computer Engineering
dc.date 2021-01-30T20:43:59.000
dc.date.accessioned 2021-02-26T09:09:12Z
dc.date.available 2021-02-26T09:09:12Z
dc.date.copyright Mon Jan 01 00:00:00 UTC 2001
dc.date.issued 2001-01-01
dc.description.abstract <p>The current Enterprise Resource Planning (ERP) project is a proposal to use business-to-business electronic commerce to provide a means of developing markets for end-of-life products and their components. The objective is to develop a science and technology base for a scalable and secure hub for reverse logistics e-commerce in which users can buy and sell used or surplus products, components, and materials as well as provide a service for disposing of them responsibly. A critical part of the project is the design of security architecture, as well as security and privacy policies for the project's on-line electronic marketplace. Security for the auction website should focus on three concerns: prevention, detection, and response. Prevention consists of four basic characteristics of computer security: authentication, confidentiality, integrity, and availability. We will also analyze some of the vulnerabilities and common attacks of sites on the web, and ways to defend against them. Detection involves several approaches to monitor traffic on the internal network and log the activities of users. This is important to provide forensic evidence when a site is compromised. Detection, however, is useless without some type of response, either through patching new-found security holes, contacting vendors to report security weaknesses and new viruses, or contacting local and federal agencies to assist in closing those holes or bringing violators to justice. We will look at these issues, as well as trust in auctions - allowing buyers and sellers to determine if a user if trustworthy or not - and automatic schemes for preventing a fraudulent user from exploiting that trust.</p>
dc.format.mimetype application/pdf
dc.identifier archive/lib.dr.iastate.edu/rtd/21446/
dc.identifier.articleid 22445
dc.identifier.contextkey 21346070
dc.identifier.doi https://doi.org/10.31274/rtd-20210128-62
dc.identifier.s3bucket isulib-bepress-aws-west
dc.identifier.submissionpath rtd/21446
dc.identifier.uri https://dr.lib.iastate.edu/handle/20.500.12876/98813
dc.language.iso en
dc.source.bitstream archive/lib.dr.iastate.edu/rtd/21446/Meiners_ISU_2001_M45.pdf|||Fri Jan 14 22:37:32 UTC 2022
dc.subject.keywords Electrical and computer engineering
dc.subject.keywords Computer engineering
dc.title Establishing security and privacy policies for an on-line auction
dc.type article
dc.type.genre dissertation
dspace.entity.type Publication
relation.isOrgUnitOfPublication a75a044c-d11e-44cd-af4f-dab1d83339ff
thesis.degree.discipline Computer Engineering
thesis.degree.level dissertation
thesis.degree.name Master of Science
File
Original bundle
Now showing 1 - 1 of 1
No Thumbnail Available
Name:
Meiners_ISU_2001_M45.pdf
Size:
4.39 MB
Format:
Adobe Portable Document Format
Description: