Comments on: E-Commerce assignment..? http://www.kw-market.com/online-grocer/e-commerce-assignment All About Internet Grocery, Healthy Buying, and Where and How to Buy Groceries Online! Sat, 26 Jun 2010 01:06:59 -0500 http://wordpress.org/?v=2.8.5 hourly 1 By: frazdav http://www.kw-market.com/online-grocer/e-commerce-assignment/comment-page-1#comment-3261 frazdav Sat, 10 Apr 2010 08:15:59 +0000 http://www.kw-market.com/online-grocer/e-commerce-assignment#comment-3261 There are many elements of a security plan for a business like this. Here are a couple of key points that can be areas of focus for you: 1. Restrict administrative access to web and back-end application, mid-range, and database servers with password protection, Access Control Lists (ACLs), and other measures. Enable services only when required. 2. Segment web server infrastructure from other, internal, assets like databases, mail servers, LAN hardware, etc. Utilize a DMZ architecture and permit port 80/443 access to this network zone only. 3. Implement perimeter security measures like firewalls and intrusion detection/prevention platforms. 4. e-business is useless if the services are unavailable or slow. Plan for high availability by implementing redundant systems with no single point of failure. Web server load balancers and redundant infrastructure items are important components of this strategy. 5. Encryption (via SSL (https)) is a key measure for the protection of the clients of this business. 6. Retain all device and server logs. These will assist in troubleshooting, event or intrusion investigation, and in audits. 7. Implement a patch testing and deployment procedure to limit vulnerabilities in server and device operating systems. There is certainly a lot more to this, but this should give you a little to start with.<br><b>References : </b><br> There are many elements of a security plan for a business like this. Here are a couple of key points that can be areas of focus for you:
1. Restrict administrative access to web and back-end application, mid-range, and database servers with password protection, Access Control Lists (ACLs), and other measures. Enable services only when required.
2. Segment web server infrastructure from other, internal, assets like databases, mail servers, LAN hardware, etc. Utilize a DMZ architecture and permit port 80/443 access to this network zone only.
3. Implement perimeter security measures like firewalls and intrusion detection/prevention platforms.
4. e-business is useless if the services are unavailable or slow. Plan for high availability by implementing redundant systems with no single point of failure. Web server load balancers and redundant infrastructure items are important components of this strategy.
5. Encryption (via SSL (https)) is a key measure for the protection of the clients of this business.
6. Retain all device and server logs. These will assist in troubleshooting, event or intrusion investigation, and in audits.
7. Implement a patch testing and deployment procedure to limit vulnerabilities in server and device operating systems.

There is certainly a lot more to this, but this should give you a little to start with.
References :

]]>