Master of Science in Computer and Systems Sciences: E-commerce and Information Security 

Transaction Security at E-Commerce

Summary

This thesis intend to treat transaction security at e-commerce. The prognosis are good for European enterprises web investments. E-commerce predicts to increase with 2700 percent within five years. Sweden is one of the winners in Europe according to new figures from analysis enterprise Forrester. Problems that occur at maintenance of security at electronic commerce illuminates, with reference to security criteria: confidentiality, integrity, availability, accountability and non-repudiation. The thesis also illuminates whether security is a success factor for diffusion of payment systems at e-commerce. The thesis purpose is to evaluate the security in the most frequent occurring payment methods today and future payment methods where requirements are addressed on transaction security. The authors shall investigate Swedish web enterprises and banks if security is a success factor for diffusion of payment systems at e-commerce. 

All respondents considered that the security aspect is a success factor for e-commerce in the future to expand. Security is a success factor for diffusion of payment systems at e-commerce. One security aspect to decrease uncertainty at e-commerce is to acquire the customers trust according to respondents. Availability of an e-commerce site shall be high according to respondents. This is both a success factor and a vital security aspect. We found in our investigation that the actual security when it comes to security protocols and payment systems exists today. 

Different kinds of payment solutions involve different ways of customer authentication and if these solutions are complex it complicates diffusion of e-commerce. We consider it to be a problem from the customers perspective to authenticate itself. The different kinds of payment solutions uses separate methods for authentication but in the end result in a secure verification and authentication of the customer. We request a global standard like 3-D Secure to authenticate the customer and sales company in a simple and secure way. 

We believe that e-commerce shall increase as soon as marketing of the comprehended security and the added value applies and becomes an incentive for the large quantity of customers. The markets continuous development of security at electronic transactions is a factor for success. We accentuate that security and trust for payment systems vary in correlation at electronic commerce and should in the future generate a larger positive added value for the customer than what is returned today from available solutions.

Respondents 

Discshop
Euroline
FöreningsSparbanken
H&M
MTG Internet Retailing
Paynova
Posten Betalväxel
RSA Security
Skandinaviska Enskilda Banken
Svenska Handelsbanken
Zoovillage

Key words: Transaction Security, Security Criteria, Success Factors, E-commerce, SSL, SET, 3-D Secure, Direct Payment, E-kort Service, Paynova Wallet.  

Stockholm University (1998-2003)