Journal of Information Systems Education


Over the past few years, more and more companies have been investing in electronic commerce (EC) by developing and implementing web-based applications on the Internet. While EC can help improve business services and increase customer satisfaction, it also brings increased security risks to those companies implementing it. Developers of EC web sites have to incorporate ways to systematically identify and eliminate security vulnerabilities within their EC applications. This paper describes how Microsoft ASP.Net can be used to assist students in exploring ways to increase the security of EC applications. The hands-on component covers useful techniques for improving application robustness in the pre-sales, online-sales and after-sales phases of an EC application. The paper concludes with a discussion of "lessons learned" and suggestions for effectively teaching security in an EC design course.



When commenting on articles, please be friendly, welcoming, respectful and abide by the AIS eLibrary Discussion Thread Code of Conduct posted here.