of the data source. An example of a security breach is a hacker breaking into an e-

business site and gaining access to credit card or other customer information.

Integrity: This is the ability to ensure that information being displayed on a Web site or

being transmitted/received over the Internet has not been altered in any way by an

unauthorized party. One type of integrity security breach would be an unauthorized

person intercepting and redirecting a bank wire transfer into a different account.

Availability: This is the ability to ensure that an e-business site continues to function as

intended. One availability security breach is a DoS (Denial of Service) attack in which

hackers flood a Web site with useless traffic that causes it to shut down, making it

impossible for users to access the site.

Key management:

provide secure communications. One type of security breach is "sniffing" in which a

program is used to steal proprietary information on a network including the keys to

decrypt a

private message.
 

Nonrepudiation: The ability to ensure that e-business participants do not deny their

online actions. An example of a repudiation incident would be a customer ordering

merchandise online and later denying that he or she had done so. The credit card issuer

will usually side with the customer because the merchant has no legally valid proof

that the customer ordered the merchandise.

Authentication: Authentication is the ability to identify the identity of a person or

entity you are transacting with on the Internet using digital signatures and certificates.

One instance of an authentication security breach is "spoofing," in which someone

uses a fake e-mail address, or poses as someone else. This can also involve redirecting

a Web link to a different address.