22 010 622 internet technology and e business
play

22:010:622 Internet Technology and E-Business Dr. Peter R. Gillett - PowerPoint PPT Presentation

Jan 22, 2024 •259 likes •701 views

22:010:622 Internet Technology and E-Business Dr. Peter R. Gillett Associate Professor Department of Accounting & Information Systems Rutgers Business School Newark & New Brunswick Dr. Peter R Gillett March 5, 2003 1 Overview

  1. 22:010:622 Internet Technology and E-Business Dr. Peter R. Gillett Associate Professor Department of Accounting & Information Systems Rutgers Business School – Newark & New Brunswick Dr. Peter R Gillett March 5, 2003 1

  2. Overview � Review of Last Week? � Client Threats � Data Collection and Analysis � Internet Pricing � Security Issues � Firewalls and Related Technology � Simple Game Theory Dr. Peter R Gillett March 5, 2003 2

  3. The Big Issues Turban et al. quote a Georgia Tech. � survey (97-98) of the most significant issues facing the Internet: Censorship (privacy issues) 1. Privacy 2. Navigation (not really privacy) 3. Taxation 4. Encryption 5. Dr. Peter R Gillett March 5, 2003 3

  4. Domain Names � Cybersquatting � Name changing � Name stealing Dr. Peter R Gillett March 5, 2003 4

  5. Client Threats � Active Content � Java applets � ActiveX Controls � JavaScript � VBScript � Cookies � Trojan Horses � Zombies � Viruses � Worms � Steganography Dr. Peter R Gillett March 5, 2003 5

  6. Big Issues � Privacy and the World � The Internet is global � Different views: � US: privacy is balanced against the needs of society � Europe: privacy a constitutional right � General Issues � Accuracy � Property � Accessibility and verifiability Dr. Peter R Gillett March 5, 2003 6

  7. Data Collection on the Web � Primary types collected on Web Sites � Domains � Countries, companies � IP address, browser type, etc. � Timing Records � How long on web site? � How long to a purchase? � When? � Repeat visits? Dr. Peter R Gillett March 5, 2003 7

  8. Data Collection on the Web Time Series of data � Descriptive: what happened � Predictive: anticipate what will happen next � Explanation: why this lead to a sale. � Seasonality effects: E-marketing and winter � holiday season. Day and night. Periodic: weekends � Trends: increasing sales overall, decreasing � sales per minute visited Whose property are the predictions? � Dr. Peter R Gillett March 5, 2003 8

  9. Data Analysis � Where can we get the data about our web site? � Types of statistical analysis � A time series is stationary if it has no periodic variation and no trend and no change in variance � Looking for trends Dr. Peter R Gillett March 5, 2003 9

  10. Competitive v. Cooperative Marketing Competitive Marketing Cooperative Marketing Frontal Assault Joint Venture (Amazon.com vs. BN.com) (Microsoft) Flank Attack Value Chain partnership (e*Trade vs. Schwab) (Dell, ingredient marketing) Raise Structural barriers Lower Desire for attack (lots of costly development (joint marketing programs) or marketing) Dr. Peter R Gillett March 5, 2003 10

  11. Internet Firms Raising Prices! Why? � People seem willing to pay more � Costs are higher � Not able to buy in bulk like larger brick-and-mortar � stores Equity markets no longer willing to support money- � loosing enterprises What is the cardinal rule of pricing? � Why have Internet firms focused on price? � Dr. Peter R Gillett March 5, 2003 11

  12. Internet Pricing X looses $1 on each unit they sell, but � that is OK since they make it up on volume! How? Primary and secondary data � Controlled Experiments � Conjoint Surveys � Market Intelligence � Dr. Peter R Gillett March 5, 2003 12

  13. Advantages of Internet Pricing? � Speed � Audience � Experiments � Fast � Large � Market Intelligence Dr. Peter R Gillett March 5, 2003 13

  14. Key Security Issues � Authentication � Secrecy � Data � Firm’s data � Customer data � Internal data � Hierarchy of Security Dr. Peter R Gillett March 5, 2003 14

  15. Security � Extranets are harder to secure than intranets � Must deal with lots of other systems � Outer firewall protects from gross misuse � Perhaps the best way: packet filtering firewall � Intranets generally have more tight security � More sensitive information � ORB: Object Request Broker model � Sending your Objects (data) where? � Not keeping things totally secured Dr. Peter R Gillett March 5, 2003 15

  16. Security: Flavors � SecurID: One-Time Pad � Risks? � Lost or stolen � Hashing or finger-printing as an ID � What is hashing? � Hashing: many to fewer Dr. Peter R Gillett March 5, 2003 16

  17. Bellcore’s S/Key System � Start with a secure password � Using the same algorithm � Host and local server generate many one-time passwords � Use passwords sequentially � After each use, dispose of passwords � Like One-Time Pads � Like SecurID’s hardware tokens Dr. Peter R Gillett March 5, 2003 17

  18. PPP, PAP, & CHAP � PPP: point to point protocol � Secure links � Secure the transmission and exchange � Transmit passwords, User Ids, etc. � Allows challenges of authentication � Things change � Packets intercepted, etc. � PAP: � Password Authentication Protocol � Clear text id and password pairs � Acknowledgements � CHAP � Three-way handshake protocol using hashing Dr. Peter R Gillett March 5, 2003 18

  19. Other Security Methods � Business: different needs � RADIUS: Remote Authentication Dial In User Service � TACACS: Cisco’s server security protocol � Administers � Authentication � Authorization � Account information for users Dr. Peter R Gillett March 5, 2003 19

  20. TACACS and Cisco � Uses a centralized server to hold all information � Why not distributed? � Sends all data in cleartext (TACACS+ uses encryption for sending) � Can handle a few other protocols! � Business issues? Dr. Peter R Gillett March 5, 2003 20

  21. SSL � Secure Socket Layer � History � Unix Sockets and Pipes � Sockets and TCP/IP � Internet Engineering Task Force and Netscape � Goal: “privacy and reliability between two communicating applications” Dr. Peter R Gillett March 5, 2003 21

  22. SSL Goals � Secure crypto connection between 2 parties � Interoperability with different programs � Extensibility: add new cryptographic methods as they appear � Relative efficiency Dr. Peter R Gillett March 5, 2003 22

  23. SSL � Two Layers � Low Level: Record Protocol (build on TCP/IP) encapsulates higher level protocols � Top Level Protocol: Handshake Protocol � Server and client authenticate each other � Negotiates encryption algorithms and keys � Top Level: Various Application Protocols � Different programs � Netscape, IE, etc. Dr. Peter R Gillett March 5, 2003 23

  24. SSL � Private connection (via a socket) � Authentication can use asymmetric encryption (RSA) � Encryption used after initial handshake � Symmetric encryption is used for transmission (like DES) � The connection must be reliable (TCP/IP) often over a socket Dr. Peter R Gillett March 5, 2003 24

  25. Firewall FAQ � http://www.interhack.net/pubs/fwfaq/firewalls-faq.pdf � Filter in/out access control � Access control consistency � Covers bad application protocols � Cost/service benefit � Network level � Application level � ftp � Proxy � Direct Dr. Peter R Gillett March 5, 2003 25

  26. Firewall FAQ � Allow only what is necessary � Consider space between Extranet and Intranet to be “DMZ” � Try to isolate single points of failure � There are few technical solutions for social problems � Watch out for: � ICMP re-directs � Proxies and mirrored data � DNS spoofing: IP hijacking, etc. Dr. Peter R Gillett March 5, 2003 26

  27. Firewall FAQ � Watch for: � Port Scans � Sniffing � Password (use RSA, etc.) � Clear Text Sniffing � Preventives � Use sniffers yourself � Monitor traffic � Anomaly detection Dr. Peter R Gillett March 5, 2003 27

  28. Firewall Heuristics � Increase the level of security as you “go into your network site” � In other words: inner fire-walls “stronger” than outer fire-walls � Why? � Partition Intranet and Extranet into security zones, possibly orthogonal to each other � Include an experienced human in the loop Dr. Peter R Gillett March 5, 2003 28

  29. Other Methods � PGP: protocol, see http://www.pgp.com/ � Secure MIME (Multipurpose Internet Mail Extensions): a hierarchical approach � Cyber Cash � SSL: get a secured link (socket) Dr. Peter R Gillett March 5, 2003 29

  30. System Penetration � Reconnaissance � Probe and attack � Toehold � Advancement � Stealth � Listening post � Takeover Dr. Peter R Gillett March 5, 2003 30

  31. E-Commerce and Business � On-line shopping grew by 300% Between 1997 and 2000 � On-line shopping grew by 600% in the last year � Security made this possible � IBM: “e-business is the transformation of key business processes through the use of Internet technologies” Dr. Peter R Gillett March 5, 2003 31

  32. ATM: Asynchronous Transfer Mode http://www.npac.syr.edu/users/mahesh/homepage/atm_tutorial � http://www.iec.org/tutorials/atm_fund/topic01.html � � Integrates Voice, Video and Data � Uses short fixed length packets called cells � Not guaranteed delivery: best effort � Bandwidth on demand: define circuit then get bandwidth � Once a path is found from source and destination: � Then virtual circuit is established � All cells travel this path Dr. Peter R Gillett March 5, 2003 32

Recommend

1 Internet Email Internet Commercialization SMTP is Internet Email protocol Rapid and

1 Internet Email Internet Commercialization SMTP is Internet Email protocol Rapid and

Background of Chapter Software Infrastructure of the Commercializing Internet Not finished Mostly journalistic Recounting of basic events from secondary sources Focus on interplay between technology and business models Thomas

463 views • 3 slides
22:010:622 Internet Technology and E-Business Dr. Peter R. Gillett Associate Professor

22:010:622 Internet Technology and E-Business Dr. Peter R. Gillett Associate Professor

22:010:622 Internet Technology and E-Business Dr. Peter R. Gillett Associate Professor Department of Accounting & Information Systems Rutgers Business School Newark & New Brunswick Dr. Peter R Gillett April 23, 2003 1 Outline

777 views • 40 slides
22:010:622 Internet Technology and E-Business Dr. Peter R. Gillett Associate Professor

22:010:622 Internet Technology and E-Business Dr. Peter R. Gillett Associate Professor

22:010:622 Internet Technology and E-Business Dr. Peter R. Gillett Associate Professor Department of Accounting & Information Systems Rutgers Business School Newark & New Brunswick Dr. Peter R Gillett April 2, 2003 1 Outline

805 views • 59 slides
22:010:622 Internet Technology and E-Business Dr. Peter R. Gillett Associate Professor

22:010:622 Internet Technology and E-Business Dr. Peter R. Gillett Associate Professor

22:010:622 Internet Technology and E-Business Dr. Peter R. Gillett Associate Professor Department of Accounting & Information Systems Rutgers Business School Newark & New Brunswick Dr. Peter R Gillett March 26, 2003 1 Overview

773 views • 45 slides
22:010:622 Internet Technology and E-Business Dr. Peter R. Gillett Associate Professor

22:010:622 Internet Technology and E-Business Dr. Peter R. Gillett Associate Professor

22:010:622 Internet Technology and E-Business Dr. Peter R. Gillett Associate Professor Department of Accounting & Information Systems Rutgers Business School Newark & New Brunswick Dr. Peter R Gillett February 12, 2003 1

968 views • 58 slides
22:010:622 Internet Technology and E-Business Dr. Peter R. Gillett Associate Professor

22:010:622 Internet Technology and E-Business Dr. Peter R. Gillett Associate Professor

22:010:622 Internet Technology and E-Business Dr. Peter R. Gillett Associate Professor Department of Accounting & Information Systems Rutgers Business School Newark & New Brunswick Dr. Peter R Gillett February 19, 2003 1

697 views • 48 slides
6. E-Commerce 6.1 Business on the Internet 6.2 Business and Competition 6.3 Common Business

6. E-Commerce 6.1 Business on the Internet 6.2 Business and Competition 6.3 Common Business

6. E-Commerce 6.1 Business on the Internet 6.2 Business and Competition 6.3 Common Business Internet Transactions 6.4 Threats and Opportunities Online 6.5 The Likely Future of E-Commerce 6.1 Business on the Internet The Internet is a

576 views • 44 slides
Internet Science and Technology Internet Science and Technology MSc program (now) / track within

Internet Science and Technology Internet Science and Technology MSc program (now) / track within

Internet Science and Technology Internet Science and Technology MSc program (now) / track within CS (soon) about all aspects of communication networks and cyber-physical systems: from fundamental technology to application; all kinds of

800 views • 24 slides
Business to Business Interactions Bridging Relational Technology Cars R Us Tires R Us and XML

Business to Business Interactions Bridging Relational Technology Cars R Us Tires R Us and XML

Business to Business Interactions Bridging Relational Technology Cars R Us Tires R Us and XML eXtensible Markup Language (XML) Jayavel Shanmugasundaram Internet Order Fulfillment Purchasing Cornell University Application Application

253 views • 11 slides
Policy and Technology Drivers in Policy and Technology Drivers in the Internet of Things the

Policy and Technology Drivers in Policy and Technology Drivers in the Internet of Things the

Policy and Technology Drivers in Policy and Technology Drivers in the Internet of Things the Internet of Things Grald Santucci Head of Unit Networked enterprise & Radio Frequency Identification (RFID) Internet of Things 2008, Zurich

732 views • 28 slides
The History of the Internet Presented by the St. Martins Episcopal Technology Department

The History of the Internet Presented by the St. Martins Episcopal Technology Department

The History of the Internet Presented by the St. Martins Episcopal Technology Department Agenda Internet History Internet Evolution Internet Pioneers Internet Growth The Future of the Internet Conclusion

541 views • 24 slides
Finance, Technology and the lessons for business.. 10s: Digitisation and the future

Finance, Technology and the lessons for business.. 10s: Digitisation and the future

Finance, Technology and the lessons for business.. 10s: Digitisation and the future 00s: The Internet unprecedented access to data, distribution and communication 90s: PCs and the age of the Spreadsheet 2 Who Am I?

499 views • 39 slides
Internet and Web Based Technology http://144.16.192.60/~isg/IWT/ About the Course I will be

Internet and Web Based Technology http://144.16.192.60/~isg/IWT/ About the Course I will be

Internet and Web Based Technology http://144.16.192.60/~isg/IWT/ About the Course I will be covering half the course (2 hours / week) Tuesday 9:30 AM 11:25 AM Topics to be covered How Internet works, HTML, HTTP, CGI scripts,

1.74k views • 142 slides
SOCI 210: Sociological Perspectives Nov. 24 1. Science, technology, and society 2. The Internet as

SOCI 210: Sociological Perspectives Nov. 24 1. Science, technology, and society 2. The Internet as

SOCI 210: Sociological Perspectives Nov. 24 1. Science, technology, and society 2. The Internet as equalizer / The Internet as divider 3. Interaction and identity online 1 Internet as Equalizer 2 Communication technology Technologies

628 views • 17 slides
Protecting children on the internet Aly Harakeh Spokesperson Business Software Alliance Eastern

Protecting children on the internet Aly Harakeh Spokesperson Business Software Alliance Eastern

Protecting children on the internet Aly Harakeh Spokesperson Business Software Alliance Eastern Mediterranean Committee alyh@microsoft.com Is the internet as dangerous as people think? (Or what is the internet?) The internet is public

340 views • 19 slides
Ali Kamandi Spring 2007 kamandi@sharif.edu Sharif University of Technology Internet History

Ali Kamandi Spring 2007 kamandi@sharif.edu Sharif University of Technology Internet History

Ali Kamandi Spring 2007 kamandi@sharif.edu Sharif University of Technology Internet History Internet Evolution Internet Pioneers Internet Growth Conclusion 1836 Telegraph invented by Cooke and Wheatstone Morse code to

592 views • 37 slides
THE INTERNET IS FOR EVERYONE Join us to keep the Internet open, thriving, and benefitting people

THE INTERNET IS FOR EVERYONE Join us to keep the Internet open, thriving, and benefitting people

THE INTERNET IS FOR EVERYONE Join us to keep the Internet open, thriving, and benefitting people around the globe. Conference on Global Internet Interconnection Center for Information Technology Policy Princeton University 11 March 2016

517 views • 20 slides
UETP - Facilitating the 'Economic Internet' with eIDs eID the business case for the banking

UETP - Facilitating the 'Economic Internet' with eIDs eID the business case for the banking

UETP - Facilitating the 'Economic Internet' with eIDs eID the business case for the banking and finance community EEMA, London, June 5 th , 2015 1 The Economic Internet The Economic Internet enables everyone and everything to: connect with

891 views • 45 slides
Will FTTH be the Principal Technology for Very High Speed Internet Access? Rich Clarke Center

Will FTTH be the Principal Technology for Very High Speed Internet Access? Rich Clarke Center

Will FTTH be the Principal Technology for Very High Speed Internet Access? Rich Clarke Center for Applied Internet Data Analysis Assistant Vice President Workshop on Internet Economics AT&T Global Public Policy UCSD, La Jolla, CA

633 views • 6 slides
What is VoIP? 1 VoIP What is it and how can it help my business? - VoIP is an acronym for

What is VoIP? 1 VoIP What is it and how can it help my business? - VoIP is an acronym for

Welcome to Business Matters Todays topic: What is VoIP? 1 VoIP What is it and how can it help my business? - VoIP is an acronym for Voice over Internet Protocol - Phone service through your Internet connection 2 Components of

510 views • 29 slides
Technology, Apps and Parents Potenza, 23 24.01.2016 General facts about Internet and

Technology, Apps and Parents Potenza, 23 24.01.2016 General facts about Internet and

Technology, Apps and Parents Potenza, 23 24.01.2016 General facts about Internet and technology use in Romania Internet has become a mass phenomenon in Romania, the number of users raised 5 times in the past 10 years there are

457 views • 10 slides
Modern Internet architecture, technology & philosophy Advanced Internet Services Dept. of

Modern Internet architecture, technology & philosophy Advanced Internet Services Dept. of

1 2/23/15 AIS 2015 Modern Internet architecture, technology & philosophy Advanced Internet Services Dept. of Computer Science Columbia University Henning Schulzrinne Spring 2015 02/23/2015 2/23/15 AIS 2015 NETWORK EVOLUTION &

684 views • 56 slides
Internet Security Summary ITS335: IT Security Sirindhorn International Institute of Technology

Internet Security Summary ITS335: IT Security Sirindhorn International Institute of Technology

ITS335 Internet Security Internet Security Secure Email Internet Security Summary ITS335: IT Security Sirindhorn International Institute of Technology Thammasat University Prepared by Steven Gordon on 20 December 2015 its335y15s2l10,

450 views • 25 slides
Rethinking the Internet and the telecommunications market today Why the Internet just works

Rethinking the Internet and the telecommunications market today Why the Internet just works

Rethinking the Internet and the telecommunications market today Why the Internet just works Why the Internet just works Departure from the e2e M. Handley, BT Technology journal, 2006 Network neutrality Trilogy consortium

156 views • 13 slides

More recommend