1. OAR@UM
  2. Faculty of Information and Communication Technology
  3. Department of Computer Information Systems
  4. Scholarly Works - FacICTCIS
Please use this identifier to cite or link to this item: https://www.um.edu.mt/library/oar/handle/123456789/16831
Full metadata record
DC FieldValueLanguage
dc.contributor.authorCachia, Ernest-
dc.contributor.authorMicallef, Mark-
dc.date.accessioned2017-02-25T19:06:14Z-
dc.date.available2017-02-25T19:06:14Z-
dc.date.issued2007-
dc.identifier.citationCachia, E., & Micallef, M. (2007). A multi-tier, multi-role security framework for e-commerce systems. 14th Annual IEEE International Conference and Workshops on the Engineering of Computer-Based Systems (ECBS'07), Tucson. 422-432.en_GB
dc.identifier.urihttps://www.um.edu.mt/library/oar//handle/123456789/16831-
dc.description.abstractAs the use of the Internet for commercial purposes continues to grow, so do the number of security threats which attempt to disrupt online systems (Glisson and Welland, 2005); (Deloitte, 2005); and (Gordon et al., 2005). A number of these threats are in fact unintended (Mackey, 2003). For example, a careless employee might drop a cup of coffee onto essential equipment. However, when compared to the brick and mortar world, the Internet offers would-be attackers a more anonymous environment in which to operate. Also, the free availability of hacking tools makes it possible even for the curious teenager to carry out dangerous attacks. Despite this ever-present threat however, it is all too often the case that security is dealt with (if at all) after a Web application has been developed (Gaur, 2000). This is mainly due to our software development heritage whereby companies prefer to focus on the functionality of new systems because that provides and immediate return on investment. This paper proposes a framework for building security into Web applications as they are being developed. The core philosophy here is that security is too big an issue to leave up to one person/team after the product has been developed. The framework also provides a quality assurance process and a communication protocol to ensure that all security-related tasks have been carried out.en_GB
dc.language.isoenen_GB
dc.publisherInstitute of Electrical and Electronics Engineers Inc.en_GB
dc.rightsinfo:eu-repo/semantics/restrictedAccessen_GB
dc.subjectElectronic commerceen_GB
dc.subjectComputer networks -- Security measuresen_GB
dc.subjectQuality assuranceen_GB
dc.subjectComputer crimesen_GB
dc.titleA multi-tier, multi-role security framework for e-commerce systemsen_GB
dc.typeconferenceObjecten_GB
dc.rights.holderThe copyright of this work belongs to the author(s)/publisher. The rights of this work are as defined by the appropriate Copyright Legislation or as modified by any successive legislation. Users may access this work and can make use of the information contained in accordance with the Copyright Legislation provided that the author must be properly acknowledged. Further distribution or reproduction in any format is prohibited without the prior permission of the copyright holder.en_GB
dc.bibliographicCitation.conferencename14th Annual IEEE International Conference and Workshops on the Engineering of Computer-Based Systems (ECBS'07)en_GB
dc.bibliographicCitation.conferenceplaceTucson, United States, 26-29/03/2007en_GB
dc.description.reviewedpeer-revieweden_GB
dc.identifier.doi10.1109/ECBS.2007.8-
Appears in Collections:Scholarly Works - FacICTCIS
Scholarly Works - FacICTCS

Files in This Item:
File Description SizeFormat 
A Multi-Tier, Multi-Role Security Framework for E-Commerce Systems.pdf
  Restricted Access		A multi-tier, multi-role security framework for e-commerce systems351.93 kBAdobe PDFView/Open Request a copy
Show simple item record Statistics


Items in OAR@UM are protected by copyright, with all rights reserved, unless otherwise indicated.