Good security practices for electronic commerce, including electronic data interchange / Roy G. Saltman.

Format:

Book

Government document

Author/Creator:

Saltman, Roy G., author.

Contributor:

Saltman, Roy G.

National Institute of Standards and Technology (U.S.). Computer Security Division.

Series:

NIST special publication ; 800-9.

NIST special publication ; 800-9

Language:

English

Genre:

Technical reports.

Physical Description:

1 online resource.

Place of Publication:

Gaithersburg, MD : U.S. Dept. of Commerce, National Institute of Standards and Technology, 1993.

System Details:

text file

Summary:

Electronic commerce (EC) is the use of documents in electronic form, rather than paper, for carrying out functions of business or government that require interchange of information, obligations, or monetary value between organizations. Electronic data interchange (EDI) is the computer-to-computer transmission of strictly formatted messages that represent documents; EDI is an essential component of EC. With EC, human participation in routine transaction processing is limited or non-existent. Transactions are processed and decisions are made more rapidly, leaving much less time to detect and correct errors. This report presents security procedures and techniques (which encompass internal controls and checks) that constitute good practices in the design, development, testing and operation of EC systems. Principles of risk management and definition of parameters for quantitative risk assessments are provided. The content of the trading partner agreement is discussed, and the components of EC, including the network(s) connecting the partners, are described. Some security techniques considered include audit trails, contingency planning, use of acknowledgments, electronic document management, activities of supporting networks, user access controls to systems and networks, and cryptographic techniques for authentication and confidentiality.

Notes:

1993.

Contributed record: Metadata reviewed, not verified. Some fields updated by batch processes.

Title from PDF title page.

Withdrawn.

Includes bibliographical references.

OCLC:

927737338

Publisher Number:

GOVPUB-C13-c2058897311221041d74beeb1af94d13

Access Restriction:

Open Access Unrestricted online access