What are the security risks of e-commerce?

1. Network system security problems faced by e-commerce

E-commerce system is a network-dependent business system, which needs to use Internet infrastructure and standards. Therefore, the bottom layer of e-commerce security framework is the network service layer, which provides the carrier of information transmission and the means of user access, is the foundation of various e-commerce application systems, and provides basic and flexible network services for e-commerce systems.

The security problems of e-commerce network system include the following aspects:

(1) Unsafe factors of network components.

(2) The software is unsafe.

(3) Unsafe factors of employees.

(4) Natural environmental factors.

2. Electronic payment system security problems faced by e-commerce.

As we all know, the e-commerce payment system based on the Internet platform involves customers, merchants, banks, certification departments and other institutions, and the possible transfer of funds between them. Therefore, customers and merchants must fully consider the security of their systems when conducting online transactions.

At present, the main security issues of online payment are as follows:

(1) Private payment information such as payment account number and password is stolen or embezzled during network transmission.

(2) Change of payment amount.

(3) The identity of the payee cannot be effectively verified.

3. The security problems of authentication system faced by e-commerce

1. Information leakage

In e-commerce, the disclosure of business secrets mainly includes two aspects: the content of the transaction between the two parties is the first.

Tripartite theft; Documents provided by one party to the other party are illegally used by a third party. If you know the account number and user name of the credit card, it may be stolen.

distort

In e-commerce, it shows the authenticity and integrity of business information. Electronic transaction information may be illegally modified, deleted or tampered with by others during network transmission, which makes the information lose its authenticity and integrity. If two companies sign a contract to supply raw materials from one company to another, if the price of raw materials rises, the supplier company will gain huge benefits by tampering with the price, and the purchasing company will suffer losses.

Step 3 identify

In online transactions, if identity identification is not carried out, the third party may impersonate the identity of one party to destroy the transaction, destroy the reputation of the counterfeited party or steal the transaction results of the counterfeited party. After identification, the two sides can prevent mutual suspicion.

4. Deliberately deny the facts

Due to the ever-changing commercial conditions, once a commercial contract is signed, it cannot be denied, otherwise it will inevitably harm the interests of one party. Therefore, e-commerce puts forward corresponding security control requirements.

(1) Legal security of e-commerce. With the continuous development of international informatization and network evolution, there are more and more cases of using computer networks to commit crimes in the field of e-commerce, and the modes and means of crime are constantly being renovated.

(2) Legal issues in electronic contracts. E-commerce contracts are signed between computer systems in different locations. The laws of many countries require that there must be written transaction documents as proof of the validity of the transaction and as evidence of the transaction; Otherwise, this contract is invalid. Whether an electronic contract can be regarded as a written contract and obtain the same effect as a written document is an unsolved problem in the laws of various countries. Compared with traditional written documents, electronic documents are unstable, and some external interference to computer networks may cause information loss, damage and change.

(3) Legal issues of e-banking services. Banks are the ultimate executors of electronic payment settlement, and play the role of a link between buyers and sellers. However, for some banks engaged in electronic money business, criminals forged electronic money, which brought direct economic losses to banks.

(4) Legal issues of electronic fund transfer. The law of electronic fund transfer is a special problem, but the paperless payment and settlement method of electronic bills authenticated by digital signature is not recognized in Bill Law at present. And the payment is irrevocable, and the payer or the third party cannot request to cancel the completed electronic fund transfer.

(5) Intellectual property protection in e-commerce. The transaction objects and behaviors in e-commerce activities often involve the traditional intellectual property field.

(6) Protection of consumers' rights and interests in e-commerce. New trading methods such as e-commerce bring various new rights protection issues to the protection of consumers' rights and interests. With the progress of science and technology, a large number of new products appear, and the contradiction of lagging consumption knowledge is more prominent.

legal ground

Electronic Commerce Law of the People's Republic of China

Article 9 E-commerce operators mentioned in this Law refer to natural persons, legal persons and unincorporated organizations engaged in selling goods or providing services through information networks such as the Internet, including e-commerce platform operators, operators within platforms and e-commerce operators selling goods or providing services through self-built websites and other network services.

E-commerce platform operators mentioned in this Law refer to legal persons or unincorporated organizations that provide online business premises, transaction matching, information release and other services for two or more parties to independently conduct transactions in e-commerce.

The term "in-platform operators" as mentioned in this Law refers to e-commerce operators who sell goods or provide services through e-commerce platforms.

Article 53 The parties to e-commerce may agree to pay the price by electronic payment.

When providing electronic payment services for e-commerce, electronic payment service providers shall abide by state regulations and inform users of the functions, usage methods, precautions, related risks and charging standards of electronic payment services, and shall not attach unreasonable trading conditions. Electronic payment service providers shall ensure the integrity, consistency, traceability and non-tampering of electronic payment instructions.

Electronic payment service providers shall provide users with reconciliation services and transaction records in the last three years free of charge.