Article Preview
TopIntroduction
In current scenario, security of the online payment website is very important because activities like online banking, utility bill payment and e-commerce etc. are made through the internet, which demands security. Singh et al. (2014) past history like Citigroup, Sony, ADP (Automatic Data Processing) and others suffered from major breaches in the year 2012 and in the recent times, security has taken a major role.
The most common types of attacks that a malicious user can use to exploit EPS security are: SQL injection attack (SQLI), XSS (Cross Site Scripting) attack, URL manipulation, Brute Force attack (BF), Denial of Service (DoS)/Distributed Denial of Service (DDoS), Identity Spoofing, Malware, Malvertising, Session hijacking (SH), etc.
Laverty et al. (2009) standard network security practices attempt to avert unauthorized access to network resources or interrupt the content of network messages before a destructive user has the option to do any potential damage. Still, easy accessibility of internet has led to increase in new web security attack. MacDonald et al. (2009) Intrusion-detection systems and firewalls do not defend web based system from SQL injection attack and Cross Site Scripting. WASC (2005) as per Web Application Security Consortium, XSS, SQLI and DoS are the most frequently attacked the web application. As per 2016 statistics, % wise attack is presented in Table 1 (cyber attack statistics, 2017).
Table 1. Percentage wise attack on EPS
| Sr# | Attack Type | Attack Percentage |
| 1 | Unknown | 33.1 |
| 2 | Account Hacking | 15.1 |
| 3 | Targeted Attack | 11.6 |
| 4 | DOS/DDOS | 11.3 |
| 5 | SQLI | 8.4 |
| 6 | Malware | 8.0 |
| 7 | Defacement | 4.9 |
| 8 | Others | 7.6 |