Information Security Management: Awareness of Threats in E-Commerce

Information Security Management: Awareness of Threats in E-Commerce

Mohammad Mahfuzur Rahman (Applied Research Centre for Business and Information Technology (ARCBIT), UK) and Karim Mohammed Rezaul (Centre for Applied Internet Research (CAIR), Glyndwr University, UK)
DOI: 10.4018/978-1-4666-0978-5.ch004
OnDemand PDF Download:
No Current Special Offers


The expansion of electronic commerce (E-commerce) has become an increasing reality due to Internet’s rapid growth during the last few years. E-commerce is growing at an exceptional rate with more organizations offering their goods and services online every day. Importantly, this growth is being matched by the number of people gaining access to the Internet in a variety of ways. E-commerce offers opportunities as well as threats. Information is crucial for any organization, especially in the e-market. The lack of an effective and trusted payment system that can be used in combination with online shopping has been limiting factor in the growth of Internet sales. Consumers are hesitant to provide personal information, including credit card details, over the Internet because of high perception of risk and concerns with privacy. Establishment of Information Security System can minimize the threats and risks. Technology can play an important role in intensifying trust in the information society and securing consumer rights. E-commerce will not be successful without protecting the consumers’ rights, especially in the area of information security. The research highlights the relevant theories of information security within the e-commerce sectors, including identifying and investigating the problems.
Chapter Preview


E-Commerce plays a vital role in today’s business, and that will continue growing in the future. E-Marketer predicts that worldwide e-commerce revenues are expected to total USD 2.7 trillion by 2004 (Reinsch, 2005). Information is a valuable asset in any organization particularly in the e-market. To effectively manage the threats and risks, the company should establish their Information Security System. There are several problems associated with information security, for example, phishing, slammer attack, stolen or ignorance by the employee or organization itself and so on. To avoid or minimize these problems all organizations should practice the critical success factors (CSF) to implement an effective information security. In practice, most information systems need the active participation of staff throughout the organization.

E-shopping is now a popular method among all types of shopping; e-shopping covers everything from groceries to cars. As the number of e-shopper grows, the number of businesses that move into e-commerce also grows. Direct selling and buying are increasingly taking place on the Internet. One of the first to report sales in the millions of dollars directly from the Web was Dell Computer. Web research is becoming significant as the customers can book and check their Travel information through the Internet. Custom-orderable golf clubs and similar specialties are considered good prospects for the immediate future (Nelson, 2001). The expectation that e-commerce would quickly become a part of the consumer’s everyday life has not been completely fulfilled in practice and one of the reasons for this failure is said to be the consumer trust, or rather the lack of it (Merrilees and Frye, 2003). So security is a very serious issue for e-commerce businesses.

Aims and Objectives

The aims and objectives of this research are:

  • To discuss and analyze the relevant research about the theories of Information Security within the e-commerce sectors, including identifying and investigating the problems.

  • Identifying the critical success factors (CSFs) for an effective information system and recommend the future of information security system.

  • This study will also address the possible way to minimize or remove the risk of information security including why information security is important to the e-commerce.

  • At the end, this study will provide a conclusion and recommendation for the future implementation of information security.

Research Questions

Research questions are:

  • What is the perception of the consumer about online shopping?

  • How information security threats effecting consumers’ online shopping?

  • What are the problems faced by the consumers while shopping online?

  • Are the consumers aware of these threats?

  • What are the initiatives need to be taken to reduce the information security risks?


The following limitations are placed on the proposed study:

  • The survey methods assume that the respondent will make an honest effort to understand and answer the questions truthfully.

  • One of the limitations of the study is relatively small amount of data. The number of samples used for the study is relatively small.

  • This survey might not represent all sectors of e-commerce.

Complete Chapter List

Search this Book: