Question

For the below questions, write a thorough and complete response in the text box below.

Go to a popular online e-commerce site like Amazon.com. Place several items in your shopping cart, and then go to check out. When you reach the screen that asks for your credit card number, right-click on the Web browser and select “Properties.” What can you find out about the cryptosystems and protocols in use to protect this transaction?
Repeat question 1 on a different Web site. Does this site use the same or different protocols? Describe them.
After your initial post (minimum of 300 words), reply to the posts of at least two classmates (minimum 100 words per response). You may want to address how the sites they examined are similar and/or different than the ones you looked at and any generalizations or conclusions that can be drawn.

Answer 1

Question: Go to a popular online e-commerce site like Amazon.com. Place several items in your shopping cart, and then go to check out. When you reach the screen that asks for your credit card number, right-click on the Web browser and select “Properties.” What can you find out about the cryptosystems and protocols in use to protect this transaction?
Repeat question 1 on a different Web site. Does this site use the same or different protocols? Describe them.
After your initial post (minimum of 300 words), reply to the posts of at least two classmates (minimum 100 words per response). You may want to address how the sites they examined are similar and/or different than the ones you looked at and any generalizations or conclusions that can be drawn.

Answer: HTTPs is Hyper Text Transfer Protocol over Secure Socket Layer that makes payment transaction securely. By default, HTTPs uses port number 80 for making connection. And this feature has been adopted in Amazon website for transaction through Credit Card mode.

The Amazon web site sets customers’ account by making two-step verification, i.e. Multi Factor Authentication. This MFA do two steps verification for accessing the account, first sign in the Amazon account with password then it sends a security code on registered mobile number that customer need to fill the received security code then can access his/her account.

Whenever do payment request through credit card, right click the existing web browser and click on Properties option which Amazon.in web site uses i.e. certified by the Hyper Text Transfer Protocol over Secured Socket Layer and it uses 128 bits symmetric encryption and its speed to flow this information is 1024 bits per second (bps) from source machine to destination machine.   

Here Amazon.in web site uses this type of connection. But whenever visit some different e-commerce web site then it is not necessary that do the same flow of action, same protocol and same connection method for completing any transaction through credit card. Basically these days, every site uses the HTTPs connection that achieved SSL (Secure Socket Layer) certification i.e. it is an industry standard in server secure protection.

For credit card payment, ISO 8585 (International Standard for Online financial transaction through Card) and some more customizable XML protocol uses under the HTTPs and VPN (Virtual Private Network) protection

The overall conclusion of above discussion is that particular protocol and format depends on the payment type and the acquirer.