Problem
Moving the business online will present some new security risks, placing more reliance on digital technologies such as an e-commerce website, online credit card processing, customer data processing, and the use of productivity tools like email, cloud-based video conferencing, and file storage services for the staff members remotely working from home.
The company is concerned with web application vulnerabilities and common security threats that include Structured Query Language (SQL) injection, cross-site scripting (XSS) and distributed denial-of-service (DDoS). They are also concerned with hackers intercepting and modifying email between staff members and customers, The company has hired you as part of its new network and IT security team to coordinate the network security and transition of the business online.
The new company's e-commerce website has been configured to use HyperText Terminal Protocol (HTTP).
1. Discuss two security risks associated with the use of HTTP based on the scenario.
2. Describe a digital certificate and how it can be used to secure the new e-commerce website.