Small businesses must always consider web security issues when deploying
a business website. Unless there is a specific need, small businesses
should not allow visitors to "write" files of any sort to the web server.
If there is a need to store data that is captured in electronic form on the
web server, the "write access" permissions must be properly set-up.
Small businesses that plan to implement e-Business applications that require
user authentication, credit card or bank card processing, should take
additional security precautions. All businesses have a moral and legal
responsibility to protected the privacy of their customers and their suppliers.
Whenever private data is accepted via a web application, it is important that that
data be encrypted. When a web page is properly encrypted, a small lock
icon will appear in the browser. Data that is not
encrypted is no more secure than a information on a post card that travels through the mail
service. Anyone who touches it can read it.
In addition to enforcing security from a technical perspective, it is
equally important to ensure that data is protected once it arrives at your
business location. Proper controls should be implemented to restrict data
access to designated individuals in your business.
