March 25, 2008

Is Server based aggregation better than client based?

Filed under: Q&A — Administrator @ 10:51 am

as-web-apps.png
Server based aggregation is the way to go these days as it minimizes bandwidth on the server as well as on the client side. However, client side aggregation also has its benefits.

First, users don’t have to wait while loading the data as it is already on the client server. The waiting time may not matter for text downloads, but can be significant for bigger and heavier downloads like videos. One answer to the bandwidth problem is to update sites with a ping through websites like weblogs.com using web applications like blogrolling to the client. The client only needs to visit the updated sites and download the information before the user requests it.

However, this solution may not work well if the client is charged per downloaded data, therefore, server based aggregation may be better option in this instance.

January 20, 2008

What are the best ways to check the basic security of an e-commerce Web site?

Filed under: Q&A — Administrator @ 1:14 am

Firstly, you should check the security of the servers hosting the e-commerce site. A Web server needs to be hardened and securely maintained. For guidance, I recommend that you download the appropriate Security Configuration Guide from the U.S. National Security Agency Web site. The guides are free and cover most Web servers. You can also use the NIST (National Institute of Standards and Technology) Security Configuration Checklists Repository to find instructions and procedures on how to complete a secure configuration. The free Benchmark and Scoring Tools from the Center for Internet Security (CIS) also provides a quick and easy way to evaluate an e-commerce Web infrastructure and compare its level of security against minimum due-care security benchmarks.

(more…)