Ecommerce security, Payment Gateways and General Information

Security products: SSL certificates

To maintain confidentiality and integrity for online transactions, any ecommerce web site must be secured by a digital certificate.

Secure Sockets Layer (SSL) technology protects your Web site and makes it easy for customers to trust you.

* An SSL Certificate enables encryption of sensitive information during online transactions.
* Each SSL Certificate contains unique, authenticated information about the certificate owner.
* Every SSL Certificate is issued by a Certificate Authority that verifies the identity of the certificate owner.

An SSL Certificate consists of a public key and a private key. The public key is used to encrypt information and the private key is used to decipher it. When a Web browser points to a secured domain, a Secure Sockets Layer handshake authenticates the server (Web site) and the client (Web browser). An encryption method is established with a unique session key. They can begin a secure session that guarantees message privacy and message integrity.

Authentication Practices

Every SSL Certificate is created for a particular server in a specific domain for a verified business entity. Like a passport or a driver’s license, an SSL Certificate is issued by a trusted authority, the Certificate Authority (CA). When the SSL handshake occurs, the browser requires authentication from the server. A customer sees the organization name when they click certain SSL trust marks (such as the VeriSign Secured™ Seal) or use a browser that supports Extended Validation. If the information does not match or the certificate has expired, the browser displays an error message or warning.

Protect Your Customers’ Trust

Without SSL encryption, packets of information travel through networks in full view. Imagine sending mail through the postal system in a clear envelope. Anyone with access to it can see the data. If it looks valuable, they might take it or change it. Without third-party verification, how do you know a Web site is really a business you trust? Imagine receiving an envelope with no return address and a form asking for your bank account number. An SSL Certificate helps Web site visitors protect sensitive information and get a better idea of who they are trusting with it.

WebSoft of Puerto Rico represents GeoTrust SSL Seals. 

A trusted leader in online security services

GeoTrust® is the world's second largest digital certificate provider. More than 100,000 customers in over 150 countries trust GeoTrust to secure online transactions and conduct business over the Internet. Our range of digital certificate and trust products enable organizations of all sizes to maximize the security of their digital transactions cost-effectively.

GeoTrust's world-class SSL Certificates offer fast delivery at a cost-effective price, enabling up to 256-bit SSL encryption, and include a range of GeoTrust® True Site Seals based on the level of identity verification.

The result? TrustLogo helps convert website visitors into customers.

Yet, another security confidence option, HackerGuardian is not a replacement for an SSL seal.

Hacker Guardian:

A significant part of the reason why people abandon a web site without making a purchase is public concern about the safety of online transactions following high profile stories about breaches of webserver security. As a result, customers are increasingly looking to the trust indicators built into websites for reassurance that their credit card details are safe once they have been transferred onto a vendor webserver.

HackerGuardian TrustLogo is the daily server vulnerability assessment and certification service that delivers essential, real time verification of your security credentials directly to your website customers.

Under the terms of the service, a client's webserver is thoroughly audited every 24 hours. Upon passing the pre-defined test criteria, website owners are awarded 'HackerProof' status and are authorized to display the HackerGuardian TrustLogo on their corporate website.

Payment Gateway vendors and General Information about doing business with ecommerce websites.

1. Ecommerce Website

A Web site capable of accepting payments and submitting them for processing via the Internet.

2. Internet Merchant Account: A type of bank account that allows a business to accept Internet credit card payments. A merchant account allows credit card sales to be automatically deposited directly into a bank account on a daily basis

3. Payment getaway account: A secure Internet bridge between eCommerce Web site and the credit card processing networks.

4. Connection Method: A set of Web programming requirements that define how your Web site communicates with Payment Gateway.

WebSoft of Puerto Rico is an authorize vendor for Banco Popular Multi-Merchant Services. Multi Merchant Services is a Payment gateway that accepts VISA, Master Card, American Express, ATH (debit card) and ACH (check payments) in one convenient platform.

For those of you that do not have a relationship with BPPR, for added convenience we also represent Global Payments and These two can work with any bank in PR and with any currency other than US Dollar.