Get the most accurate TN Board Solutions for Class 12 Computer Applications Chapter 17 Ecommerce Security Systems here. Updated for the 2026-27 academic session, these solutions are based on the latest TN Board textbooks for Class 12 Computer Applications. Our expert-created answers for Class 12 Computer Applications are available for free download in PDF format.
Detailed Chapter 17 Ecommerce Security Systems TN Board Solutions for Class 12 Computer Applications
For Class 12 students, solving TN Board textbook questions is the most effective way to build a strong conceptual foundation. Our Class 12 Computer Applications solutions follow a detailed, step-by-step approach to ensure you understand the logic behind every answer. Practicing these Chapter 17 Ecommerce Security Systems solutions will improve your exam performance.
Class 12 Computer Applications Chapter 17 Ecommerce Security Systems TN Board Solutions PDF
Part I
Choose The Correct Answers
Question 1. In E-Commerce, when a stolen credit card is used to make a purchase it is termed as
(a) Friendly fraud
(b) Clean fraud
(c) Triangulation fraud
(d) Cyber squatting
Answer: (b) Clean fraud
In simple words: When someone uses a stolen credit card to buy things online, it is called clean fraud. This kind of fraud means the card details are used directly without other tricks.
๐ฏ Exam Tip: Remember that "clean fraud" specifically refers to using stolen credit card details directly, often without the cardholder's knowledge.
Question 2. Which of the following is not a security element involved in E-Commerce?
(a) Authenticity
(b) Confidentiality
(c) Fishing
(d) Privacy
Answer: (c) Fishing
In simple words: Authenticity, confidentiality, and privacy are important parts of keeping online shopping safe. Fishing is a type of attack, not a security feature itself.
๐ฏ Exam Tip: Distinguish between security elements (features that protect) and security threats (things that attack). Fishing is a threat, not a protection.
Question 3. Asymmetric encryption is also called as
(a) Secure Electronic Transaction
(b) Certification Authority
(c) RSA algorithm
(d) Payment Information
Answer: (c) RSA algorithm
In simple words: Asymmetric encryption uses two different keys, a public and a private one. The RSA algorithm is a well-known example of this type of encryption.
๐ฏ Exam Tip: Know the full forms of acronyms like RSA (Rivest-Shamir-Adleman) and SET (Secure Electronic Transaction) for clarity.
Question 4. The security authentication technology does not include
(i) Digital Signatures
(ii) Digital Time Stamps
(iii) Digital Technology
(iv) Digital Certificates
(a) i, ii & iv
(b) ii & iii
(c) i, ii & iii
(d) All of the options
Answer: (b) ii & iii
In simple words: Security authentication uses things like digital signatures and digital certificates to prove identity. Digital time stamps and general digital technology are not considered specific authentication technologies in this context.
๐ฏ Exam Tip: When dealing with "does not include" questions, focus on identifying the one option that clearly doesn't fit the category.
Question 5. PGP stands for
(a) Pretty Good Privacy
(b) Pretty Good Person
(c) Private Good Privacy
(d) Private Good Person
Answer: (a) Pretty Good Privacy
In simple words: PGP is a way to encrypt and decrypt emails or files to keep them private. It helps users send secret messages securely.
๐ฏ Exam Tip: Memorize common acronyms related to cybersecurity and their full forms, as they frequently appear in exams.
Question 6. ____________ protocol is used for securing credit cards transactions via the Internet
(a) Secure Electronic Transaction (SET)
(b) Credit Card Verification
(c) Symmetric Key Encryption
(d) Public Key Encryption
Answer: (a) Secure Electronic Transaction (SET)
In simple words: The SET protocol is a special rulebook for making credit card payments safe online. It ensures that credit card details are kept secret during internet transactions.
๐ฏ Exam Tip: Understand that SET is specifically designed for credit card security in e-commerce, distinguishing it from general encryption methods.
Question 7. Secure Electronic Transaction (SET) was developed in
(a) 1999
(b) 1996
(c) 1969
(d) 1997
Answer: (b) 1996
In simple words: The Secure Electronic Transaction (SET) protocol, which makes online credit card payments safe, was created in 1996. It was a big step for internet security at the time.
๐ฏ Exam Tip: Key dates for important protocols or technologies are often tested, so ensure you know them.
Question 8. The websites secured by Secure Socket Layer protocols can be identified using
(a) html://
(b) http://
(c) htmls://
(d) https://
Answer: (d) https://
In simple words: Websites that are secure use a special address that starts with "https://". The 's' stands for 'secure', meaning your information is protected.
๐ฏ Exam Tip: Always look for "https://" and a padlock icon in your browser's address bar to ensure a website is secure before entering personal information.
Question 9. 3-D Secure, a protocol was developed by
(a) Visa
(b) Master
(c) Rupay
(d) PayTM
Answer: (b) Master
In simple words: The 3-D Secure protocol, which adds an extra layer of security for online payments, was first created by MasterCard. This makes online transactions safer.
๐ฏ Exam Tip: Note the key players or organizations behind specific security protocols, as this helps in understanding their origin and purpose.
Question 10. Which of the following is true about Ransomware
(a) Ransomware is not a subset of malware
(b) Ransomware deletes the file instantly
(c) Typo piracy is a form of ransomware
(d) Hackers demand ransom from the victim
Answer: (d) Hackers demand ransom from the victim
In simple words: Ransomware is a harmful software that locks up your computer files. The hackers then ask for money, called a ransom, to unlock them.
๐ฏ Exam Tip: Understand that ransomware's defining characteristic is holding data hostage for payment, rather than immediate deletion.
Part II
Short Answers
Question 1. Write about information leakage in E-Commerce.
Answer: Information leakage means trade secrets are exposed in online business. This happens in two main ways. First, a third party might steal details about a transaction between a seller and a buyer. Second, documents exchanged between a merchant and a customer might be used by someone else without permission. Overall, stealing online documents by intercepting them is known as information leakage. Protecting sensitive data is crucial in e-commerce to maintain trust.
In simple words: Information leakage in online business means private trade details get stolen. This can happen if transaction info between buyers and sellers is taken, or if documents shared online are used illegally by others.
๐ฏ Exam Tip: When explaining information leakage, clearly state its definition and provide the main scenarios where it occurs in e-commerce.
Question 2. Write a short note on typo piracy.
Answer: Typo piracy is a type of cyber squatting. It happens when fake websites try to trick users by taking advantage of common typing mistakes. For example, if someone types "goggle.com" instead of "google.com", a typo piracy website might send them to a different, fake site. These tricky people use mistakes in website addresses to bring unwanted traffic to their own sites. This is a clever way to redirect users who make small errors while typing.
In simple words: Typo piracy is when fake websites use common typing errors to trick people. If you type a website name wrong, they might send you to their own site to get more visitors.
๐ฏ Exam Tip: Illustrate your explanation of typo piracy with a simple example like a common misspelling to make it clear.
Question 3. Define non-repudiation.
Answer: Non-repudiation is a security feature that prevents someone from denying an action or agreement after a deal is made. It ensures that once a transaction or a digital signature is completed, neither party can later say they didn't do it. This concept builds trust in online transactions, similar to a digital receipt that cannot be forged or disowned.
In simple words: Non-repudiation means that after an online deal, no one can say they didn't agree to it. It stops people from denying their actions in e-commerce.
๐ฏ Exam Tip: Emphasize that non-repudiation is about proving an action occurred and linking it to the responsible party, making denial impossible.
Question 4. List the different types of security technologies in E-Commerce
Answer: Some of the different types of security technologies used in E-Commerce include:
- Encryption technology: This scrambles data to keep it private.
- Authentication technology: This checks if someone is who they say they are.
- Authentication protocols: These are sets of rules for proving identity.
In simple words: E-commerce uses encryption to hide data, authentication to check identities, and special rules called protocols to make sure only the right people can access things.
๐ฏ Exam Tip: When listing technologies, give a very brief explanation of what each one does to demonstrate understanding.
Question 5. Write about digital signature.
Answer: A digital signature is a special electronic tool used to confirm that a digital document, message, or transaction is real and has not been changed. It is like a secure digital stamp that verifies the sender's identity. Digital signatures are used to prove that the data being sent is trustworthy and comes from the right person. This ensures the integrity and authenticity of digital information.
1. A digital signature is a method to check if a digital document, message, or transaction is truly authentic.
2. Digital signatures help confirm that the data being sent can be trusted.
In simple words: A digital signature is a way to make sure a digital document is real and hasn't been tampered with. It proves who sent it and that it's trustworthy.
๐ฏ Exam Tip: Highlight that digital signatures verify both the authenticity of the sender and the integrity (unchanged status) of the data.
Part III
Explain In Brief Answer
Question 1. Write a note on certification authorities (CA)
Answer: Certification Authorities (CAs) are trusted organizations that issue digital certificates. When someone needs a digital certificate, the CA checks their identity very carefully. If all the requirements are met, the CA then issues the certificate. This certificate helps confirm a person's or organization's identity in the digital world. CAs act as trusted third parties, ensuring the digital identities are genuine.
- Digital certificates are given out by recognized Certification Authorities (CA).
- When someone asks for a digital certificate, the authority checks who they are. If all requirements are met, the authority gives out the certificate.
๐ฏ Exam Tip: Explain the role of CAs as trusted entities that validate identities and issue digital certificates, which are essential for secure online communication.
Question 2. List some E-Commerce Security Threats?
Answer: Here are some common security threats in E-Commerce:
- Information leakage: When private data is exposed.
- Tampering: When data is changed without permission.
- Payment frauds: Dishonest schemes involving money transactions.
- Malicious code threats: Harmful software like viruses or worms.
- Distributed Denial of Service (DDoS) Attacks: Overwhelming a website with too much traffic.
- Cyber Squatting: Registering domain names to profit from others' brands.
- Typopiracy: Using common typos in website names to redirect users to fake sites.
In simple words: E-commerce faces dangers like data leaks, data changes, payment scams, harmful software, website overload attacks, registering fake domain names, and tricking users with typing mistakes.
๐ฏ Exam Tip: For listing questions, aim to provide a concise definition or a key characteristic for each item to show comprehensive knowledge.
Question 3. Differentiate asymmetric and symmetric algorithms.
Answer:
| Symmetric Key Encryption | Asymmetric Key Encryption |
|---|---|
| The same key is used for both encryption and decryption. | Different keys are used for encryption and decryption. |
| The speed of encryption or decryption is very fast. | The speed of encryption or decryption is comparatively slow. |
| Plain text and cipher text are usually the same size. | The size of the cipher text is always greater than plain text. |
| Algorithms like DES, AES, RC4 use symmetric key encryption. | Algorithms like RSA, ECC, DSA use asymmetric key encryption. |
| This method mainly provides confidentiality. | This method provides confidentiality, authenticity, and non-repudiation. |
| The number of keys needed grows exponentially with the number of users. | The number of keys needed grows linearly with the number of users. |
Symmetric Key Encryption
Asymmetric Key Encryption
๐ฏ Exam Tip: When differentiating, focus on the number of keys used (one vs. two) and the resulting speed and security benefits of each method.
Question 4. Write a note on PGP.
Answer: Pretty Good Privacy (PGP) is an encryption program developed by Phil Zimmermann in 1991. It provides privacy and authentication for data communication without needing a central authority. PGP uses a combination of different techniques, including hashing, data compression, symmetric-key cryptography, and asymmetric-key cryptography. It operates on a principle known as the "web of trust," where users vouch for each other's digital identities. PGP helps secure emails and files.
In simple words: PGP is a program made by Phil Zimmermann in 1991 to keep digital messages private and safe. It uses many kinds of encryption to make sure people can trust who they are talking to online.
๐ฏ Exam Tip: When describing PGP, mention its creator, purpose, the combination of encryption methods it uses, and the "web of trust" concept.
Question 5. Explain 3D secure payment protocols
Answer: 3-D Secure is a special secure payment protocol used online. Visa developed it to make online transactions much safer, and MasterCard also adopted it. This protocol adds an extra step to check the identity of the person using the payment card when they buy things on websites. Its main idea, based on XML, is to connect the financial approval process with an online system that authenticates the user. This makes online purchases more secure by confirming the cardholder's identity.
This authentication model has three parts, which is why it's called "3D":
1. The Acquirer Domain
2. The Issuer Domain
3. The Interoperability Domain
In simple words: 3-D Secure is an online payment safety rule made by Visa and MasterCard. It adds an extra check to make sure the person buying something online is the real cardholder. It works using three main parts to keep your money safe.
๐ฏ Exam Tip: For 3-D Secure, focus on its purpose (increased transaction security), its origin (Visa/MasterCard), and the three domains that define its structure.
Part IV
Explain In Detail
Question 1. Write about dimensions of E-Commerce Security.
Answer: E-commerce security involves several key elements to protect online transactions and data. These elements ensure trust and safety in the digital marketplace.
The following are some of the security elements involved in E-Commerce:
1. Authenticity: This ensures that the data being shared is genuine and comes from a verified source.
2. Availability: This prevents delays or the removal of data, ensuring systems are always accessible.
3. Completeness: This means all business information is kept together and unified.
4. Confidentiality: This protects data from being seen or used by people who are not authorized.
5. Effectiveness: This ensures that hardware, software, and data are handled well to work correctly.
6. Integrity: This prevents data from being changed or modified without permission.
7. Non-repudiation: This stops anyone from denying an agreement or action after a deal is done.
8. Privacy: This protects customers' personal data from being used by others without consent.
9. Reliability: This ensures that individuals or businesses can be identified dependably.
10. Review ability: This allows monitoring activities to check and track all operations.
These dimensions collectively build a robust framework for secure e-commerce operations.
In simple words: E-commerce security has many important parts like making sure data is real (authenticity), always reachable (availability), complete, secret (confidentiality), and not changed (integrity). It also ensures privacy, prevents denials (non-repudiation), and allows checking past actions.
๐ฏ Exam Tip: When discussing dimensions of e-commerce security, list each dimension and provide a concise, clear definition for each, focusing on its specific role in protection.
Question 2. Explain encryption technology.
Answer: Encryption technology is a powerful way to protect information security. It works by changing readable information (called Plaintext) into a scrambled, unreadable form (called Ciphertext). This scrambling is done using a special encryption algorithm, which ensures that the data remains confidential. The process of encryption or decryption always needs a specific key to either scramble or unscramble the data. This key is like a secret code.
At present, two main types of encryption technologies are widely used:
- Symmetric key encryption system
- Asymmetric key encryption system
- DES is a method of symmetric-key data encryption.
- It uses a standard block algorithm that takes a fixed-length string of clear text (plaintext) and changes it into an encrypted text of the same length.
- This technology also uses a key to customize how the data is scrambled. In theory, only people who know this exact key can unscramble the message.
- The DES key appears to be 64 bits long, but in reality, the algorithm uses only 56 bits for actual encryption. The other eight bits are just for checking errors (parity) and are then thrown away.
- The key's strength can be increased by using DES multiple times, known as Triple-DES (TDES, 3DES, or DESede).
- This method is also known as the RSA (Rivest-Shamir-Adleman) algorithm.
- It uses both public-key authentication and digital signatures to secure data.
- Each user creates their own pair of keys: a private key (kept secret) and a public key (shared with others).
- A public-key encryption method allows converting plaintext into ciphertext using a public key. The original plaintext can then be retrieved only with the matching private key.
In simple words: Encryption technology makes information secret by turning normal text into a jumbled code using a special key. There are two main kinds: symmetric, which uses one key for both locking and unlocking, and asymmetric, which uses two different keys (public and private). Symmetric encryption is fast, while asymmetric is slower but very secure.
๐ฏ Exam Tip: Clearly define encryption, distinguish between symmetric and asymmetric types, and provide key characteristics for each, mentioning common algorithms.
Question 3. Differentiate digital signatures and digital certificates.
Answer:
| Digital Signature | Digital Certificate |
|---|---|
| A digital signature is a method to check if a particular digital document, message, or transaction is real. | A digital certificate is a computer file that officially confirms the link between the certificate holder and a specific public key. |
| Digital signatures are used to prove that the data being sent can be trusted. | Digital certificates are used to confirm the trustworthiness of the sender. |
| A digital signature ensures that data stays safe from the time it was made and has not been changed by a third party. | A digital certificate connects a digital signature to a specific entity or person. |
| It provides authentication, non-repudiation, and integrity. | It provides authentication and security. |
| A digital signature is made using a Digital Signature Standard (DSS). It might use SHA-1 or SHA-2 algorithms for encrypting and decrypting messages. | A digital certificate works based on public-key cryptography standards (PKCS). It creates a certificate in formats like X.509 or PGP. |
| The document is encrypted at the sending end and decrypted at the receiving end using asymmetric keys. | A digital certificate includes the owner's name and public key, its expiration date, the Certificate Authority's name, and the Certificate Authority's digital signature. |
In simple words: A digital signature is like a secure stamp on a document that proves it's real and hasn't changed. A digital certificate is like a digital ID card that proves who you are online and links you to your public key.
๐ฏ Exam Tip: Highlight that digital signatures verify content and sender, while digital certificates verify the identity of the key holder, often issued by a Certificate Authority.
Question 4. Define Secure Electronic Transaction (SET) and its features.
Answer: Secure Electronic Transaction (SET) is a security protocol specifically designed for making electronic payments with credit cards over the Internet. It was created in 1996 by major companies like VISA and MasterCard, along with others such as GTE, IBM, Microsoft, and Netscape. The SET protocol is built using digital signatures and encrypts data with both asymmetric and symmetric encryption algorithms. It also uses dual signatures to ensure privacy during transactions. This protocol guarantees the safety of online credit card shopping and ensures data integrity and non-repudiation. This has made SET an internationally recognized standard for secure online credit card transactions.
A SET purchase involves three main groups: the customer, the seller, and the payment gateway. The customer shares order information with the seller but not their payment details. Instead, the customer shares payment information only with the payment gateway, never directly with the seller. This means the seller never sees the credit card number, and it is not stored in their files, preventing hackers from recovering it.
The SET system includes the following main features:
- Using public-key encryption and private key encryption helps keep data confidential.
- Information digest technology is used to make sure the information is complete and hasn't been tampered with.
- Dual signature technology ensures that the identity of both the buyer and the seller in the transaction is verified.
In simple words: Secure Electronic Transaction (SET) is a rule for safe credit card payments online, made by companies like Visa and MasterCard in 1996. It keeps your card details secret from the seller and makes sure transactions are safe using special keys and digital stamps.
๐ฏ Exam Tip: When defining SET, include its purpose, creators, and key year. For features, focus on how it ensures confidentiality, integrity, and authenticity in credit card transactions.
Question 5. Briefly explain SSL.
Answer: Secure Sockets Layer (SSL) is a very common cryptographic protocol. It is a hybrid encryption protocol used to make transactions over the Internet secure. The SSL standard was created by Netscape, working with companies like MasterCard, Bank of America, MCI, and Silicon Graphics. It relies on a public-key cryptography process to ensure that data transmitted over the internet is secure.
**Principle:**
- SSL's main goal is to set up a secure, encrypted communication channel between a client (like your web browser) and a server after a step to confirm identity.
- It also works to keep data safe between the application layer and the transport layer in TCP/IP.
- When a user connects to an SSL-secured e-commerce website using a web browser, all the data sent is automatically encrypted without any extra steps from the user.
- Today, almost all web browsers support SSL.
- Secure communications happen through this protocol.
- SSL works completely in the background, so the user does not need to do anything.
- The website address starts with "https://" instead of "http://", where "s" means "secure". This is often shown with a green padlock icon, confirming security.
In simple words: SSL (Secure Sockets Layer) is a common way to keep Internet transactions safe. It creates a secret channel between your computer and a website, encrypting all data automatically. You can tell a website uses SSL if its address starts with "https://".
๐ฏ Exam Tip: Explain SSL's role in creating a secure communication channel, its 'https://' indicator, and its user-transparent operation.
12th Computer Applications Guide E-Commerce Security Systems Additional Important Questions and Answers
Part A
Choose The Correct Answers:
Question 1. A digital certificate is also known as ..............................
(a) Public key certificate
(b) Asymmetric Key
(c) Symmetric Key
(d) All of the options
Answer: (a) Public key certificate
In simple words: A digital certificate is a special electronic document used to prove who someone is online, much like an ID card. It is often called a public key certificate because it contains the public key of the owner.
๐ฏ Exam Tip: Remember that a digital certificate primarily serves as proof of identity using a public key, which is why it's also known as a public key certificate.
Question 2. .............................. is a process of taking down an E-Commerce site by sending continuous overwhelming request to its server.
(a) RSA
(b) DES
(c) DDoS
(d) CA
Answer: (c) DDoS
In simple words: DDoS is like many people trying to get into a store at once so no one else can get in. It stops a website from working by flooding it with too many requests. This makes the website slow down or crash completely.
๐ฏ Exam Tip: DDoS (Distributed Denial of Service) is a common cyber attack; understand its abbreviation and how it impacts online services.
Question 3. The stealing of online documents is called ..............................
(a) phishing
(b) virus
(c) Frauds
(d) information leakage
Answer: (d) information leakage
In simple words: When secret or private online documents are stolen, it is known as information leakage. This means important data falls into the wrong hands. Protecting trade secrets and customer information is crucial.
๐ฏ Exam Tip: Information leakage specifically refers to the unauthorized disclosure or theft of data, often through interception or misuse of documents.
Question 4. Typopiracy is a variant of ..............................
(a) Payment Frauds
(b) Tampering
(c) Cybersquatting
(d) All of the options
Answer: (c) Cybersquatting
In simple words: Typopiracy is a type of cybersquatting where someone uses a common spelling mistake in a website address to trick people. It guides users to a different website, often for bad reasons. This is a clever way to redirect web traffic.
๐ฏ Exam Tip: Differentiate between cybersquatting (registering domain names in bad faith) and typopiracy (a specific method of cybersquatting using common typos).
Question 5. How many types of payment frauds are there?
(a) 2
(b) 3
(c) 4
(d) 5
Answer: (b) 3
In simple words: There are mainly three kinds of payment frauds. These include friendly fraud, clean fraud, and triangulation fraud, each working in a different way to trick systems.
๐ฏ Exam Tip: Remember the three main categories of payment fraud: friendly fraud, clean fraud, and triangulation fraud.
Question 6. .............................. algorithms use symmetric key encryption.
(a) DES
(b) AES
(c) ECC
(d) RC4
Answer: (c) ECC
In simple words: ECC stands for Elliptic Curve Cryptography, which is an advanced type of asymmetric encryption. The question refers to symmetric key encryption, so this option is incorrect. DES, AES, and RC4 are symmetric key algorithms. This means ECC is the odd one out.
๐ฏ Exam Tip: It's important to know the difference between symmetric (same key for encrypt/decrypt) and asymmetric (different keys) encryption algorithms. DES, AES, and RC4 are symmetric, while ECC is asymmetric.
Question 7. Which of the following is an asymmetric key encryption algorithm?
(a) DES
(b) ECC
(c) DSA
(d) RSA
Answer: (a) DES
In simple words: DES stands for Data Encryption Standard, which is a type of symmetric key encryption. ECC, DSA, and RSA are all asymmetric key encryption algorithms. The question asks for an asymmetric key algorithm, so (a) DES is the correct option here.
๐ฏ Exam Tip: Be careful with questions that ask for 'which is an asymmetric' or 'which is not a symmetric' as the options might try to trick you. DES is a symmetric algorithm, making it a common distractor.
Question 8. Which of the following is not a variant of DES?
(a) TDES
(b) AES
(c) 3 DES
(d) DESede
Answer: (b) AES
In simple words: AES stands for Advanced Encryption Standard and is a separate, modern encryption method. TDES, 3 DES, and DESede are all names for variations of the original DES algorithm, designed to make it stronger. AES is a completely different standard.
๐ฏ Exam Tip: Know the different forms of DES (TDES, 3DES, DESede) and distinguish them from other distinct encryption standards like AES.
Question 9. Which of the following is a security element?
(a) Authentication
(b) Integrity
(c) Non-repudiation
(d) Plain Text
Answer: (d) Plain Text
In simple words: Plain Text refers to information that has not been encrypted, meaning it is not a security element itself. Authentication, integrity, and non-repudiation are all key parts of security. Plain text is the data that needs to be protected, not a protective measure.
๐ฏ Exam Tip: Security elements are features that protect data (like authentication, integrity, non-repudiation), whereas plain text is the raw, unprotected data itself.
Question 10. Which of the following is an encryption method?
(a) Asymmetric encryption
(b) Symmetric key encryption
(c) Data Encryption Standard
(d) Federal Information Processing Standard
Answer: (a) Asymmetric encryption
In simple words: Asymmetric encryption is a type of encryption method that uses two different keys: a public key and a private key. Symmetric key encryption and Data Encryption Standard (DES) are also encryption methods. Federal Information Processing Standard (FIPS) is a standard that can include encryption methods but is not an encryption method itself.
๐ฏ Exam Tip: Understand that asymmetric encryption is a broad category of encryption methods, not just a standard. Be clear on the difference between types of encryption and governing standards.
Part B
Short Answer Questions
Question 1. What is E-commerce Security?
Answer: E-Commerce security refers to a set of rules and technologies. These are designed to keep online buying and selling safe. They make sure that transactions on the Internet are protected. This helps to build trust in online business. It guards against fraud and data theft.
In simple words: E-commerce security uses special rules and tech to make sure online shopping and business dealings are safe.
๐ฏ Exam Tip: Define E-commerce security by highlighting its role in safeguarding online transactions and the data involved.
Question 2. What is Cyber Squatting?
Answer: Cybersquatting is an unlawful act where someone registers an internet domain name that belongs to another person or business. They do this on purpose, hoping to sell the domain name later for a profit. This practice takes advantage of famous brands or names. It aims to exploit someone else's reputation.
In simple words: Cybersquatting is illegally registering a website name that someone else owns, hoping to sell it to them later for money.
๐ฏ Exam Tip: Emphasize the "illegal practice" and "intention to sell for profit" when defining cybersquatting.
Question 3. What is meant by cybersquatting?
Answer: Cybersquatting is an unlawful act where someone registers an internet domain name that might be wanted by another person or business. They do this with the aim of selling it later for a profit. This practice is often seen as a form of intellectual property theft, taking advantage of others' goodwill.
In simple words: Cybersquatting is when someone illegally registers a famous website name, hoping to sell it for a lot of money to the real owner.
๐ฏ Exam Tip: Ensure your definition of cybersquatting clearly states both the "illegal practice" and the "intention to sell for a profit" aspects.
Part c
Explain In Brief Answer
Question 1. Define Phishing?
Answer: Phishing is a serious E-Commerce threat where someone pretends to be a trusted authority. They try to trick people into giving away sensitive information like bank details or passwords. They do this through fake emails, phone calls, or text messages. If they succeed, it can lead to identity theft and big financial losses. It's like a digital trap set to steal your personal data.
In simple words: Phishing is a trick where someone pretends to be a real company to steal your personal info like passwords or bank details.
๐ฏ Exam Tip: When defining phishing, focus on the impersonation, the method (email, call, text), and the goal (stealing sensitive data leading to identity theft or financial loss).
Question 2. What are the subsets of Payment frauds?
Answer: Payment frauds have several types, known as subsets:
- Friendly fraud: This happens when a customer buys something, then falsely claims a refund or says they didn't make the purchase.
- Clean fraud: This occurs when a stolen credit card is used for buying items.
- Triangulation fraud: This involves fake online shops that offer very low prices. They collect credit card information from buyers but never send the products.
In simple words: Payment frauds include friendly fraud (fake refund claims), clean fraud (using stolen cards), and triangulation fraud (fake shops stealing card data).
๐ฏ Exam Tip: List and briefly explain each type of payment fraud: friendly, clean, and triangulation, making sure to highlight the core method of each.
Question 3. Explain various types of payment frauds?
Answer: Payment frauds have several distinct types:
- Friendly fraud: This type occurs when a customer buys a product or service but then demands a false refund or claims they never received the item.
- Clean fraud: This is when someone uses a stolen credit card to make purchases. The fraudulent transaction often looks legitimate, making it hard to detect.
- Triangulation fraud: In this scheme, fake online shops attract customers with very cheap prices. They collect the customer's credit card information but never ship the goods.
In simple words: Payment frauds include friendly fraud (customer fakes a refund), clean fraud (using a stolen credit card), and triangulation fraud (fake online shops that steal card details).
๐ฏ Exam Tip: Clearly define each type of payment fraud (friendly, clean, triangulation) by explaining its primary characteristic and how it operates.
Question 4. What is Distributed Denial of Service (DDoS) Attacks? Or What is network flooding?
Answer: A Distributed Denial of Service (DDoS) attack is an attempt to make an online service unavailable by overwhelming it with traffic from many sources. This effectively "floods" the network, stopping normal users from accessing the service. This attack uses many computers, often called a botnet, controlled by a hacker. These computers all send requests to the target server at the same time. This huge amount of traffic makes the server slow down or crash, making it inoperative. DDoS attacks are also known as network flooding because of the way they flood a server with requests.
In simple words: A DDoS attack, also called network flooding, is when many computers send too many requests to a website at once, making it crash and stop working.
๐ฏ Exam Tip: Explain DDoS by focusing on "overwhelming with traffic from multiple sources" and the resulting "unavailability of service." Mentioning "botnet" and "network flooding" strengthens the answer.
Question 3. Explain various types of payment frauds?
Answer: Payment frauds involve different methods to cheat in online transactions. These include friendly fraud, where customers falsely claim a refund, and clean fraud, which happens when a stolen credit card is used for purchases. Another type is triangulation fraud, where fake online stores offer very cheap prices to collect credit card information from buyers. Understanding these types helps in protecting against online financial scams.
In simple words: Payment frauds include different tricks like falsely asking for refunds (friendly fraud), using stolen cards (clean fraud), and fake online shops collecting card details (triangulation fraud).
๐ฏ Exam Tip: When listing types of fraud, clearly define each one and provide a simple example to show understanding.
Question 4. What is Distributed Denial of Service (DDoS) Attacks? Or What is network flooding?
Answer: A Distributed Denial of Service (DDoS) attack is a process designed to make an e-commerce website unavailable by sending a huge number of requests to its server at once. This attack is often carried out using many unknown computers, called a botnet, which overload the server and cause it to stop working. Because of the way it saturates the network, DDoS attacks are also known as network flooding.
In simple words: A DDoS attack is when many computers flood an e-commerce website with requests, making it crash. This stops the website from working and is also called network flooding.
๐ฏ Exam Tip: Remember to mention both aspects: many sources (distributed) and making a service unavailable (denial of service) for a complete definition.
Free study material for Computer Applications
TN Board Solutions Class 12 Computer Applications Chapter 17 Ecommerce Security Systems
Students can now access the TN Board Solutions for Chapter 17 Ecommerce Security Systems prepared by teachers on our website. These solutions cover all questions in exercise in your Class 12 Computer Applications textbook. Each answer is updated based on the current academic session as per the latest TN Board syllabus.
Detailed Explanations for Chapter 17 Ecommerce Security Systems
Our expert teachers have provided step-by-step explanations for all the difficult questions in the Class 12 Computer Applications chapter. Along with the final answers, we have also explained the concept behind it to help you build stronger understanding of each topic. This will be really helpful for Class 12 students who want to understand both theoretical and practical questions. By studying these TN Board Questions and Answers your basic concepts will improve a lot.
Benefits of using Computer Applications Class 12 Solved Papers
Using our Computer Applications solutions regularly students will be able to improve their logical thinking and problem-solving speed. These Class 12 solutions are a guide for self-study and homework assistance. Along with the chapter-wise solutions, you should also refer to our Revision Notes and Sample Papers for Chapter 17 Ecommerce Security Systems to get a complete preparation experience.
FAQs
The complete and updated Samacheer Kalvi Class 12 Computer Applications Solutions Chapter 17 Ecommerce Security Systems is available for free on StudiesToday.com. These solutions for Class 12 Computer Applications are as per latest TN Board curriculum.
Yes, our experts have revised the Samacheer Kalvi Class 12 Computer Applications Solutions Chapter 17 Ecommerce Security Systems as per 2026 exam pattern. All textbook exercises have been solved and have added explanation about how the Computer Applications concepts are applied in case-study and assertion-reasoning questions.
Toppers recommend using TN Board language because TN Board marking schemes are strictly based on textbook definitions. Our Samacheer Kalvi Class 12 Computer Applications Solutions Chapter 17 Ecommerce Security Systems will help students to get full marks in the theory paper.
Yes, we provide bilingual support for Class 12 Computer Applications. You can access Samacheer Kalvi Class 12 Computer Applications Solutions Chapter 17 Ecommerce Security Systems in both English and Hindi medium.
Yes, you can download the entire Samacheer Kalvi Class 12 Computer Applications Solutions Chapter 17 Ecommerce Security Systems in printable PDF format for offline study on any device.