- A Taxonomy of E-commerce risks and failures
Giridharan Vijayaraghavan
www.testingeducation.org/a/tecrf.pdf
Please do not copy or distribute without this notice
- Cache server failure
-
Insufficient capacity planning
- Risks based on number of users and usage
- Risks based on copmuting infrastructure
- Risks based on site content cmoplexity
- Execution of arbitrary code
-
Human Errors
- Human Error - on the Retailer Side
- Human Error - on the client Side
-
Error Messages - Exceptional Handling
- Error Handling - Quantity
- Error Handling - Registration forms
- Error Handling - Interaction and Transaction
- Error Handling - Payment and credit card
- General Error Messages
-
Calculation Errors
- Discounts, coupons and special offer calculations
- Pre checkout and checkout calculations
- Shipping calculations
-
Software Upgrade Errors
- Software upgrade on the server side
- Client side response to server side software upgrade
- Database server failure
- Database Instance failure
- Database statement failure
- Database user-process failure
- Database media failure
-
Document confidentiality
- Cryptography
- Physical documents
-
System security
- Password security
- Cross site scripting
- Denial of Service
- Virus and worms
-
Browser vulnerabilities
- IE
- Netscape
- Errors: input validation, access control, buffer overflow,
authentication, configuration
-
Risks due to memory leaks
- Memory leaks in scripting code
- Memory leaks in browsers
- Memory leaks in server side
- Web server failures
- Network failures
- Hardware failures
- Navigation failures
- Process failures
-
Data and data-handling risks
- Data I/O errors due to user
- Data errors due to failure of validation routines
- Data errors due to physical media errors
file i/o data incompatabilities
- Third party software failures
- ISP and web hosting problems
- Browser failures