It seems that people feel safe while purchasing from websites with recognizable trustmarks and their behavior was not affected by the economic downturn.
The study conducted by Harris Interactive revealed that 72% of the surveyed customers didn’t change the way they shop online, while almost half of them have abandoned an order due to security concerns, and 63% would not buy things from websites that don’t display a security policy or trustmark. More than that, 90% of the people don’t trust new websites, especially if these don’t display any trustmark.

McAfee recommends online stores it’s trustmark solution called McAfee SECURE, which is being used by over 14,000 stores and features daily vulnerability scanning, offering the highest level of protection when compared to SSL trustmarks.
The company mentioned that McAfee SECURE also tests for over 10,000 network and web application vulnerabilities, and offers business practice reviews for online stores.

In order to benefit from its wide range of features, website owners have to spend $319 a year for the full-service program starting at four IP addresses and get: scheduled quarterly and unlimited manual scans, full vulnerability remediation support from certified security specialists, online self-assessment questionnaire assistance, online assistance preparing your required PCI security policy, unlimited telephone technical support and the submission of compliance reports directly to their bank.

Related posts:

1. Project Indect Monitors Online Communication Channels for Possible Violent Behavior
2. Recent Study Shows how Avatars Affect Users Thoughts
3. Mozilla to Implement the Content Security Policy

It is known that many websites have been compromised over the past years due to the lack of a high level of security at the XSS level, allowing attackers to take advantage of the weaknesses and inject rogue IFrames and other code into websites.
This type of IFrames is used even on large websites for attacking visitors and Mozilla came with the idea of a new mechanism that websites should apply to allow browsers know which content is safe and can be accepted.

The changes at the JavaScript level, resulting after applying this specification, would be major, if compared to how today’s websites work, and one of them would be to trust only JavaScript code loaded from external files. Using this method, the XSS attacks would lose effectiveness. Secondly, according to the new the specification, websites would know how to recognize trusted hosts where the JavaScript code loads from.

How would this affect large websites? –Well, according to Mozilla, developers will have to spend more on implementation and that’s why they’ll need to adopt the specification gradually, until programmers will manage to move all the JavaScript code into external files.

These are only the general aspects mentioned by Mozilla. The new technology will be implemented in the near future and included in upcoming Firefox releases.

Related posts:

1. Mozilla Released Firefox 3.0.13 and 3.5.2 Security Updates
2. How to Fix the JavaScript Vulnerability in Firefox 3.5
3. Safari 4.0.2 Brings Two Important Security Fixes