E-tendering security issues and countermeasures
Tendering is a process whereby the principal invited capable tenderer participates in competitive bid for winning a large project. Due to the E-tendering efficiency and effectiveness, this system is introduced and adopted in many countries. Although the system provides opportunities in improving bus...
Saved in:
| Main Authors: | , , , , , |
|---|---|
| Format: | Article |
| Published: |
American Scientific Publishers
2014
|
| Subjects: | |
| Online Access: | http://repo.uum.edu.my/20573/ http://doi.org/10.1166/asl.2014.5291 |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| Institution: | Universiti Utara Malaysia |
| id |
my.uum.repo.20573 |
|---|---|
| record_format |
eprints |
| spelling |
my.uum.repo.205732017-01-08T07:47:56Z http://repo.uum.edu.my/20573/ E-tendering security issues and countermeasures Muhammad Robie, Mohd Afdhal Mohd, Haslina Baharom, Fauziah Muhd Darus, Norida Yasin, Azman Muner, Wan Farez Saini QA Mathematics Tendering is a process whereby the principal invited capable tenderer participates in competitive bid for winning a large project. Due to the E-tendering efficiency and effectiveness, this system is introduced and adopted in many countries. Although the system provides opportunities in improving business processes which may lead to paperless, reduced reliance on human capability during transaction, reduced costs and shortened evaluation period, however there still remain uncertainties in legal and security issues. These issues are strongly related to the threats of the E-tendering system.Therefore, this paper is intended to propose a secure solution of the E-tendering system development together with basic countermeasures to overcome the threats. The findings from this study are the identified threats, security technology and related countermeasure of E-tendering process. The procedure in identifying threats and countermeasures are following risk analysis process.Meanwhile, the selections of countermeasures are based on analysis from identified threats.The proposed countermeasures are based on ISO/IEC 27001 and 27002, STRIDE and NIST 800-53 standard.These findings will be used to construct a software architecture secure E-Tendering for IT project. American Scientific Publishers 2014 Article PeerReviewed Muhammad Robie, Mohd Afdhal and Mohd, Haslina and Baharom, Fauziah and Muhd Darus, Norida and Yasin, Azman and Muner, Wan Farez Saini (2014) E-tendering security issues and countermeasures. Advanced Science Letters, 20 (1). pp. 331-335. ISSN 1936-6612 http://doi.org/10.1166/asl.2014.5291 doi:10.1166/asl.2014.5291 |
| institution |
Universiti Utara Malaysia |
| building |
UUM Library |
| collection |
Institutional Repository |
| continent |
Asia |
| country |
Malaysia |
| content_provider |
Universiti Utara Malaysia |
| content_source |
UUM Institutionali Repository |
| url_provider |
http://repo.uum.edu.my/ |
| topic |
QA Mathematics |
| spellingShingle |
QA Mathematics Muhammad Robie, Mohd Afdhal Mohd, Haslina Baharom, Fauziah Muhd Darus, Norida Yasin, Azman Muner, Wan Farez Saini E-tendering security issues and countermeasures |
| description |
Tendering is a process whereby the principal invited capable tenderer participates in competitive bid for winning a large project. Due to the E-tendering efficiency and effectiveness, this system is introduced and adopted in many countries. Although the system provides opportunities in improving business processes which may lead to paperless, reduced reliance on human capability during transaction, reduced costs and shortened evaluation period, however there still remain uncertainties in legal and security issues. These issues are strongly related to the threats of the E-tendering system.Therefore, this paper is intended to propose a secure solution of the E-tendering system development together with basic countermeasures to overcome the threats. The findings from this study are the identified threats, security technology and related countermeasure of E-tendering process. The procedure in identifying threats and countermeasures are following risk analysis process.Meanwhile, the selections of countermeasures are based on analysis from identified threats.The proposed countermeasures are based on ISO/IEC 27001 and 27002, STRIDE and NIST 800-53 standard.These findings will be used to construct a software architecture secure E-Tendering for IT project. |
| format |
Article |
| author |
Muhammad Robie, Mohd Afdhal Mohd, Haslina Baharom, Fauziah Muhd Darus, Norida Yasin, Azman Muner, Wan Farez Saini |
| author_facet |
Muhammad Robie, Mohd Afdhal Mohd, Haslina Baharom, Fauziah Muhd Darus, Norida Yasin, Azman Muner, Wan Farez Saini |
| author_sort |
Muhammad Robie, Mohd Afdhal |
| title |
E-tendering security issues and countermeasures |
| title_short |
E-tendering security issues and countermeasures |
| title_full |
E-tendering security issues and countermeasures |
| title_fullStr |
E-tendering security issues and countermeasures |
| title_full_unstemmed |
E-tendering security issues and countermeasures |
| title_sort |
e-tendering security issues and countermeasures |
| publisher |
American Scientific Publishers |
| publishDate |
2014 |
| url |
http://repo.uum.edu.my/20573/ http://doi.org/10.1166/asl.2014.5291 |
| _version_ |
1644282994348785664 |