Top 7 ways to secure your Web site

Pleasing customers is a top priority for business owners, and building trust is a large part of that.

When an e-commerce Web site gets hacked or compromised, customers are at risk of identity theft — not great for repeat business.

Here are seven tips that help secure your Web site and keep your customers coming back:

Up-to-date SSL certificates. SSL certificates show visitors and customers that a site is secure by displaying ‘https’ in their address bar. Expired certificates trigger credibility-damaging certificate warnings in Web browsers.

Regular Web site malware scanning The best SSL certificates come with Web site Malware Scanning that checks the site daily and warns of possible infections, which if undetected can lead to search engine warnings, black listing and damage to customers’ computers. It’s also a good idea to monitor for vulnerabilities that cybercriminals could use as an unlocked back door to your site.

Extended Validation (EV) SSL certificates Extended Validation SSL shows up differently in the new generation of browsers and has been designed to make it easy for people to definitively know who they are doing business with. And so your customers can know that you are you and not somebody pretending to be you in order to steal their credit card details or personal information. It proves the Certificate Authority you purchased your SSL certificates from has been independently verified, and that your company has been through a rigorous vetting process.

Always-on SSL Always-on SSL is a security measure that provides login-to-logout protection for website visitors. It doesn’t replace your existing SSL certificates, but instead extends protection over a user’s entire session on a Web site. Some of the world’s largest and most trusted Web sites have embraced Always-on SSL to provide persistent protection and a secure experience for their online users.

Security explanation page By talking about security you let your customers know that you take it seriously. Answer the questions of the safety conscious before they ask and educate those who are less well informed about what the security signs on your site mean for them.

Up-to-date server softwar If your server software is outdated then it’s not secure and neither is your Web site. Be sure to install all patches and upgrades for your server software, including content management software and database, as soon as they become available, just as you would on your own PC.

Trust marks Trust marks displayed in search results can increase traffic to your site by inspiring confidence in its security. In addition, trust marks on your Web site encourage visitors to become customers. For example, 94 per cent of respondents* to an online study said they are more likely to continue an online purchase when they see The Norton™ Secured Seal. (Symantec Online Consumer Study, February 2011).

There is no good excuse when a customer has their identity stolen and it can result in a financial loss and damage to your reputation. Follow these best practices to prevent fraud and keep your customers happy!

Sean Forkan
Sean Forkan
Sean Forkan is Country Manager for Symantec Canada, where he helps to secure and manage an information-driven world. Sean joins Symantec from Oracle Canada where as Area Vice President he was responsible for Commercial, Enterprise and Telco Hardware Sales in Canada. Prior to joining Oracle, Sean spent ten years at Cisco Systems where he worked in a variety of progressively more senior positions. Key to Sean’s success at Cisco was his ability to recruit, motivate and develop teams that could achieve and exceed performance targets.

Would you recommend this article?


Thanks for taking the time to let us know what you think of this article!
We'd love to hear your opinion about this or any other story you read in our publication.

Jim Love, Chief Content Officer, IT World Canada

Featured Download

Latest Blogs

ITB in your inbox

Our experienced team of journalists and bloggers bring you engaging in-depth interviews, videos and content targeted to IT professionals and line-of-business executives.