Information security as an electronic commerce systems priority

The object of research in this paper are the systems for e-commerce of business to customer (B2C) type in Bulgarian companies. The subject of research is the information security of these systems, achieved through a set of different approaches, strategies, methods, policies, techniques and technologies. The main goal of the research is, in accordance with the needs of modern economic theory and practice, to conduct a relatively comprehensive and systematic study of the problems of information security in the field of electronic commerce. The goal thus defined is achieved by solving the following research tasks: • clarifying the essence of the concepts of information security and protection as main components of e-commerce systems; • Carrying out a critical analysis of modern information and communication technologies, approaches, solutions and standards, supporting a secure environment for the functioning of e-commerce of the business-to-customer type; • organizing and conducting a survey with the participation of specialists from the practice of establishing the current state of information security in business to customer e-commerce systems of business organizations in Bulgaria; • analysis of the state of information security in e-commerce systems of business to customer type in Bulgarian organizations on the basis of the survey; • clarifying the approach to creating an information security policy and expanding the information security framework with new elements; • development of a methodology for policy and construction of a model for information security, which should be in accordance with the state and needs of the business environment and the technological environment of Bulgarian organizations engaged in e-commerce. Based on the performed research work and the application of a number of approaches, methods and analyzes, the following scientific and scientific-applied contributions have been achieved: • The essence of the concept of information security and other related concepts is clarified, and an analysis of security as a main component of SET is performed. • A critical analysis of modern information and communication technologies, approaches, solutions and standards that support a secure environment for the functioning of e-commerce type B2C. • A critical analysis was performed on the basis of organizing and conducting a survey with the participation of specialists from the practice of establishing the current state of information security in SET type B2C of business organizations in Bulgaria. • The approach to creating an information security policy has been clarified and the information security framework has been expanded with the addition of new elements. • A policy methodology has been developed and an information security model has been developed, which is in line with the state and needs of the business environment and the technological environment of Bulgarian organizations implementing electronic commerce. This monograph is based on a defended dissertation on 02.09.2015 at the Academy of Economics "D.A. Tsenov" - Svishtov at a meeting of the Scientific Jury.