Control and Assurance in E-Commerce: Privacy, Integrity and Security at eBay
Growth of online auctions and other forms of e-commerce has been hampered by concerns about the privacy, integrity, and security of online transactions. To earn the trust of their participants, new e-commerce organizations, like traditional organizations, have to reach the state of expectations equilibrium or control - a state where the actual behavior of participants corresponds to what others expect them to do. Since e-commerce companies provide electronic platforms where buyers and sellers interact directly with each other (as well as with the platform operator), establishing control in e-commerce enterprises requires broadening of the traditional definition of "internal control" to encompass the activities of "outsiders" such as customers, and suppliers. This paper presents a framework for analyzing the control environment of online auctions and identifies privacy and denial of service attacks as two new classes of risks faced by e-commerce companies. Using the control policies and practices of a leading consumer online auction company (eBay) as an illustrative example, we suggest possible ways of controlling these risks. This analysis identifies the demand for new kinds of assurance services for e-commerce to support privacy, integrity and security of online transactions. E-commerce assurance services available at the end of year 2000 (e.g. WebTrust) fall short of what is needed to establish expectations equilibrium or control in online auction firms. The merits of developing proprietary (e.g., PWC privacy standards) versus industry standards (e.g. WebTrust) for e-commerce assurance services are also discussed.
Please report citation or reference errors to , or , if you are the registered author of the cited work, log in to your RePEc Author Service profile, click on "citations" and make appropriate adjustments.:
- Dhananjay K. Gode & Shyam Sunder, 1997. "What Makes Markets Allocationally Efficient?," The Quarterly Journal of Economics, Oxford University Press, vol. 112(2), pages 603-630.
- Shyam Sunder, 2003. "Management Controls, Expectations, Common Knowledge and Culture," Yale School of Management Working Papers ysm337, Yale School of Management.
- David Lucking-Reiley, 1999.
"Using Field Experiments to Test Equivalence between Auction Formats: Magic on the Internet,"
American Economic Review,
American Economic Association, vol. 89(5), pages 1063-1080, December.
- David Lucking-Reiley, 1999. "Using field experiments to test equivalence between auction formats: Magic on the internet," Framed Field Experiments 00183, The Field Experiments Website.