If you are accessing a Web site that has a secure connection, you can identify the site by using a site certificate. Secure or encrypted web site addresses will begin with HTTPS (instead of HTTP), and you'll often see a certain type of icon, such as a padlock icon, in your browser that indicates that the site is secure. A secure connection uses a certificate to identify the site and encrypt the connection, increasing the complexity of the hacker's view of the connection.
Depending on the type of certificate that the site has, you can see the URL or company address that was granted to the certificate. The extended authentication (EV) certificate changes the address bar to green in some browsers and contains the name and address of the site owner confirmation. The non-Extensible Authentication certificate will contain the domain of the Web site or site. If you can view the security report and the security report only displays the URL, make sure that the URL is the one you want to visit. Phishing or deceptive web sites often use similar site names to trick visitors into believing that they are accessing a trusted site.
Certificates are issued by a company called a certification authority. Windows contains a list of the most common certification authorities. If Windows does not recognize the certificate issuer, a warning message appears. However, Windows can be configured to trust any certification authority, so when a Web site is potentially deceptive, you should not rely solely on receiving a warning message to determine whether it can
Has the Web site been certified by an Internet trust organization?
The Internet Trust organization is a company that verifies that a Web site has a privacy statement (a notification of how your personal information is being used) and verifies that the site allows you to choose how to use your information. A Web site approved by an Internet trust organization can display a privacy certificate seal, which is usually located on the home page or order form. However, these seals do not guarantee that the site is trustworthy, it only indicates that the site complies with the terms acceptable to the Internet Trust organization. In addition, some unethical web sites may spoof the display of trust logos. If you are unsure whether the trust logo is legitimate, contact the trust organization to find out if the site is registered.
To learn more about these trust organizations, you can go to the TRUSTe website, the BBB online site, or the WebTrust Web site.
Does the site belong to a company or organization you know?
For example, if you have purchased a product in an entity store and have a satisfying shopping experience, you may also want to try visiting the store's Web site. However, even if you trust the company, be sure to read the website's privacy statement or terms of use. Sometimes the websites of some companies are independent of their stores and may have different privacy terms. See if there are any terms you disagree with, such as asking for an email promotion or advertising from the site, or sharing your information with the company's partners. If you disagree with these terms or actions (for example, you do not want to be tracked or want to view ads), do not use the site.
Does the website require you to provide personal information?
If you are asked to provide personal information, such as a credit card number or bank information, you can only provide it if you have a good reason. Also, make sure that you have a secure input form to record the information. Find the message that will encrypt the information and check the padlock icon or make sure that the Web address starts with https://(do not enter confidential information if none of the above is displayed). Also, try to find the website's policy on information storage: Will they file your credit card number? Do they share information with their partners? Before providing the information, you should make sure that the site will use your information in a proper and secure manner.
Is there a phone or mail contact available on the Retail site?
Do they provide a phone number that allows you to dial the phone number when you encounter a problem, or use the phone number to order? Does the site list the street address? Have you issued a refund policy that is acceptable to the clause? If the site does not provide a phone number or physical address, please try to contact the company by e-mail to request the letter
If you can't identify the site, is there any other information that will help you make a decision?
If you are unfamiliar with a website or the website does not have a privacy certificate stamp, you may still be able to trust the site. Ask a trusted friend or colleague about the site. Search the Internet for references to the site, and see if a source, such as a magazine or company you trust, references the site. Read the website's privacy statement or other statement (but keep in mind that the site does not necessarily comply with these terms).
The Web site may not be trusted if the following conditions occur:
1. You are informed of the site by e-mail from someone you don't know.
2. The site provides objectionable content, such as pornography or illegal content.
3. The site offers exaggerated preferences or benefits, which means that there may be fraudulent or selling illegal or pirated products.
4. Lure you to the site by inducing a steering scheme, and you're not really offering the product or service you want.
5. The site requires you to provide a credit card number for authentication, or to require you to provide unnecessary personal information.
6. The site requires you to provide a credit card number and cannot prove the security of the transaction.