摘要 |
PURPOSE: An electronic commerce security system and a method thereof are provided to fundamentally prevent the possibility that a user terminal accesses a phishing website and restrict the access of other websites during the access to the valid website, thereby preventing data leakage. CONSTITUTION: A configuration management unit (56) downloads information from a security policy server, updates the downloaded information, and transmits information generated in a security transaction module to the security policy server. A lock management unit (57) restricts the access of other websites while a user terminal accesses a valid website, and blocks the movement and copy of data generated while the user terminal accesses the valid website. If the access to the valid website is completed, a delete management unit (58) completely deletes the data generated during the access to the valid website. [Reference numerals] (50) Security agent; (51) Monitoring module; (52) Monitoring unit; (53) Validity determination unit; (55) Module for safe dealing; (56) Configuration management unit; (57) Lock management unit; (58) Delete management unit; (59) Alarm management module; (60) Log collecting unit |