台灣電子商務網站服務、安全與效能測試評比報告

Abstract

本研究是從國內眾多電子商務網站中，挑選出11類共72家電子商務網站進行測試評比，並從服務評估、安全評估及效能測試三方面著手。在服務評估方面，我們比較了各網站的資訊流、金流及物流的功能完整度，結果顯示多數網站均提供了足夠的網站功能，然而在金流及物流方面，仍應加強提供消費者更多選擇。在安全評估方面，我們檢視網站主要的瀏覽動作是否採用SSL連線及擁有何種安全憑證，並掃描網站安全漏洞數量及服務埠的暴露程度，結果十分令人擔憂，例如網站的平均安全漏洞數量高達5.5個之譜。在效能測試方面，我們招募了全台50位自願者執行我們的測試程式，量測靜態及動態網頁的下載時間。72家網站的平均網頁下載時間為7.763秒，遠比國外Keynote公司量測美國40家重要商業網站首頁的平均下載時間2.5秒來得差。從各項評比的結果來看，我們發現各家網站的表現差異頗大，特別是在安全性方面。總結來說，國內電子商務網站整體的平均水準有待提升。

This research evaluates the service, the security and the performance of 72 domestic E-commerce websites divided into 11 categories. For service, we evaluate the flow of information, payment and delivery; many of websites are highly scored in this aspect. For security, we examine the use of SSL encryption, the count of security holes and the exposure level of service ports, but the result is unsatisfactory. For example, the average number of security holes is 5.5 per site. For the evaluation of performance, we recruit 50 volunteers in Taiwan to join the benchmarking activity to measure the download time of web pages. The result indicates that most of these websites need to improve their performance immediately. In conclusion, there is still considerable room for improvement in E-commerce websites in Taiwan, especially for security.