This paper sets forth a conceptual model for web security within the context of the overall systems development effort, and within the context of traditional accounting internal control processes and structures. Such a model allows for the enterprise-wide control of security risks over a...