In an Online Business the Security is always a debatable part. In E-commerce market all sale transactions are done online. Most of the times, both the dealing parties are strangers to each other. Detail information is provided by them and both of them had to trust on it, if they do not trusted on that information then there is no chance of sale-transaction between them. People try to find out many security tips to make their online-store secure. Security measures are required for an online-stores. Magento cart offer many inbuilt measures of security. By utilizing these measures you can secure your online-store.\r\n\r\nSecurity is critical as well as important for nowadays's online business sites. Those Magento site which accepts credit cards, it means that your business website need hosting which is PCI manageable. The number is rising day by day due to the growth of stolen numbers of credit cards and a weak economy. It is an alarm for online-store owners that why the consumers are afraid to utilize credit cards on online sites. As they do not trust on the online-store security. For an e-commerce site owner the number of stolen credit cards is important.\r\n\r\nDisplay your e-commerce safety certifications:\r\n\r\nFrom several images provided by e-commerce platforms to third-party confirmations, maximum messages are better for your site\u2019s protection. Do whatever you can for removing the doubt from their mind. Because, Customers want to know every thing, so don't make them unhappy while using your business site.\r\n\r\nFor that you have to invest in top-level security for your online-store. No matter which type of payment gateways and e-commerce platform is used by you. Always make it sure your encoding is high quality as well as up to date. Better e-commerce security may costly, but if your business site has been compromised then, this encoding can also control it from going out of business-line.\r\n\r\nThere are certain tips to secure your Magento based online-store:\r\n\r\nDo not use your Magento Password for any other website or anywhere else. HTTP \/ SSL are required for each page with log-ins or check-out procedure. If SSL not there then information are sent unencrypted crosswise networks and once again hacker may have control on any of the in between servers, as also get hold of that confidential information. Always select a secure and unique Password, like, use phone numbers as password, use upper case or lower case, use long password etc.\r\n\r\nAlways use secured FTP:\r\n\r\nFile Transfer Protocols are not always secured, therefore use only secured FTP. All ambiguities of your email should be blocked, so that in case if you blocked the password your Magento will supply you fresh password through your email id. And information of new password will be accessible on your email account, so you must have to close that information for security standards of your online-store. Make certain that .htaccess files are not removed.\r\n\r\nNever store all log-in credentials in one file:\r\n\r\nThe access of admin should be restricted to IP addresses which are approved. Do not save your Magento Password on your Computer, it may be cracked by someone else. Access of unsecured FTP must be limited. Make sure that file permission are as per security standards. Anti-Virus software for your data must be up-to-date and recent. Always use Custom Admin Path,because, if you use secret code for the admin path then you will be able to forbid other person from guessing the password.\r\n\r\nSSL Encoding, you have an SSL certificate, from the Magento admin panel:\r\n\r\nNow you can choose to use SSL for your site's admin panel as well as its front-end. From, general menu the left click on Web, then open the Secure panel in the center of the page. In the field for the first option type the URL of your store. And, last two options are for sanctioning SSL for the several parts of the site. For this, after log in go to the System menu, then select Configuration. Use Secure URLs in Admin as well as Front-end.\r\n\r\nChoose an administrator name that is more complex and difficult to guess:\r\n\r\nIt's also possible to change the admin name and password from the database used by Magento. It's helpful if you not remember your admin name or password. There are some potentially dangerous PHP functions that can be disabled by adding some rules to the php.ini file for your account. This means that the rules put in that file will affect all PHP files on your account. Make regular backups of your Magento files. It will help you to restore it using the most recent undamaged backup.\r\n\r\nBy this way, taking all these precautions you can secure your magento based business website from any type of bug as well as internet fraud. The customer may always satisfy with your sites function and customer may continue to shop from your site, because of its best security functions.