SOLUTION OF IGNOU ASSIGNMENT BY BYAS KUMAR GUPTA. BCA 6 th SEM Assignment Solution COURSE CODE BCS 062

Transcription

1 SOLUTION OF IGNOU ASSIGNMENT BY BYAS KUMAR GUPTA BCA 6 th SEM Assignment Solution COURSE CODE BCS 062 Q 1. Explain any 10 online payment systems and services. Ans Making purchases via the Internet is a fact today and is booming. And one of the best things that the Web offers today is the ability to take your business anywhere on the planet through a website. This is why it became essential to purchase via the Internet through many payment service providers, today this can be done easily and, above all, safely. A PSP, or Payment Service Provider, is a company that provides online marketing services, it accepts payments electronically by managing transactions between sellers and buyers. The most common payment methods that are usually offered are by Credit Card, Bank Transfer and real time orders. In addition, PSP offers full gurantees against any risks, especially with thus gain the confidence of consumers who use them. All online payment systems are assigned a tax rate on transactions, fixed or variable. Get well cards, tents, T-shirts you have made yourself,websites,fruit... any product or service what so ever. If you have thought about selling a product on your Website here are a list of the most renowned PSPs : Online Payment System:- (i) (ii) WooCommerce : - WooCommerce allows wordpress user to create their own e-commerce shop. There are several neat features that make this payment processor worth your time. Besides being vendor and customer friendly, you can run coupan compaigns,manage your store s daily activities, learn about shipping and tax rules, and view your store s overall performance. 2CheckOut :- 2CheckOut is a payment processor which is a combination of a merchant account and payment gateway that doesn t require PayPal or a Merchant account. Simply register and verify your account and you can start accepting credit card payments, even PayPal payments. The company also offers international payments, shopping cart stores, and a recurring billing feature. 1 Page

2 (iii) (iv) (v) (vi) (vii) Stripe : - If you re a developer,you should already be using stripe. Developers use stripe to integrate a payment system into their projects through stripe s robust API. This prevents the need for a merchant account, and also allows you to build your own payments forms that can bypass PCI requirements. ACH Payments : - ACH Payments has several key features that make it one of the top payment systems around. Pros include : being able to make global payments gateway, merchant account, credit card processor, and mobile payment processor. It can also handle ACH payments and can be used as a payroll system. WePay : - What makes WePay standout isn t the fact that it s a payment processor allowing internet merchants to accept credit cards and bank account payments online, it s the fact it s incredibly simple. Infact, you cna begin accepting payments in under a minute.the only drawback is that it s only available for U.S citizens. Authorize.Net : - It s been stated that Authorize.Net is the most widely used payment gateway on the internet probably because it s been around since 1996.Currently, there are over 375,000 merchants handling more than $ 88 billion in annual transactions safely through credit cards and e-checks. Something s going right over there. Dwolla : - Dwolla is a more recent competitor to PayPal with some outstanding benefits. For example, you can transfer funds through ,phone, facebook, LinkedIn or twitter. But what makes Dwolla so appealing is the fact that there are no fees for transactions less than $ 10 and $ 0.25 per transactions for transactions over $ 10. (viii) Amazon Payments :- Amazon Payments is a safe easy and convenient method for users to receive money by using Amazon s API. Users can also send money via ACH (Automated Clearing House). Since almost everyone has an Amazon account, all your important information has already been stored. (ix) PayPal : - Obviously PayPal would be included in this list it s only one of the would s most widely used payment acquires processing some 8 million payments everyday. As of this writing, PayPal has over 137 million active accounts in 193 markets and 26 currencies around the world, which makes it easy to transfer and request payments. Other PayPal Perks include accepting checks through a smartphone s customers to make a purchase without leaving your site. (x) Google Wallet : - This is essentially Google s version of PayPal, complete with money transfers and a Google Wallet card! Since we re all addicted to the Big G, 2 Page

3 It shouldn t be all that difficult to spend and receive money. Google also announced last month that it will be releasing a physical card connected to user s accounts so they can utilize Google Wallet at retail businesses. For convenience, and the number of users, Google Wallet tops our list of the top 10 online payment solutions. Q 2. How can e-commerce portals make shopping secure. Ans The e-commerce portals make shopping secure when applying that :- (i) Choose a secure e-commerce platform :- Put your e-commerce site on a platform that uses a sophisticated Object-Oriented Programming Language, VoIP Supply, We ve used plenty of different open source e-commerce platforms in the past and the one we re using now is by far the most secure,. Our administration panel is inaccessable to attackers because it s only available on our internal network and completely removed from our public facing servers. Additionally, it has a secondary authentication that authenticates users with our internal Windows Network. (ii) Use a secure connection for online checkout and make sure you PCI compliant : - Use strong SSL [Secure Sockets Layer] authentication on for web and data protection,. It can be leap of faith for customers to trust that your e-commerce site is safe particularly when web-based attacks increased 30 percent last year. So it s important to use SSL Certificates to authenticate the identity of your business and encrypt data in transit,.this protects your company and your customer from getting their financial or important information stolen. Event better : Integrate the stronger EV SSL [Extended Validation secure sockets layer],url green bar and SSL Security seal so customers know that your website is safe. SSL certificates are amust for transactions, To validate our gateway that uses live address verification services right on our checkout, 3 Page

4 This prevents fraudulent purchases by comparing the address entered online to the address they have on file with their credit card company. (iii) Don t Store Sensitive Data :- There is no reason to store thousands of records on your customers,especially Credit card numbers, expiration dates nad CVV2 [Card Verification Value] codes, In fact, it is strictly forbidden by the PCI standerds, The risk of a breach outweighs the convenience for your customers at checkout,. (iv) Employ an address and card verification system : - Enable an address verfication system (AVS) and require the card verification transactions to reduce fraudulent Charges,. (v) Require Strong Passwords : - While it is the responsibility of the retailer to keep customer information safe on the back-end, you can help customers help themselves by requiring a minimum number of characters and the use of symbols of numbers,. Longer, more complex loginx will make it harder for criminals to breach your site from the front end,. (vi) (vii) Setup System alerts for suspicious acitivity : - Set an alert notice for multiple and suspicious transactions coming through from the same IP address, Similarly, Set up system alerts for Multiple orders placed by the same person using numbers that are from markedly different areas than the billing address and orders where the recipient name is different than the card holder name,. Layer your security : - One of the best ways to keep your business safe from cyber criminals is layering your security,. Start firewalls, an essential aspect in stopping attackers before they can breach your network and gain access to your critical information. Next, Add extra layers of security to the website and applications such as contact forms, login boxes and search queries. These measures will ensure that your e-commerce environment is protected from application-level attacks like SQL (Structured Query Language) injections and cross site scripting. (XSS). 4 Page

5 (viii) Provide security training to employees : - Employees need to know they should never or text senstive data or reveal private customer information in chat sessions as none of these communication mathods is secure, Employees also need to be educated on the laws and policies that effect customer data and be trained on the actions required to keep it safe, Finally, Use strict written protocols and policies to reinforce and encourage empolyees to adhere to mandated security practices. (ix) Use tracking numbers for all orders :- To combat charge back fraud, have tracking numbers for every order you send out,. This is especially important for retailers who drop ship. (x) Monitor your site regularly and make sure whoever is hosting it is, too :- Always have a real-time analytics tool, It is the real-world equivalent of installing security cameras in your shop. Tools like Woopra or Clickly allow you to observe how visitors are navigating and interacting with your website in real time,allowing you to detect fraudulent or suspicious behavior,. With tools like these we even receive alerts on our phones when there is suspicious activity, allowing us to act quickly and prevent suspicious behavior from causing harm. Also make sure whoever is hosting your e-commerce site. Regurlarly monitors their servers for malware,viruses and harmful software, Ask your current or potential Web Host if they have a plan that includes at least daily scanning, detection and removal of malware and viruses on the website. (xi) Perform regular PCI Scans :- Perform regular quarterly PCI scans through services like trust wave to lessen the risk that your ecommerce platform is vulnerable to hacking attempts. If you are using third-party downloaded software like Magento or Prestashop, stay on top of new versions with security enhancements, A few hours of development time today can potentially save your entire business in the future. 5 Page

6 (xii) Patch your Systems :- Patch everything immediately-literally the day they release a new version, That includes the Web server itself, as well as another third-party code like java, Python,Perl,WordPress and Joomla, which are favorite targets for attackers. Breached sites are constantly found running a three year old version of PHP or coldfusion from 2007, Your web apps, Xcart OSCommerce, Zencart and any of the others all need to be patched regularly. (xiii) Make sure you have a DdoS protection and mitigation service. With DdoS [Distributed Denial of service] attacks increasing infrequency, sophistication and range of targets, ecommerce sites should turn to cloud-based DdoS protection and managed DNS search and services to provide transactional capacity to handle proactive mitigation and eliminate investments in equipment infrastructure and expertise, The cloud approach will help [ecommerce businesses] Trim operational costs while hardening their defences to thwart even the largest and most complex attacks,. 6 Page