SaaS-Based Employee Benefits Enrollment System

Similar documents
MS 10978A Introduction to Azure for Developers

CLOUD COMPUTING & WINDOWS AZURE

Course 10978A Introduction to Azure for Developers

This module provides an overview of service and cloud technologies using the Microsoft.NET Framework and the Windows Azure cloud.

Microsoft Introduction to Azure for Developers

Developing ASP.NET MVC 4 Web Applications MOC 20486

Developing ASP.NET MVC 4 Web Applications

Course 20533: Implementing Microsoft Azure Infrastructure Solutions

10978A: Introduction to Azure for Developers

Repeater. BrowserStack Local. browserstack.com 1. BrowserStack Local makes a REST call using the user s access key to browserstack.

Implementing Microsoft Azure Infrastructure Solutions

Implementing Microsoft Azure Infrastructure Solutions 20533B; 5 Days, Instructor-led

Course 20533B: Implementing Microsoft Azure Infrastructure Solutions

This course provides students with the knowledge and skills to develop ASP.NET MVC 4 web applications.

A SURVEY OF CLOUD COMPUTING: NETWORK BASED ISSUES PERFORMANCE AND ANALYSIS

Developing ASP.NET MVC 4 Web Applications Course 20486A; 5 Days, Instructor-led

MS 20487A Developing Windows Azure and Web Services

Developing Microsoft Azure Solutions 20532B; 5 Days, Instructor-led

Microsoft SharePoint 2013 with Citrix NetScaler

ORACLE ADF MOBILE DATA SHEET

Introduction to the EIS Guide

ORACLE MOBILE APPLICATION FRAMEWORK DATA SHEET

Jitterbit Technical Overview : Microsoft Dynamics CRM

Application Code Development Standards

Introduction to Azure for Developers

Brocade Virtual Traffic Manager and Oracle EBS 12.1 Deployment Guide

Administering the Web Server (IIS) Role of Windows Server

Administering the Web Server (IIS) Role of Windows Server 10972B; 5 Days

SharePoint 2013 Logical Architecture

Microsoft Azure for IT Professionals 55065A; 3 days

MEGA Web Application Architecture Overview MEGA 2009 SP4

WHITE PAPER. Migrating an existing on-premise application to Windows Azure Cloud

ITDUMPS QUESTION & ANSWER. Accurate study guides, High passing rate! IT dumps provides update free of charge in one year!

Framework as a master tool in modern web development

MOC DEVELOPING WINDOWS AZURE AND WEB SERVICES

BlackBerry Enterprise Service 10. Secure Work Space for ios and Android Version: Security Note

Keyword: Cloud computing, service model, deployment model, network layer security.

Access Your Cisco Smart Storage Remotely Via WebDAV

10972B: Administering the Web Server (IIS) Role of Windows Server

05.0 Application Development

Brocade Virtual Traffic Manager and Microsoft IIS Deployment Guide

White Paper. Securing and Integrating File Transfers Over the Internet

How To Understand The Architecture Of An Ulteo Virtual Desktop Server Farm

SwiftScale: Technical Approach Document

Copyright 2013, 3CX Ltd.

BeBanjo Infrastructure and Security Overview

Developing Windows Azure and Web Services

A Brief Overview. Delivering Windows Azure Services on Windows Server. Enabling Service Providers

Jitterbit Technical Overview : Microsoft Dynamics AX

Top 7 Tips for Better Business Continuity

owncloud Architecture Overview

WALKME WHITEPAPER. WalkMe Architecture

Table of Contents. Introduction. Audience. At Course Completion

Programming Fundamentals of Web Applications Course 10958A; 5 Days

Brocade Virtual Traffic Manager and Magento Deployment Guide

The Top Web Application Attacks: Are you vulnerable?

CSS CORP SMART MOBILITY SERVICES

Microsoft Administering the Web Server (IIS) Role of Windows Server

1. Introduction. 2. Web Application. 3. Components. 4. Common Vulnerabilities. 5. Improving security in Web applications

Permeo Technologies WHITE PAPER. HIPAA Compliancy and Secure Remote Access: Challenges and Solutions

KEMP LoadMaster. Enabling Hybrid Cloud Solutions in Microsoft Azure

Workday Mobile Security FAQ

Mobile Device Management Version 8. Last updated:

Cisco Application Networking for BEA WebLogic

Microsoft Training and Certification Guide. Current as of December 31, 2013

Information Supplement: Requirement 6.6 Code Reviews and Application Firewalls Clarified

INTRODUCTION TO CLOUD COMPUTING CEN483 PARALLEL AND DISTRIBUTED SYSTEMS

Enhancing your Web Experiences with ASP.NET Ajax and IIS 7

Introduction to IBM Worklight Mobile Platform

Oracle Identity Analytics Architecture. An Oracle White Paper July 2010

Configuring and Troubleshooting Internet Information Services in Windows Server 2008

Developing Microsoft Azure Solutions

Web App Security Audit Services

Developing Microsoft Azure Solutions 20532A; 5 days

Formación en Tecnologías Avanzadas

Microsoft Implementing Microsoft Azure Infrastructure Solutions

Harnessing the Power of the Microsoft Cloud for Deep Data Analytics

Kenna Platform Security. A technical overview of the comprehensive security measures Kenna uses to protect your data

Storage Made Easy Enterprise File Share and Sync (EFSS) Cloud Control Gateway Architecture

Building a Mobile App Security Risk Management Program. Copyright 2012, Security Risk Advisors, Inc. All Rights Reserved

How To Protect A Web Application From Attack From A Trusted Environment

Symantec Mobile Management Suite

Advanced Web Application Development using Microsoft ASP.NET

Site24x7: Powerful, Agile, Cost-Effective IT Management from the Cloud. Ensuring Optimal Performance and Quality Web Experiences

Introduction to BlackBerry Smartphone Web Development Widgets

OVERVIEW OF MICROSOFT AZURE

How To Build An Online School Management System (Edsine)

Creating Stronger, Safer, Web Facing Code. JPL IT Security Mary Rivera June 17, 2011

Expanded contents. Section 1. Chapter 2. The essence off ASP.NET web programming. An introduction to ASP.NET web programming

Access Database Hosting. An introduction to Cloud Hosting Access databases from Your Office Anywhere

ADS2013: App Development with SharePoint 2013

The Application Delivery Controller Understanding Next-Generation Load Balancing Appliances

Page 1. Overview of System Architecture

SAST, DAST and Vulnerability Assessments, = 4

Gladinet Cloud Enterprise

Transcription:

Situation A US based industry leader in Employee benefits catering to large and diverse client base, wanted to build a high performance enterprise application that supports sizeable concurrent user load The client desired a single portal implementation enabling activities like online enrollment, decision support, human resources, compensation management, payroll and electronic data transfer Challenges Providing services to number of companies under one implementation Scalability to support peak performance needs during enrollment period Flexible design to handle varying customization and configuration needs for clients without affecting the performance Managing evolving code base and ever increasing data as separate databases are provided for different enrolling companies for HIPAA compliance High Security requirements for the application Accessibility on multiple platforms and devices Harbinger Solution The following section covers various aspects of the portal including Design, Performance, Security, Mobile availability and Deployment. Design Designed a SaaS based portal with cloud deployment for high availability and scalability Designed the application in Modular fashion using MVC pattern to speed up the development and simplify the deployment process. Customized classes that mimic MVC pattern and support remoting architecture Implemented Load balancing architecture to increase the availability of system Implemented Web server and application server farming Implemented Remoting and Web service for communication between the web and application servers Implemented Native application for mobile access Implemented RWD website for marketing purposes and sales demos

Performance Currently the portal supports 8000 concurrent users from multiple clients at peak load time. This was achieved using following techniques. Load balancing architecture and web farming provided higher performance WCF technology used for faster response time and to overcome page time out problems CSS Sprite used for Style sheet and image load optimization Connection Pooling and proper web server configuration in addition to Data Caching, Image and style sheet caching played an important role in boosting the performance Following Database and.net code optimization increased performance and scalability Optimized indexing of the database Scripts to shrink the database size Optimization of the dynamic screen routines and web pages Optimization of the import and export modules

Security The portal achieved A+ rating from independent third party authorities. This was achieved by following: Security development life cycle used in application development List of Tools: security flaws, SQL injections, cross site scripting, penetration testing through web services and modification of web requests.net techniques used in business logic layer to overcome security flaws Application makes use of ASP.NET Windows Authentication to take advantage of its built in security mechanism Encryption Methodologies: Password and other important details are stored in database with encrypted form and decrypted at application level PGP encryption used. Using Public key and Private Key only files can be decrypted Https v3 protocol used instead of HTTP Impersonation is used to download the files from File server or FTP server CAPTCHA used to ensure that the machine is not generating the user load automatically Data not stored at client side in cookies or in URLs to ensure security Firewall with proper configuration for access control is used to prevent the data from getting exposed to outside world

Mobile Availability Enterprise application also available on Android(2.x+) and ios(5.x+) tablets Application has rich native UI that talks to the backend server via web services Mobile application has security certification from a third party authority 25% user base taking advantage of the online mobile application Application available on Apple Appstore and Google Marketplace for free download and quarterly upgrades Deployment Portal deployed using Enterprise Cloud TerraMark as an IAAS for auto scaling and high availability Tiered architecture using separate app server, web server, file server and databases, coupled with modular design enabled easy application and changes for further scaling Application was migrated to 64 bit(windows 2008 R2) for supporting cloud deployment Native application available on Apple app store and Google market place

Tools & Technologies VSTS.NET 3.5 ASP.NET MS SQL Server 2008 R2 WCF and Remoting Ajax Control Toolkit PGP Library IIS PGP encryption Zed Attack Proxy ANT profiler Paros SQL profiler Memory Profiler SQL DTA Benefits The application serves 60 companies with the total user load of 100,000+ with one implementation. Successful performance testing was done with following results: 8000 concurrent users Average 140 requests per user 60 Databases on Production Single code base enables handling all the customizations Mobile availability has enhanced the application reach Coverage against hazards, hacking and data exposure with security certified implementation Futuristic design in terms of modular architecture enabling scaling and enhancements as well as possible migration to NOSQL databases

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information