Java E-Commerce Martin Cooke, 2002 1



Similar documents
Lectures for the course: Electronic Commerce Technology (IT 60104)

The Definition of Electronic Payment

Payment Systems for E-Commerce. Shengyu Jin 4/27/2005

Credit card: permits consumers to purchase items while deferring payment

Internet Part 2. CS/MIS Department

PayPal. PayPal Payments Pro. Click system Configuration Sales Payment Method PayPal All-in-One Payment Solutions to set PayPal payment method.

Chapter 10. e-payments

Electronic Commerce and E-wallet

CREDIT CARD PROCESSING GLOSSARY OF TERMS

Online Payment Processing Definitions From Credit Research Foundation (

E-commerce refers to paperless exchange of business information using following ways.

Accepting Ecommerce Payments & Taking Online Transactions

The e-payment Systems

Internet Usage (as of November 1, 2011)

Online Payment Process. Name Kathleen Kaye Acosta Nr Course E-Business Technologies SS2008 Professor Dr. Eduard Heindl

What It Means for You

Resource 3.9. A Guide to Online Payment Facilities

PayLeap Guide. One Stop

ACH, EFT, SET, SSL, IOTP

XML Trust Services. White Paper

A: This will depend on a number of factors. Things to consider and discuss with a member of our ANZ Merchant Services team are:

2 ASIAuth Credit Card Processing Overview

Overview of Credit Card Payment Processing in Digital StoreFront

E-Commerce Transaction. PayPal: The Money s in the . Points of Vulnerability. PayPal: The Money s in the . Types of Payment Systems

An access number, dialed by a modem, that lets a computer communicate with an Internet Service Provider (ISP) or some other service provider.

Account-Based Electronic Payment Systems

E-commerce Shopping Carts Digital Cert. Merchants

What Is the Java TM 2 Platform, Enterprise Edition?

SOFT 437. Software Performance Analysis. Ch 5:Web Applications and Other Distributed Systems

GLOSSARY OF MOST COMMONLY USED TERMS IN THE MERCHANT SERVICES INDUSTRY

Internet Engineering: Web Application Architecture. Ali Kamandi Sharif University of Technology Fall 2007

Electronic Payment Systems. Traditional Methods

Detailed Table of Contents

Swedbank Payment Portal Implementation Overview

Increase revenue. Reduce operating costs. Improve efficiencies. Accomplish all this and more with eselectplus.

Yahoo! Merchant Solutions. Order Processing Guide

E-COMMERCE TUTORIAL. Simply Easy Learning by tutorialspoint.com. tutorialspoint.com

IFSNA EXTENSIONS FOR DATA COLLECTION/BAR CODING CREDIT CARDS, FREIGHT INTERFACE & TAX SOFTWARE

Outline. TIM 50 - Business Information Systems. Lecture 10. Instructor: Terry Allen UC Santa Cruz 10/28/2011

TIM 50 - Business Information Systems

Accepting Credit Card Payments

Virtual Terminal User Guide

Part 1: E-Business Models

Elavon Payment Gateway Integration Guide- Remote

Outline. Introduction to E-commerce. Why is e-commerce? [Awad] What is e-commerce? Session 1. Yan Wang E-commerce.

Mobile Banking FEATURES & BENEFITS OF MOBILE BANKING

IS E-COMMERCE RIGHT FOR YOU

Order Processing Guide

Integration of CRM Systems with Payment Gateway

WebReserv Introduction To Online Payments

Real World ecommerce for ColdFusion Developers

GUIDE TO WEBSITES AND E-COMMERCE

Credit Card Processing for non-profits

Standardizing client-side API for Web payments? Author: Stéphane Boyera W3C 1

How to Build an E-Commerce Application using J2EE. Carol McDonald Code Camp Engineer

First Data E-commerce Payments Gateway

Electronic payment systems

Vision: Give 1. Get 2. GNU FDL Yann Geffrotin

How Do I Understand Credit Card Processing Fees?

E-commerce. business. technology. society. Kenneth C. Laudon Carol Guercio Traver. Third Edition. Copyright 2007 Pearson Education, Inc.

This tutorial takes adopts a simple and practical approach to explain the governing principles of e-commerce.

Euronet s Internet Banking Solution Built for Today s Online Business

Recurring Credit Card Billing

Frequently Asked Questions for Order Processing and Payment Options:

Understanding (and Optimizing) Credit Card Fees

Module 6. e-business and e- Commerce

1. Which segment do ebay, Amazon.com, and LandsEnd.com belong? 2. Which segment focuses on consumers dealing with each other?

Electronic Payment Systems. Dr Sherif Kamel

Security Features of SellerDeck Web Sites

SUCCESSFUL E-BUSINESS SYSTEMS - PAYPAL

E-COMMERCE, ELECTRONIC PAYMENTS

Online Payment s. Simple Fast Secure

Online Payment Processing What You Need to Know. PayPal Business Guide

VoipNow Automation Integrated Payment Plug-ins. For more information about VoipNow Automation, check: Copyright PSA.

An Analysis on the Types of Online Payment of E-commerce

Enterprise Application Integration

A guide for accepting online payments for Hertfordshire emarketplace Providers

Realex Payments Integration Guide - Ecommerce Remote Integration. Version: v1.1

Case-study: SwissAir. The Internet Business. Case-study: SwissAir. Case-study: SwissAir. Summary. Summary

Transformation of payment systems: channels, technologies and business models

N-CAP Users Guide Everything You Need to Know About Using the Internet! How PayPal Works

Your gateway to card acceptance.

Session: Business Systems Topic: E-Commerce. Daniel Chang. CGS 2100 Micro Applications for Business & Economics. Lecture

Global Iris Integration Guide ecommerce Remote Integration

Ecommerce Setup Wizard Site Setup Wizards

Architecture Design For Web-based Application Systems. Instructor: Dr. Jerry Gao Class: CMPE296U

How To Use The Revenue Accounting And Management System (Ram) System

Part 1: Common Mistakes in E-commerce and Best Practices

Evaluate the Usability of Security Audits in Electronic Commerce

5Subscription Management Automate. 6Electronic License Activation (ELA) 7Electronic License Management. 8Electronic Software Delivery (ESD)

MASTERCARD PROCUREMENT PROGRAM Cardholder s Guide

Credit Card Surcharge Rules & Fee Reductions. September 17, 2014 Matt Fluegge Vantiv

How To Accept A Credit Card Online

Payflow Link User s Guide

Office Relocation Planner Guide to Credit Card Processing

THE BANK ACCOUNT AT THE HEART OF THE DIGITAL EXPERIENCE. MyBank for Service Providers

WebLogic Server 7.0 Single Sign-On: An Overview

How Online Payments Really Work

Transcription:

Java E-Commerce Martin Cooke, 2002 1 Money, architecture & enterprise Today s lecture Online monetary transactions Tiered architectures Java Enterprise (J2EE) Online monetary transactions* Martin Cooke *security is covered in later lectures 13/02/2004 Java E-Commerce Martin Cooke, 2004 2 Categories of payment and information flow C2B: (payment flow) most online retailers B2C: (information flow) online billing C2C: peer-to-peer payments eg ebay B2B: needs more electronic paperwork than C2B B2B E-commerce is not new EDI: Electronic Data Interchange EFT: Electronic Funds Transfer C2B: How to spend money on the net Credit card schemes Digital cash Micropayments ewallets Online credit card transactions I: Via merchant account May already have one for terrestrial business CNP ( card-not-present ) category (cf phone ordering) Difficult to obtain, especially for new businesses with limited assets II: Via Payment Solution Provider Funnel small businesses transactions through PSP merchant bank Costs more; payments delayed Typically: Set up in 24 hours Annual fee: $ 500 Transaction fee: 4-5% 13/02/2004 Java E-Commerce Martin Cooke, 2004 4 13/02/2004 Java E-Commerce Martin Cooke, 2004 5 13/02/2004 Java E-Commerce Martin Cooke, 2004 6

Java E-Commerce Martin Cooke, 2002 2 Question Online CNP transactions Implementation You come across a form box on a site asking for your credit card details. Why might you be loathe to give them? Credit card number Expiration date Shipping & billing info MERCHANT Basic formbased acquisition Merchant uses conventional POS terminal Pros Simple to add to existing site Cons Security! Insecure link, card details held by merchant not fully automated Business may not be what they claim Insecure transfer Business may store details on their system System may not be secure One-off purchase, lifetime of risk? You may not have a credit card BUYER S BANK (or credit card Associate) verified verify buyer ACQUIRING BANK ie merchant s bank Indicates secure internet transfer (usually Secure Socket Layer - SSL) 13/02/2004 Java E-Commerce Martin Cooke, 2004 7 13/02/2004 Java E-Commerce Martin Cooke, 2004 8 13/02/2004 Java E-Commerce Martin Cooke, 2004 9 Implementation Implementation Implementation Pros Cons Pros Cons Pros Cons Basic formbased acquisition Merchant uses conventional POS terminal Simple to add to existing site Security! Insecure link, card details held by merchant not fully automated Basic formbased acquisition Merchant uses conventional POS terminal Simple to add to existing site Security! Insecure link, card details held by merchant not fully automated Basic formbased acquisition Merchant uses conventional POS terminal Simple to add to existing site Security! Insecure link, card details held by merchant not fully automated As above, plus secure link Use of Secure Better security Sockets Layer (SSL) as above apart from secure link As above, plus secure link Use of Secure Better security Sockets Layer (SSL) as above apart from secure link As above, plus secure link Use of Secure Better security Sockets Layer (SSL) as above apart from secure link 3 rd party payment gateway Association for Payment Clearing Systems (APACS) Automated consumer credit card details held by merchant (for refunds) 3 rd party payment gateway Association for Payment Clearing Systems (APACS) Automated consumer credit card details held by merchant (for refunds) Secure Electronic Transaction (SET) Owned by VISA & Mastercard Secure and private burden on cardholder 13/02/2004 Java E-Commerce Martin Cooke, 2004 10 13/02/2004 Java E-Commerce Martin Cooke, 2004 11 13/02/2004 Java E-Commerce Martin Cooke, 2004 12

Java E-Commerce Martin Cooke, 2002 3 Data integrity Data integrity Cardholder Is cardholder who s/he claims to be? Cardholder certificate eg account info + secret value encoded using one-way hash 13/02/2004 Java E-Commerce Martin Cooke, 2004 13 13/02/2004 Java E-Commerce Martin Cooke, 2004 14 13/02/2004 Java E-Commerce Martin Cooke, 2004 15 Data integrity Date integrity Date integrity Cardholder Merchant Is cardholder who s/he claims to be? Cardholder needs to confirm identity of merchant eg is it the British Gas or an interloper? Cardholder certificate eg account info + secret value encoded using one-way hash Use of merchant certificates Cardholder Merchant Interoperability Is cardholder who s/he claims to be? Cardholder needs to confirm identity of merchant eg is it the British Gas or an interloper? Protocol should be independent of particular transport security mechanisms Cardholder certificate eg account info + secret value encoded using one-way hash Use of merchant certificates Build security into applications and messages; don t rely on secure infrastructure Cardholder Merchant Interoperability Is cardholder who s/he claims to be? Cardholder needs to confirm identity of merchant eg is it the British Gas or an interloper? Protocol should be independent of particular transport security mechanisms Cardholder certificate eg account info + secret value encoded using one-way hash Use of merchant certificates Build security into applications and messages; don t rely on secure infrastructure We ll examine SET in detail when considering security 13/02/2004 Java E-Commerce Martin Cooke, 2004 16 13/02/2004 Java E-Commerce Martin Cooke, 2004 17 13/02/2004 Java E-Commerce Martin Cooke, 2004 18

Java E-Commerce Martin Cooke, 2002 4 Administers credit card payment Business licences CashRegister system, which takes over all processing of the transaction security validation fraud control Recently bought by VeriSign PayFlow Claims 3 seconds average transaction time CashRegister Buy credit from a digital cash vendor Pay by cheque or at outlet such as newsagent internetcash.com (downgraded as of 11/2/2003) Use at retail sites which accept digital cash Can be given as presents or received as rewards Digital cash Mechanism to avoid credit-card transaction fees for low cost items (under $10) Shareware Pay-per-document Micropayments accumulate and result in a bill similar to that for a utility (cf individual phone calls). Idea is to add payments to your phone bill (cartio.com - defunct 2003, Millicent - defunct 2003) Payments can be validated without consulting a bank Can be used in association with affiliate programs and other reward schemes Micropayments 13/02/2004 Java E-Commerce Martin Cooke, 2004 19 13/02/2004 Java E-Commerce Martin Cooke, 2004 20 13/02/2004 Java E-Commerce Martin Cooke, 2004 21 Much information relating to e-commerce is unreliable 50% of the sites mentioned in books (published in 2001) used to prepare this lecture were either Suspended Taken over Non-existent Caution! Hold details of your credit card(s) Billing and shipping addresses digital cash, digital cheques Enable 1-click purchase Amazon.com E-wallets C2C: Peer-to-peer payments Eg paying for auction purchases PayPal: send cash to anyone with an email address over the net Free for individuals Acquired by ebay Buyers submit electronic payments to sellers current account 13/02/2004 Java E-Commerce Martin Cooke, 2004 22 13/02/2004 Java E-Commerce Martin Cooke, 2004 23 13/02/2004 Java E-Commerce Martin Cooke, 2004 24

Java E-Commerce Martin Cooke, 2002 5 B2B Terminology More complex than C2B Larger amounts Multiple accounts Richer information trail required Format compatible with other aspects of business Clareon Uses XML (next lecture) Tiered architectures Distributed architecture System composed of programs running on multiple hosts Tier One of those host computers But can have virtual distributed apps running on a single host Tier can also signify a logical partition of processing Examples: Client eg web browser Server Object server Enterprise server Database server Web server 13/02/2004 Java E-Commerce Martin Cooke, 2004 25 13/02/2004 Java E-Commerce Martin Cooke, 2004 27 More terminology Importance of tiers 1 tier Presentation logic How information is presented to the client Business logic Collection of objects and methods which are different from business to business eg flight, customer, checkavailability(), Data logic How to ensure data is persisted, secure, and transactionally safe Allow separation of concerns Coding paradigms different for each tier required skill set differs too Along with security, this is probably the most important aspect of e-commerce system design STANDALONE APPLICATION + Simplicity no networking + High-performance + Self-contained - Can t access remote services - Potential for spaghetti code 13/02/2004 Java E-Commerce Martin Cooke, 2004 28 13/02/2004 Java E-Commerce Martin Cooke, 2004 29 13/02/2004 Java E-Commerce Martin Cooke, 2004 30

Java E-Commerce Martin Cooke, 2002 6 2 tiers 3 tiers 4 tiers S (WEB)SERVER S (WEB)SERVER database (WEB)SERVER APPSERVER database + Quite simple + Separation of presentation logic from business logic - Little potential for resource sharing, a big problem for ecommerce applications + Separation of presentation, business and data logic + Concurrent data access + Shared resources - More expertise required - More security - needs object-relational mapping + (near) automatic handling of transactions, security, persistence, + supports just about anything - learning curve - can be inefficient due to generality - expensive (but see JBoss) 13/02/2004 Java E-Commerce Martin Cooke, 2004 31 13/02/2004 Java E-Commerce Martin Cooke, 2004 32 13/02/2004 Java E-Commerce Martin Cooke, 2004 33 Homework (1) Read Chaffee article on tiers at http://www.javaworld.com/ javaworld/jw-01-2000/jw-01-ssj-tiers_p.html Problems with tier classifications HTML form communicating with a webserver 1.5 tier systems (is web form a program?) Applet running on a browser, downloaded from webserver 1 tier, but depends what the applet does Another view (from Sun) 13/02/2004 Java E-Commerce Martin Cooke, 2004 34 13/02/2004 Java E-Commerce Martin Cooke, 2004 35 13/02/2004 Java E-Commerce Martin Cooke, 2004 36

Java E-Commerce Martin Cooke, 2002 7 Enterprise system design concerns J2EE Java Enterprise Extensibility Maintainability Division of labour along skill lines Scaleability Portability Availability Interoperability Focus on business logic Separation of code with differing rates of change 13/02/2004 Java E-Commerce Martin Cooke, 2004 38 13/02/2004 Java E-Commerce Martin Cooke, 2004 39 Read about J2EE (see course website for doc) Homework (2) Resources J2EE book Online documents developer.java.sun.com/developer/technicalarticles/ J2EE/patterns Design patterns www.jdance.com/designpatterns.shtm 13/02/2004 Java E-Commerce Martin Cooke, 2004 40 13/02/2004 Java E-Commerce Martin Cooke, 2004 42

Java E-Commerce Martin Cooke, 2002 8 java.sun.com/j2ee javaworld.com jguru.com IBM developer Websites 13/02/2004 Java E-Commerce Martin Cooke, 2004 43

2024 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information