PROPOSED MODEL FOR REQUIREMENTS OF EPAYMENT GATEWAYS

Similar documents
RTP Overview: Bridging the Gap Between Consumer Experiences and Business Expectations

OceanPay. OceanPay Visa Prepaid Card. OceanPay Wire Services. Frequently Asked Questions

OpenBank - banking platform for e-money management based on blockchain technology (version 0.2)

RTP Overview: Bridging the Gap Between Consumer Experiences and Business Expectations

Treasury Management Guide

This tutorial takes adopts a simple and practical approach to explain the governing principles of e-commerce.

Electronic Banking (E-Banking)

Prepaid Cards. Coles Gift Mastercard Conditions of Use. Issued by: Indue Ltd Issue Date: July 2017 ABN

The Bank of Elk River: Digital Wallet Terms and Conditions

Consumer oriented Ecommerce:

Genesis Block Development

SUMMARY. The Directors consider the competitive advantages of Digitalhongkong include:

HELLENIC CONFEDERATION OF COMMERCE&ENTREPRENEURSHIP

Fundamentals of Information Systems, Seventh Edition

THE DIGITAL FIRM: ELECTRONIC COMMERCE AND ELECTRONIC BUSINESS

Fundamentals of Information Systems, Seventh Edition

Introduction to Faster Payments in the U.S. REGIONAL PAYMENTS ASSOCIATIONS

ESSENTIALS OF E-COMMERCE (UNIT-2) PROCESS OF ELECTRONIC TRANSACTIONS AND THE INDIAN PAYMENT MODEL

Abstract 3. Merchants 3. End-user 4. External Merchants 5. Blockchain 5. Development 6. Liquidity and Exchange Network 6.

Tokenization: The Future of Payments

MODELS OF MOBILE PAYMENTS

Cutting Checks: Challenges and Choices for the Adoption of B2B Electronic Payments

Automatic Demand Draft Generation using the Automated Teller Machine

Payment Processor Buying Guide. How to prepare for sending out an RFP

E-Debit International Inc. Introduction to Transaction Processing. Basic Overview of our Payment & Processing Systems 08/13

How to Leverage the Small Business Payments Toolkit

How cashless payments will reshape commerce in Asia

Volume 4 Issue 05 May-2016 Pages ISSN(e): Website: DOI:

Internet Payments. September 14, Chairman of the Managing Board ABN AMRO Bank. Chairman & CEO TD Bank Financial Group

Security of Smartcard Based Payment Protocol

Unit-4: Security Environment:

Treasury Management Solutions

Turn Accounts Payable into a Profit Center. Sandy Shropshire Vice President Business Development

Oversight of payment instruments. The Banque de France s approach CONFERENCE. E-payments in Europe

SECURE MICROPAYMENTS USING PHYSICAL UNCLONABLE FUNCTION

SMS BASED MONEY TRANSACTION USING SOA

E-Business & E-Commerce

To: Financial Services Policy Committee of the Conference of Presidents Federal Reserve System

1i. What other gaps or opportunities not mentioned in the paper could be addressed to make improvements to the U.S. payment system?

Use examples from a specific company (companies) to support your points.

Charging and billing (C&B) Traditional payment systems US market - Value and volume of payments

Fed Consultation Paper Association for Financial Professionals (AFP) Response

E Commerce By: Vitthal Jagtap SBPCOE Indapur.

Time: 3 hours. Full Marks: 70. The figures in the margin indicate full marks. Answer from all the Groups as directed. Group A.

The Changing Landscape of Card Acceptance

A CryptoCodex Ltd. Product

E-SERVICES RENDERED BY BANKING INDUSTRY

Helping Your Small Business Customers Adopt Electronic Payments

INFS 401 AUTOMATION OF INFORMATION SYSTEMS

TRAVELEX GLOBALPAY. Managing all your payment needs online

The real-time revolution in commercial payments

1i. What other gaps or opportunities not mentioned in the paper could be addressed to make improvements to the U.S. payment system?

*DD8108* ELECTRONIC FUND TRANSFER DISCLOSURE

SMS gateways(sg) WELCOME

B.V. Patel Institute of Business Management, Computer & Information Technology, Uka Tarsadia University

Integrating Payments: Design Principles For A Cashless Future. Monojit Basu, Founder and Director, TechYugadi IT Solutions & Consulting

Introducing an easier way to manage your business

Setting the Vision p. 1 Market Predictions p. 1 Defining Vision p. 3 Traditional Business Vision vs. E-Vision p. 5 Rethink Your Revenue p.

INTERAC Online Schedule Terms and Conditions

PAYMENT TRENDS & HOT TOPICS

CHPATER 04 E-PAYMENT MBA 61062: ELECTRONIC COMMERCE MBA 61062: ELECTRONIC COMMERCE, BY S. SABRAZ NAWAZ 1

Whitepaper. Abstract. Introduction

Evaluating Processing Infrastructure, Support & Costs

The New World of Accounts Payable: When Invoices Process Themselves. Michael Cerda, SAP Ariba May 2018

Invoice Status Service

Making PayPal work for you. Welcome Kit

HOW INTEGRATED RECEIVABLES OVERCOMES THE FOUR BIGGEST CHALLENGES IN ORDER-TO-CASH

Higher National Unit Specification. General information for centres. Unit code: DV6F 34

The Digital Financial Services Ecosystem

CHAPTER 3 CLASSIFICATION AND REQUIREMENTS OF ELECTRONIC PAYMENT SYSTEM

FINALTERM EXAMINATION. Spring IT430- E-Commerce (Session - 1)

Security enhancement on HSBC India Debit Card

ANZ EFTPOS card and ANZ Visa Debit card CONDITIONS OF USE

What Do Merchants Need to Be Successful Online?

Payment Gateway Overview. Get familiar with credit card processing & our platform

Vulnerabilities in the Adachi-Aoki-Komano-Ohta Micropayment Scheme

DEMYSTIFYING DIGITAL PAYMENTS

E-Commerce and E-Governance: Technology for Tomorrow on India Reforms- 2020

Ingenico Group Our vision for Instant Payment The use Cases. 2 ECB #Tipsapp Challenge - Frankfurt - February 2018

Charging and Billing (C&B)

Further Development of a Secured Unified E-Payment System in Nigeria: A Critical Viewpoint

Electronic Banking. Describe electronic transactions you can make. Discuss your rights and responsibilities in electronic transactions

Corporate Presentation. Author: DIMPAY Foundation

Attachment 2: Merchant Card Services

Chapter 5. Objectives. Business-to-Business Strategies: From Electronic Data Interchange to Electronic Commerce

Receivables and Secure Payment Processing

ARCHITECTURE OF BEVERAGE VENDING MACHINE LEVERAGING THE AUTOMATED TELLER MACHINE

Securing Blockchains with z Systems

Digital Innovations, Finance and Central Banking

E-COMMERCE AND SECURITY CONCERNS A SURVEY

Innovations in Small Dollar Payments 1

1i. What other gaps or opportunities not mentioned in the paper could be addressed to make improvements to the U.S. payment system?

How does DEFT POS work?

Purchasing Card as a Payment Tool

By agreeing to these Terms and Conditions, you represent the following:

LEISURE VOUCHERS TERMS AND CONDITIONS

Product. Corillian Business Online Business Banking Solutions on the Industry s Leading Online Banking Platform

Real-Time Payments: Why Should Corporates Care?

APS Bank plc Data Privacy Policy

Solution Overview. A comprehensive business overview for financial institutions on RippleNet

Transcription:

International Journal of Computer Science Engineering and Information Technology Research (IJCSEITR) Vol.1, Issue 2 Dec 2011 152-168 TJPRC Pvt. Ltd., PROPOSED MODEL FOR REQUIREMENTS OF EPAYMENT GATEWAYS Prof. GOPI KRISHNA Professor & Head, Dept. of CSE, Narasaraopeta Engineering College, Narasaraopet, AP, India, gks2405@gmail.com Dr. R. SIVA RAM PRASAD Research Director, Dept. of CSE Acharya Nagarjuna University Guntur, AP, India raminenisivaram@yahoo.co.in ABSTRACT The extraordinary growth of international interconnected computer networks and the pervasive trend of using these networks as a new field for conducting business processes are stimulating the demand for new payment methods. These new methods must attain high levels of security, speed, privacy, decentralization and internationalization for electronic commerce to be accepted by both consumers and businesses. This paper surveys the state of the art in payment technologies and we proposed a model of electronic payment gateway on the basis of requirements of an electronic payment gateway. 1. INTRODUCTION EPayment is now one of the most central research areas in ecommerce. EPayment systems refer to the automated processes of exchanging monetary value among parties in business transactions and transmitting this value over the information and communication technology (ICT) networks. The common epayment channels include the payment cards (debit or credit), online web portals, point of sales (POS) terminals, automated teller machines (ATM), mobile phones, automated clearing house (ACH), direct debit/ deposit and real

153 Proposed Model for Requirements of Epayment Gateways time gross settlement (RTGS) system (Nnaka, 2009). The wider patronage of e- Commerce is dependent on the availability of a secured and trusted e-payment System (Baddeley, 2004). The various categories of e-commerce include Business-to-Business (B2B) Business-to-Consumer (B2C) Consumer-to-Business (C2B) and Consumer-to-Consumer (C2C). Over the past decade or so, there has been an increasing use of electronic payment (epayment) instruments for making payments in many advanced countries. In the U.S.A., for example, the share of debit card increased significantly from around 21% in 1999 to around 37% in 2009, while the share of cash tended to record the continued decline from around 39% to around 28% during the same period. Payments are undergoing an unprecedented period of change. The use of paper checks has declined in favor of electronic payments, primarily ACH and wire payments. By migrating away from the paper check, businesses have the ability to increase efficiency and realize numerous hard and soft benefits, both in their bottom lines and to their corporate citizenry. 1.1 Benefits of Migrating to Electronic Payments Organizations migrating from checks to ACH, card and wire transfer payments realize a variety of benefits from such transition. Cost reduction Improved fraud detection and error reduction Increased accessibility and visibility to cash Automation of labor intensive, manual processes

Prof. Gopi Krishna and Dr. R. Siva Ram Prasad 154 Utilizing resources that were once occupied with paper checks in different, more productive ways Reduction of necessary space and resources, Going Green and facilitating organization s part in helping the environment. Many organizations are global and/or conduct business with partners, vendors or other service providers in different countries. Consequently, many payments are made cross-border. Most cross-border payments are made using wire transfers. Organizations do face some challenges when increasing their use of electronic payments. These barriers often center on technology and integration issues, trading partner relations and internal corporate priorities. However, when looking at the weight of the barriers overall both major and minor five factors stand out: Difficulty in convincing customers to pay electronically Trading partners cannot send or receive automated remittance information with electronic payments Difficulty in convincing suppliers to accept electronic payments No standard format for remittance information Shortage of IT resources for implementation Lack of integration between electronic payment and accounting systems. Other widely cited services that organizations are interested in taking advantage of include: Cash concentration (push and pull) and other corporate account-toaccount transfers

155 Proposed Model for Requirements of Epayment Gateways Payroll Consumer/e-check services available today Consumer ACH credit payments Corporate payments requiring cash on delivery Cross-border payments 1.2 Business-to-Consumer Payments Three-quarters of survey respondents work for organizations that accept payments directly from consumers. Credit cards (51 percent), non-converted checks (43 percent), cash (38 percent), recurring ACH debits (33 percent) and debit cards (31 percent) are the payment methods most likely accepted from consumers. Organizations also accept payments in the following forms: Bill payment via organizations web sites Check conversion to ACH at the lockbox ARC Bill payment via a third-party (bank) web site Check conversion to ACH in the back office. 2. REQUIREMENTS In electronic commerce at least two sets of parties (with broadly similar interests within each set) will need to participate: customers and merchants on the one hand, and financial institutions and regulators on the other hand. Arbitrators may be needed in case of a dispute. 2.1 Concerns of customers and merchants Customers and merchants will have an almost common set of wishes and concerns for electronic commerce mechanisms:

Prof. Gopi Krishna and Dr. R. Siva Ram Prasad 156 Security. Electronic currency is just data and is easily copied. It has to be assured that no-one else can divert a payment or impersonate another person in order to steal his funds. Moreover, every party should be protected from a collusion of other parties (multi-party security). No party in the system needs to trust another party - or at least the trust should be as little as possible to ensure his security. The acclaimed security properties must be publicly verifiable. Acceptability. A wide range of parties needs to accept the payment. Conveniences. To make small purchases, the actions required during a transaction should be minimal. This includes: Speed, reliability, fungible (the currency or payment unit should be divisible), transferability (peer-to-peer payments) and minimal specific hardware. Cost. Transaction costs include any direct costs, at the customer, merchant and at any intermediary, as well as processing or handling time for all parties. Privacy. Today, cash is a more or less anonymous payment mechanism. No external party (individual, company or other authority) can create a historic record of any individual s cash transactions. With electronic money the bank or any other party should not be able to determine whether two payments were made by the same user. Durability. The electronic money should not be easily lost : for example, when a system crashes. 2.2 Requirements for financial institutions The financial institutions, which will provide services to enable these transactions in the marketplace, and regulators, will also, have a set of requirements for a payment mechanism: Immediate control. Financial institutions and regulators will seek a system in which transactions are controlled or cleared individually, so that any breach of security can be identified as soon as possible.

157 Proposed Model for Requirements of Epayment Gateways Traceability. Financial institutions and regulators will seek a system in which transactions are traceable, so that if a crime is detected the culprit can be identified. In particular, traceability will be important to track international funds flows, tax evasion and money laundering. Control over the spread of encryption mechanisms. A key concern of the government, and therefore any regulatory body, is to control the spread of encryption mechanisms. 3. RELATED WORK The rapid increase in the use of electronic commerce has also raised the fraudulent practices around the world which needs to be detected as well as prevented. There is a need of work on the security of electronic payment systems and certification is one of the security tenets. Authentication of related authorities is quite important which will be provided by issuing digital certificates for these authorities. This will be done by using the technique which includes hash function and asymmetric encryption. This research is conducted to develop model for security electronic payment gateway and to deals with the certification of electronic payment gateway. Different contributions have been made in this research. After having a detailed study of the methods and techniques that have been used by others the proposed solution is provided. Izhar et al. proposed an electronic payment gateway system. The main idea of the paper revolves around designing and implementation of electronic payment gateway. This paper addresses the requirements for an electronic payment gateway from both the customers' and the merchant s point of view. Most of the population doesn t trust on the local existing online payment gateway because it is not very secure. They need such a gateway that fulfill their all requirements and provide security, privacy etc. On the basis of these

Prof. Gopi Krishna and Dr. R. Siva Ram Prasad 158 requirements and the local infrastructure, an electronic payment gateway for local environment is provided. Kent et al. carried out a research on evaluation of Certification authority Security. This paper describes the security requirements for the Certification Authorities (CA). Three different approaches for implementing CA cryptographic support function are examined, and also analyzed it relative to attacks. Rexha presented the new approach for assuring the security in online transactions. Suggested one of the most trustworthy methods is X.509 certificates. A new approach for increasing security by avoiding security by avoiding privacy violation using X.509 version 3 certificate private extensions is given and its corresponding private key in the smartcard. Finally comparison of this approach with Secure Electronic Transaction (SET) protocol has been done. Zhang and Wang have discussed how to enhance the security of payment gateway. They brought forward a solution foe enhancement of security which centers on fused based security solution of payment gateway which basically blends Secure Sockets Layer (SSL) and Secure Electronic Transaction (SET) and has showed from experiments that this technique has significantly enhanced the security of electronic payment gateways. Liu et al. deals with the security issues on Server-Side Credit-based Electronic Payments System. They worked on security of micro payment systems which are designed with lightweight security measures. They propose three architecture designs for server-side credit-based electronic payment systems to resist external attacks. For analyzing their performance and levels of security a simulation model has been built.

159 Proposed Model for Requirements of Epayment Gateways 4. PROPOSED MODEL We proposed a model of electronic payment gateway on the basis of requirements of an electronic payment gateway. Proposed system will facilitate the user with all his requirements related to security. This approach can provide a lot of benefits to those people who suffer from the security issues of payment gateway. By this they can have a secure transaction and they don t have threat regarding leakage of information. 4.1 Preliminaries Online customer A customer is an entity who will buy products by making payments in timely manner. Merchants A merchant is a seller who will receive payments made by customer. Banks Two banks are involved. 1. Client bank 2. Merchant bank Client bank Client bank holds client s bank account and validate customer during account registration. Merchant bank Merchant bank holds merchant bank account. It is responsible of management, fraud control etc.

Prof. Gopi Krishna and Dr. R. Siva Ram Prasad 160 Payment Gateway A payment gateway is connected to all customers, merchants and banks through Internet and responsible for the speed and reliability and security of all transactions that take place Fig. 1 Proposed Model There are five interfaces. 1. Customer Interface 2. Server (e-payment Gateway) Interface 3. Client Bank Interface 4. Merchant Bank Interface 5. Merchant Interface Online Customer will connect to e-payment gateway through Internet. Gateway will connect to the Bank and check whether its bank accounts are enough to buy the required product. Online customer can also visit Merchant s website through Gateway.

161 Proposed Model for Requirements of Epayment Gateways 4.2 Flow Diagram Flow diagram of proposed gateway is given below. Fig.2 Flow diagram of Proposed Gateway

Prof. Gopi Krishna and Dr. R. Siva Ram Prasad 162 4.3 Techniques and Algorithm Privacy: It is necessary to assure privacy in the payments like bank accounts. Naming: There should be a way of identifying the customer s bank accounts and the merchant bank accounts. Security: In gateways security should provide to protect data of transactions. Integrity: Data should be difficult to change. Confirmation: When transaction took place customer must have notification and merchant must have confirmation Confidentiality: Any third parties should not be able to access or view such payments. Settlement: Separate banking institutions must have a way of settling their accounts. If new user wants to do transaction then he/she should register himself/herself first through registration form then browse merchant website using epayment gateway. Select item and encrypt payment request and send it to Server. Server receives encrypted message from sender, decrypt message, read, encrypt it using its own keys and send it to Client bank. Client bank transfers the required amount to the merchant bank through secure network. After receiving the fund Merchant bank sends the payment capture response to merchant through epayment gateway

163 Proposed Model for Requirements of Epayment Gateways Algorithm of Client Client: Start and connect Start Customer browse merchant website If select Category then Go to Item list of selected category If Select Item Then Show detail of selected item If Want to buy selected item Then select Add to order form Else Go back to category If select add to order form Do AddToOrder SubCategoryId go to Order form and fill required fields like credit card No., expiry Date, and telephone no, Address Select Submit Else Continue shopping Else Cancel If select submit Display Authorization If Credit card no. Text is equal to Credit card no. display This Customer is Authorized From Bank.

Prof. Gopi Krishna and Dr. R. Siva Ram Prasad 164 Client can browse merchant s website. After selection of items he can send payment order to e-payment server after filling required fields e.g. Credit card no., expiry date etc. Algorithm of Payment gateway Payment gateway: Start connection If connected Receive payment message Else display Not Connected If receive payment message {Decrypt message Split and send it to different textboxes Add to database Sent it to Client bank} Else Cancel If client bank is sending message {Receive it Send it to merchant bank} Else wait If merchant bank is sending message {Receive it Send it to Merchant} else wait

165 Proposed Model for Requirements of Epayment Gateways Server receives payment order sent by clients, decrypt and encrypt that message and send it to Client bank. Client bank will send a payment education message to server and server will send it to Merchant Bank. Merchant bank will send an acknowledgment message to Server and server will send it to merchant. Algorithm of Client Bank Client Bank: Start connection If connected Receive payment message including client s info If client s info is present in database of bank Send message to server This customer is Authorized Else Send message This customer is not Authorized If customer is Authorized {Save payment request into database Deduct amount from Client bank Send that amount to Payment Gateway} Client bank receives payment message and verify client. Deduct amount from client bank and send that amount to payment gateway.

Prof. Gopi Krishna and Dr. R. Siva Ram Prasad 166 Algorithm of Merchant Bank Merchant Bank Start connection If connected Receive payment message including merchant account no. If merchant s account is present in database of bank {Receive payment Add payment to Merchant s account} Else Send message Invalid account no. Merchant bank verifies merchant, receives payment message from Client bank through payment server and add payment to Merchant s account. Algorithm of Merchant Merchant Start connection If connected {Make and update website If server is sending message Receive message and decrypt it} Else retry to connect

167 Proposed Model for Requirements of Epayment Gateways Merchant makes and updates website and receives acknowledgement messages from payment gateway. 5. CONCLUSION AND FUTURE WORK Electronic Payment Gateway today present is not very secure. The proposed payment architecture was also lacking the security factor. That proposed architecture is made secure by the implementation of secure electronic transaction methods. Because of this now only authentic customers can now buy products from merchant s site whose bank accounts is enough to buy the required product. At first it s checked if the customer is authorized one or not then the whole transaction takes place. The electronic payment gateway is made secure enough that any authorized customer can easily trust on it and fearlessly or confidently make payments over the Internet. 6. REFERENCES 1. http://www.usatoday.com/tech/news/2001/10/29/financial-networkssafety.htm accessed on 09 Dec 2010 (DATE) 2. http://iisdb.stanford.edu/docs/189/epayment_bin_tan 3. g.pdf accessed on 09 Dec 2010 4. Rosenberg, J., Schulzrinne, H., Camarillo, G., Johnston, A., Peterson, J., Sparks, R., Handley, M., Schooler, E. 2002. SIP: Session Initiation Protocol. RFC 3261 (June). 5. Aboba, B., Arkko, J., Harrington, D. 2000. Introduction to accounting management. 6. RFC 2975 (October).

Prof. Gopi Krishna and Dr. R. Siva Ram Prasad 168 7. M. M. Anderson: Electronic check architecture, Tech. Rep. Version 1.0.2, FSTC, September 1998. 8. Knud Böhle, Michael Rader, Ulrich Riehm 9. Institut für Technikfolgenabschätzung und 10. Systemanalyse: Electronic Payment Systems in European Countries Country 1999 11. Cavarretta F., de Silva J.: Market Overview of payments mechanisms for the Internet commerce, http://www.mba96.hbs.edu/fcavarretta/money.html 12. Computer Active: information can be browsed on http://www.computeractive.on.ca/cai/security/primer.html 13. Electronic Check: information can be browsed on http://www.fstc.org/projects/echeck/index.shtml 14. A.Tiwari, S. Sanyal, A. Abraham, J. Knapskog, and S. Sanyal, "A Multifactor Security Protocol for Wireless Payment-Secure Web Authentication Using Mobile Devices", IADIS International Conference Applied Computing, 2007, pp.160-167. 15. S. van, A. Odlyzko, and R. Rivest, T. Jones and D. Scot, "Does anyone really need micropayments", proceeding of the International Conference of Financial Cryptography, LNCS 2742, Springer, 2003, pp. 69-76.

2024 © businessdocbox.com Privacy Policy | Terms of Service | Feedback