Java Reference
In-Depth Information
◾
Lack of support—security compliance
◾
Capacity issues
Integration issues
◾
4.1.1.1 Proprietary Solution
he initial e-commerce application developed by the vendor was a proprietary solution in the late
1990s. he vendor has developed the application using proprietary solutions and tools, thereby
ensuring that Panthera cannot make any changes to the code. Moreover, Panthera doesn't possess
the codebase for the existing solution and is unable to ensure maintenance and upgrades on the
existing application from the vendor.
4.1.1.2 Vendor Lock-In
he initial e-commerce application was developed by the vendor on a proprietary operating envi-
ronment, using proprietary tools, database, and ile formats, and the vendor has complete control
over the application code. he vendor used to charge Panthera for the licensing and maintenance
of the application. According to the licensing terms, Panthera was forced to approach the vendor
for changes, maintenance, and upgrades, and the cost for the same was prohibitively expensive.
Furthermore, the vendor was not in a position to deliver some functionality due to the limitations
and support on the proprietary tools and operating environment.
4.1.1.3 Security Vulnerabilities
Recently, another retailer using a similar application was hacked. Hackers were able to break into
the e-commerce solution. he retailer in question has a shaky future owing to the lax security of
the application. he application is also inherently vulnerable to viruses and malware, as the operat-
ing system and application components are highly vulnerable to viruses and malware. Panthera is
very concerned about the security of its customer information.
4.1.1.4 Lack of Support for Security Compliance
Panthera, being a large merchant, is required to comply with the Payment Card Industry Data
Security Standard commonly known as the PCI-DSS. Panthera's
acquiring bank
,
*
AmericoBanc,
has instructed Panthera to get compliant and certiied on the Payment Card Industry standards.
Panthera's current application does not support PCI compliance. Panthera must adhere to the PCI
standards or it risks heavy ines levied by the acquiring bank and the payment brands like Visa
and MasterCard.
4.1.1.5 Integration Issues
Panthera is using an enterprise-wide accounting and inventory management application, which
has been created for the end-to-end management of the inancial accounting, management
*
he acquiring bank is the bank or inancial institution that accepts payments on behalf of a merchant. For
instance, if the credit card terminal at a merchant retail outlet is provided by X Bank, then X Bank is the acquir-
ing bank for the merchant. A merchant could have several acquiring banks.
Search WWH ::
Custom Search