Java Reference
In-Depth Information
to the nonavailability of skills on the existing system and vanishing nature of the currently used
proprietary systems, IT professionals, architects, and others at Panthera are gravitating toward an
open-source solution on an open-source server and operating system, as the cost of licensing for a
new operating system and Web server is also very expensive.
4.1.2.2 Database Server
he database server is another critical component in the current Panthera's e-commerce applica-
tion. he database utilized by the e-commerce application is also an out-of-date version with
limited support. Panthera's database system is a proprietary database system and has been plagued
with many issues. Although the database is a relational database, the proprietary extensions from
the vendor have impeded database-side scalability and extendibility for Panthera's e-commerce
application. Another related problem with the database is its incompatibility with the current/
most popular version of SQL standard. As a result, extending on the e-commerce application has
been very diicult and has impeded the database-side activities in terms of performance, search,
and other create, update, and delete (CRUD) operations. Moreover, the e-commerce applica-
tion vendor has indicated that the application has not been tested with a later version of the
database.
4.1.2.3 Email and Messaging Server
he current e-commerce Web application utilizes an email and messaging server for activities such
as registering a user account and sending invoices for successful transactions. his email and mes-
saging server is not able to handle the increasing number of transactions that are taking place on
the e-commerce application, and Panthera constantly inds itself battling with capacity constraints
on this server and emails being unsent to customers.
4.1.3 Importance of Security
We have previously discussed, while introducing the company, that Panthera has a need to estab-
lish a strong information security practice within the organization. he reasons for this impetus
for security are as follows:
◾
Current trends in security incidents among online merchants
◾
Security compliance and regulation
4.1.3.1 Security Incidents
Recently, another retailer using a similar application was hacked. Hackers broke into the e-com-
merce solution using a SQL injection attack and stole over 5000 usernames, passwords, and credit
card numbers. he application is vulnerable to several Web application vulnerabilities like cross-
site scripting and SQL injection. he retailer in question has a shaky future owing to the lax secu-
rity of the application. Besides, the application is inherently vulnerable to viruses and malware, as
the operating system and application components are highly vulnerable to viruses and malware.
Panthera is very concerned about the security of its customer information.
Search WWH ::
Custom Search