M AKE F ILE FOR P ROJECT - C HAPTER 6: I MPLEMENTATION AND D EMO OF THE S YSTEM

C HAPTER 6: I MPLEMENTATION AND D EMO OF THE S YSTEM

6.8 M AKE F ILE FOR P ROJECT

Along with the web services, some work has been done for POS/POI device for the smart cards. The tool which is developed at SecLab ICT KTH, called Project Configure Tool, which is used to create C project makefile. This tool is very easy to use and developer can input their files and

libraries, after successful compilation makefile is created which is further used for the next step. Init tools and its related process for further POI device are shown in the following figure.

As shown in Figure 18, there are different fields for input fields. Developer will provide the correct files and libraries paths in the respective field. After giving the input files, makefile is created and then loaded to the POS/POI device.

Figure 18: Init Tools for POI Devices

After successful compilation and creating makefile, the next step is to feed information in the POI device. This information is shown in Figure 19.

Figure 19: POI Device Information

In the above Figure 19, there is information about Merchant who is using the system, SAFE Account; option is available for SAFE Mobile, the port number by which the SAFE System and POI device are communicating with each other. As discussed earlier, there are two ways of communication between the SAFE System and POI device.

• GPRS • Wireless

It is shown above that system is communicating through wireless protocol, an uploading SDK and connecting to the SAFE System. Here in our research project we have worked as shown in Figure 20.

CHAPTER 7:

FUTURE WORK

In this research under the supervision of Professor Sead Muftic the whole team have started project from scratch. There are many components in this project: SEPA portal, SEPA Server, Mobile Wallet and SEPA web clients.

In this research we have developed web services for the web clients in SEPA using Secure Cloud environment. Client enters in the SEPA web portal and, after registration and opening bank account, he/she can use banking services e.g (payment, transaction, conversion). These services are developed at the basic level. Some security aspects should be provided in the future work. The currency conversion should be converted to online exchange, where the client can get the updated rates from the currency exchange rates. Currently we have connected the rates with the databases.

The second most important future work is for smart cards where they will be used with POI devices. The POI device is connected with the SAFE system, when a user swaps a card. The POI device will communicate with the SAFE System and card information shall be accessed. User will be able to check and see his account, credit/debit card information, issuer, amount in the bank account, 16 digit card number, user name, date of issue and expiry etc on the device screen. Future work in this project is all about components SEPA parts (SEPA Portal, SEPA Banking Web servers, Web clients and POI Application for smart cards should be integrated in one SEPA banking application and shall be implemented in the cloud environment.

References

[1] Shortcut to SEPA, “Take Payments to the next Level”, EPC055-09 version 3.0, European Payments Council (AISBL), Updated Edition February 2012, www.epc-cep.eu

[2] Feng Zhang, “Secure Mobile Service-Oriented Architecture”. Doctoral Thesis, School of Information, and Communication Technology (ICT), Royal Institute of Technology (KTH) Stockholm, Sweden June 2012.

[3] European Central Bank, 2006 “The Single Euro Payment Area. An Integrated Retail Payment Market” ISBN 92-899-0034-2

[4] European Commission, The EU single Market”

http://ec.europa.eu/internal_market/payments/sepa/”Last accessed Sept 16, 2012

[5] Secure Single Euro Payment Area banking, http://www.skb.si/en/corporate- banking/payment-transactions/sepa, Last accessed Sept 25, 2012

[6] European Central Bank Euro system, “Single Euro Payment Area (SEPA) Seventh Progress Report, beyond Theory into Practice”, October 2010 “. ISBN 978-92-899-0783-5

[7] European Central Bank, Euro system,

http://www.ecb.europa.eu/paym/sepa/about/indicators/html/index.en.html, Last Accessed

October 14, 2012

[8] C.R kothari , “Research Methodology Methods and Techniques”, Second Edition Revised 2004, ISBN: 81- 224-1522-9, http://books.google.se/books?hl=en&lr=&id=8c6gkbKi- F4C&oi=fnd&pg=PR7&dq=research+methodology+definition&ots=iGkzpTObmM&sig=-zzQpj5l- 8ypSxzIQM28p9KzW_8&redir_esc=y#v=onepage&q=research%20methodology%20definition&f =false

[9] Jan Van Den Akker Chapter “Principles and Methods of Development Research”, University of Twente, Netherlands

[10] Peter Mell, Timothy Grance, “NIST definition of Cloud Computing” Recommendation of National Institute of Standards and Technology, NIST US Department of Commerce, NIST Special Publication 800-145

[11] Andrew Moore,” Cloud computing a look before you leap” White Paper by Computer Weekly (CW+)

[12] Jianyong Chen, Yang Wang, and Xiaomin Wang,”On-Demand Security Architecture for Cloud Computing”, IEEE Computer Society July- 2012, 0018-9162 IEEE

[13] Cloud Computing “Introduction to Cloud Computing Architecture” ,White Paper by Sun Microsystems, 1st Edition, June 2009

[14] Ulrich Lampe, Alexander Müller, Olga Wenge and Ralf Schaarschmid, “Cloud Computing in the Financial Industry- A road paved with Security Pitfalls”. In Proceeedings of the 18th Americas Conference on Information Systems (AMSICS-2012), Associations of Information Systems, August 2012.

[15] Security Concerns in Cloud Banking,

http://www.computerweekly.com/opinion/Why-banks-are-wary-of-public-clouds, Last Accessed , November 21 2012

[16] Wayne Jansen and Timothy Grance, “Guidelines on Security and Privacy in Public Cloud Computing”, National Institute of Standards and Technology (NIST), Special Publication 800-144, December 2011

[17] Mr. Salman, SEPA Financial Servers“Security for SEPA Banking Servers in A Cloud

Environment”, Master Thesis by Salman, ICT KTH Stockholm Sweden, December 2012

[18] Muhammad,Secure SEPA Mobile Web Wallet,”Secure SEPA Mobile Banking and

Web Wallet”, Master Thesis, ICT KTH Stockholm Sweden, December 2012

[19] Hafiz Adnan Ejaz, “Secure Administration of SEPA Servers in a Cloud Environment“ , Master Thesis in Information and Communications System, ICT KTH November 2012. [20] Java Server Pages, http://docs.oracle.com/javaee/5/tutorial/doc/bnagy.html. Last accessed on December 6, 2012

[21] Content Management System, “Crash Course for Content Management”,

http://www.vasont.com/resources/what-is-content-management.html, Last accessed on December 6, 2012

[22] Eclipse, http://www.eclipse.org/org/, Last accessed December 7,2012 [23] InitTools.exe, develpoed at Security Lab (SecLab), ICT KTH, Sweden [24] SEPA Cards Standardisation (SCS) “Volume”, Book of Requirements, ‘’

Payments and Withdrwals with Cards in SEPA: Applicable Standardsand Certification Process’’ , Version 5.5, EPC020-08, June 01, 2011

[25] EMV Specifications, http://www.emvco.com/specifications.aspx?id=20, Last accessed on December 9,2012

[26] SEPA Cards Standardisation (SCS) “Volume”, Book of Requirements, ‘’

Payments and Withdrwals with Cards in SEPA: Applicable Standards and Certification Process’’ , Version 5.5, EPC020-08, June 01, 2011, European Payments Council, Brussels. [27] Project Configure Tool for makefile.exe, Developed at SecLab, ICT, KTH

In document SEPA Clients in A Secure Cloud Banking Environment IKRAM RAHIM. Master s Degree Project Stockholm, Sweden Master Thesis in Communication Systems (Page 44-52)