1
Proposed Solution
  • The solution proposed is to use XML technology to represent the data for transfer between UMSL and Secure Pay. This will ensure that UMSL’s J2EE based web application which uses the MS Access DB and  Secure Pay’s web service which uses the Oracle DB, can continue to have their own DB representation for the credit card information, yet,  can communicate using a common XML based data structure.
  • For security, a symmetric key encryption mechanism is proposed. The idea is that UMSL's web application encrypts the xml file containing student's credit card information and sends it to Secure Pay. Secure Pay's web application decrypts the credit card information at the other end and validates.

 

  • Proposed Software

     

    • Tomcat 4.1.27 web app server - host UMSL as well as Secure Pay web applications
    • Struts 1.1 for MVC Framework - UMSL web application
    • Apache Ant 1.5.3.1 for compiling and building web application deployment files
    • j2sdk1.4.1_03 - Java Run Time Environment
    • MS Access DB - host UMSL and Secure Pay databases
    • JavaTM Cryptography Extension (JCE) 1.2.2 - provides a framework and implementations for encryption, key generation and key agreement, and Message Authentication Code (MAC) algorithms. Support for encryption includes symmetric, asymmetric, block, and stream ciphers.
    • The Java Web Services Developer Pack 1.3(Java WSDP 1.3) is a free integrated toolkit that allows Java developers to build and test XML applications, Web services, and Web applications with the latest Web services technologies and standards implementations

      The Java Web Services Developer Pack v1.3 includes the following:

      • JavaServer Faces (JSF) v1.0 EA4
      • XML and Web Services Security v1.0 EA2
      • Java Architecture for XML Binding (JAXB) v1.0.2 FCS
      • Java API for XML Processing (JAXP) v1.2.4 FCS
      • Java API for XML Registries (JAXR) v1.0.5 FCS
      • Java API for XML-based RPC (JAX-RPC) v1.1 FCS
      • SOAP with Attachments API for Java (SAAJ) v1.2 FCS
      • JavaServer Pages Standard Tag Library (JSTL) v1.1 EA
      • Java WSDP Registry Server v1.0_06 FCS
      • Ant Build Tool 1.5.4 FCS
      • Apache Tomcat v5.0 EA development container
      • WS-I Supply Chain Management Sample Application 1.0 FCS

     

  • Acknowledgement

        Though , I affirm that the project proposal and implementation is my own work, I feel obliged to acknowledge the fact that I  did use resources from the web - tutorials and code for to the project. I have provided references that I used  or  borrowed from , where applicable.