Presentation is loading. Please wait.

Presentation is loading. Please wait.

CMSC666 E-commerce Project Spring 2003 Quyin Fan Brian Brzezicki.

Similar presentations


Presentation on theme: "CMSC666 E-commerce Project Spring 2003 Quyin Fan Brian Brzezicki."— Presentation transcript:

1 CMSC666 E-commerce Project Spring 2003 Quyin Fan Brian Brzezicki

2 Motivation Technologies Architecture of solution Security and authentication Business Description Market & Profit Analysis Risks of business challenges Implementation Presentation Overview

3 This project is aimed at a small hobbyist who would like to make a secondary income building and selling objects which they have a passion and enjoyment for arcade-cabinets. Motivation

4 Apache web server is compiled with Processor- Specific Optimization to take advantage of the power of the new processor generation, giving it 5-30% more performance than any other Web Server. The main advantage of using the Apache web server is speed. Using the mod_php module, Apache can return CGI requests on faster than web servers that do not have mod_php technology. It takes advantage of powerful API interface. Apache provides a robust and commercial grade reference implementation of the HTTP protocol. Apache is the most widely used and trusted web server in use today with a market share of 62.57% (April 2003) which is more than twice that of the nearest competitor Apache is widely regarded as one of the most secure web servers Apache works well with the popular MySQL Its FREE !! Technologies-Why Apache

5 Technologies-why PHP PHP is now the most popular module for the Apache server and in total running on something like two million Web sites. Speed, stability, security and simplicity are some of the reasons why PHP is famous as a popular server side scripting language. Speed: not only the speed of execution is important, but also that the system doesn't slow down the rest of the machine. So it should not demand a lot of system resources. PHP integrates well with other software, especially under UNIX's, has a small footprint and when run as an Apache module is already loaded for use. Stability: its no good being fast if the system crashes every few thousand pages. No application is bug free, but having a community of PHP developers and users makes it much harder for bugs to survive for long. Security: PHP provides many levels of security which can be set in the.ini file to the desired level. Simplicity: programmers should be able to start being productive as soon as possible. With PHP, even HTML coders can start integrating PHP into their pages straight away. Programmers with previous experience of C, or even with Javascript can get up to speed very quickly. Other PHP advantages are that PHP will run on almost any platform. Using the same code base, PHP can be compiled and built on about 25 platforms, including most UNIXs, Windows(95/98/NT/2000) and Macs. PHP is similar to C. So anyone who has experience with a C-style language will soon understand PHP.

6 Technologies-why HTML Small file sizes Does not require expensive authoring tools Web space is inexpensive Does not require programming skills Once uploaded, provides Instant Publication Can be viewed on any computer with free web browsing software

7 Technologies-why MySQL Database licensing costs can be more than 70% of the cost web systems. But MySQL is inexpensive, as in free. MySQL is a mature, stable and robust database platform for most applications Extremely fast and scalable on reads (faster than most commercial DBs) Supported on multiple platforms (Solaris, Linux, Win32) Mature APIs for database application development Integrates well with PHP

8 Architecture of Solution Architecture of Solution (cont.) Database schema auth users orders item survey orderparts id sessionid userid username timestamp id sessionid userid username timestamp id username password name address1 address2 city state zip phone credittype creditnumber expiration id username password name address1 address2 city state zip phone credittype creditnumber expiration id userid timestamp discount id userid timestamp discount id orderid item quantity tracking shipdate id orderid item quantity tracking shipdate id name description price quantity monitortype genre controller link picture shipping id name description price quantity monitortype genre controller link picture shipping surveyID customerID gender education age income jobType homeOwner howOften cabinetsOwned favoriteGame genre characterName timePeriod surveyID customerID gender education age income jobType homeOwner howOften cabinetsOwned favoriteGame genre characterName timePeriod

9 Architecture of Solution Architecture of Solution (cont.) survey Id CustomerID Gender … users id username password name … orders id userid timestamp discount orderparts id orderid item … Item Id name description price … auth Id Sessionid Userid Username Timestamp

10 Architecture of Solution Architecture of Solution (cont.) Page function flow chart

11 Security & Authentication Uses encrypted cookies, with timeout values, and continual checks on the server. Similar to challenge/response 1.User sends username and password to server 2.Server verifies username and password 3.Servers chooses random encryption key and a word that only the server knows. Inserts sessionid, session key, plaintext, username, timeout value into a database 4.Server returns to client sessionid and cyphertext as cookies.

12 Security & Authentication Security & Authentication (cont.) 5.Each time client goes to new page, sends back sessionid and cyphertext. 6.On reciept servers looks up sessionid, if session id doesnt exist -> NOAUTH 7.If sessionid ok, check timestamp, if timestamp is too old -> NO AUTH 8.If timestamp ok, servername takes cyphertext, uses stored encryption key, validates that the stored plaintext matches the decryption, if decryption doesnt match -> NO AUTH 9.If decryption matches -> OK, update timestamp to current time 10.We could also change the plaintext, encryption key and cypertext at any transaction to increase security however we dont do this in this case

13 EC Category : B2C EC Model: E-shop Business functions: 1. E-payment 2. Shopping cart 3. Customer profiles 5. Promotion and survey 4. Security issues Business Description

14 Market Analysis Since 1998 there has been a huge interest in arcade cabinets from adults in the age range of who have now disposable income, and are trying to relive an very powerful and enjoyable experience from their youth. This trend can be seen by projects such as the MAME project and ebay where on a daily bases hundreds of arcade games and game parts (even such trivial things as game display marques) are auctioned off everyday. A few industrial vending companies have even jumped in the game such as Hanaho manufacturing, x-arcade, team-play etc.

15 Market Analysis Market Analysis (Continued) Although a few companies have made consumer arcade products, there are no companies that really focus on the home consumer, most just have a few side products for the home market.

16 Promotion – Use mail in rebate to bring in users, while maximizing profit. It is show that most people never send in mail in rebates. The mail in rebate is based on whether users did the site survey or not. Arcade-cabinets.com is aimed at people who generally have a lot of money to spend on their interests. It is very specifically focused, and there is not real price competition. The costs to actually produces the product is fairly low in comparison to the product price, since the assembly and electronics are outside the scope of the target audience. Profit Analysis

17 Profit Analysis Profit Analysis (continued) Profit margin is extremely high (>= 300%) whereas most retail is low profit margins (5- 20%) Example average cost of machine production –Cabinet = $ –Monitor = $ –Power components = $50.00 –Controllers = $50.00 –Game board = $20.00 Average Total Cost = $ Sales Cost Average $

18 Profit Analysis Profit Analysis (continued) There is cost of website maintains, etc. that needs to be factored in. Generally hosting costs are a reoccurring $ a month for a moderate hosting contract. So assuming at least 1 sale a month the hobbyist will still make a nice amount of extra income a month.

19 Risk of Business Delivery and handle fee will affect sale Only using credit card for payment Product model is not latest, it is targeted at a very specific audience, which are financially stable adult males between the ages of

20 challenges Problems with HTML compatibility between development platform (Mozilla) and demonstration platform (IE) Coming up with a resonably secure method for continous authentication Templates for pages.

21 Implementation Arcade-Cabinets website

22 Questions?


Download ppt "CMSC666 E-commerce Project Spring 2003 Quyin Fan Brian Brzezicki."

Similar presentations


Ads by Google