Use of Smart Card and Patron API in CUHK Libraries

Slides:

Advertisements

Similar presentations

GCSE ICT By the end of this session, you will be able to: Explain main features of ATM machines Identify features of credit cards, debit cards, smart cards.

Advertisements

Lecture 6 User Authentication (cont)

ELAG Trondheim Distributed Access Control - BIBSYS and the FEIDE solution Sigbjørn Holmslet, BIBSYS, Norway Ingrid Melve, UNINET, Norway.

© Southampton City Council Sean Dawtry – Southampton City Council The Southampton Pathfinder for Smart Cards in public services.

University Library System, CUHK Chinese Name Authority Portal - One Stop Search 1 Chinese Name Authority Portal 香港中文大學圖書館系統 University Library System The.

Controlling Access to Resources for Walk-In Users 14 September 2006 Rod Crowley Systems Team Leader Leeds University Library.

ICT at Work Banking and Finance.

1.7.2.G1 © Family Economics & Financial Education – Revised May 2005 – Financial Institutions Unit – Electronic Banking Funded by a grant from Take Charge.

OCS Library Systems TIMED ACCESS GATEKEEPER ON-LINE PRINT VENDING.

1 Pertemuan 12 Authentication, Encryption, Digital Payments, and Digital Money Matakuliah: M0284/Teknologi & Infrastruktur E-Business Tahun: 2005 Versi:

Debit Card Plastic card that looks like a credit card

Online Banking Fraud Prevention Recommendations and Best Practices This document provides you with fraud prevention best practices that every employee.

RFID & III API MENA IUG 3rd Annual Meeting November 18 – 19, 2008 American University of Sharjah United Arab Emirates Huguette Yaghmour Director of Library.

Submitted by: Rahul Rastogi, CS Department.  Introduction  What is a smart card?  Better than magnetic stripe card.  Technology What’s in a card?

FIT3105 Smart card based authentication and identity management Lecture 4.

香港中文大學圖書館系統 University Library System The Chinese University of Hong Kong Power up your browser: an example of using LibX at CUHK Libraries Kevin Leung.

2009/10 Library Orientation Master Programmes (MEd / MA)

1 Dec The Hong Kong Institute of Education Library Integrating Innopac with HKIEd “Portal” Environment Ivan Chan The Hong Kong Institute of Education.

1 6th HKIUG Annual Meeting, Lingnan University, 9 Dec., 2005 Li Yiu On Assistant Librarian (Systems) Hong Kong Baptist University Library.

香港中文大學圖書館系統 University Library System The Chinese University of Hong Kong Promoting Information Literacy Skills through Web-based Instruction: The Chinese.

Firewalling Proxy Server for Innopac

The Chinese University of Hong Kong Digital Library Initiatives – CUHK Library For the 3 rd HKIUG Annual Meeting December 10, 2002 香港中文大學圖書館系統 University.

ASP.NET 2.0 Chapter 6 Securing the ASP.NET Application.

Alcatel Identity Server Alcatel SEL AG. Alcatel Identity Server — 2 All rights reserved © 2004, Alcatel What is an Identity Provider?  

1 Using Account Status Web Service to design value-added services for your online applications Ivan Chan Media & Systems Services 8th Annual HKIUG Meeting.

Credit card and Debit card Working and Management.

By: Piyumi Peiris 11 EDO. Swipe cards are a common type of security device used by many people. They are usually a business-card-sized plastic card with.

WELCOME TO THE SEMINAR ON Money Pad, The Future Wallet

DEBIT CARD, CREDIT CARD & SMART CARD

Chapter 19 Security Integrity Security Control –computer-based –non-computer-based PC security DBMS and Web security Risk Analysis Data protection and.

Hsu-Chen Cheng, *Wen-Wei Liao, Tian-Yow Chi, Siao-Yun Wei

University of Kentucky Proxy Service Presentation By Kelly Vickery

© NeoAccel, Inc. TWO FACTOR AUTHENTICATION Corporate Presentation.

E-PAYMENT METHODS 1. FACT OR FICTION ??? VISA processed 15,200 credit card transactions per minute. The first ATM machine was developed in 1939?. Luther.

Welcome To Follow along with the Demonstrations go to

1.  We shall begin with 2.

Database Application Security Models Database Application Security Models 1.

Introduction of SmartCard Project Presented by: Cora Lai July 26, 2000.

University Library System, CUHK 香港中文大學圖書館系統 University Library System The Chinese University of Hong Kong Simple, Flexible and Informative - Personalised.

NSO 2012 EXPLORING LIBRARY RESOURCES & SERVICES Lingnan University Library Sept /services/workshops/handout/nso2012.ppt.

ICT and Banks Banks use mainframe computers to maintain customer accounts. They store a record of each customer’s withdrawals and deposits. Each bank mainframe.

香港大學圖書館 Upstream Content Management in an ILS Downstream Integrated Access, Authentication, Portals & Statistics - Dr. Ku Kam-ming - David Palmer.

28 th International Traffic Records Forum Biometrics/SmartCard Workshop 28 th International Traffic Records Forum August 4, 2002 Orlando, Florida.

McLean HIGHER COMPUTER NETWORKING Lesson 8 E-Commerce Explanation of ISP Description of E-commerce Description of E-sales.

Information System Audit : © South-Asian Management Technologies Foundation Chapter 10 Case Study: Conducting an Information Systems Audit.

OCS Systems On-Line Photocopy Vending On-Line Computer Print Vending Student ID card / ABA compatible.

Data Acquisition in a PACS Weina Ma Sep 24 th, 2013.

ADVANTAGES OF DATA BASE MANAGEMENT SYSTEM. TO BE DICUSSED... Advantages of Database Management System  Controlling Data RedundancyControlling Data Redundancy.

Belgian EID Card 15/12/2004 Derette Willy eID program manager.

2011/12 Library Orientation Professional Development Programmes.

SMART CARDS Presented By Jishnu Sasikumar Reg No : 09 PG 142.

2010/11 Library Orientation Professional Development Programmes.

Securing Online Banking By Ben White CS 591. Who Federal Financial Institutions Examination Council What To authenticate the identity of retail and commercial.

The overview How the open market works. Players and Bodies  The main players are –The component supplier  Document  Binary –The authorized supplier.

1.7.2.G1 © Family Economics & Financial Education – Revised May 2005 – Financial Institutions Unit – Electronic Banking Funded by a grant from Take Charge.

Vijay V Vijayakumar.  Implementations  Server Side Security  Transmission Security  Client Side Security  ATM’s.

Credit Card. Basic Knowledge about Credit Card A Credit card is a plastic card that provides a cardholder electronic access to his / her bank account.

SSH. 2 SSH – Secure Shell SSH is a cryptographic protocol – Implemented in software originally for remote login applications – One most popular software.

Access Account Activation and Electronic Signature Web Application.

Banking application development. Abstract In recent years, the banking and financial sector has become one of the most vibrant sector in the Indian economy.

Electronic Banking & Security Electronic Banking & Security.

Presented by Deepak Varghese Reg No: Introduction Application S/W for server load balancing Many client requests make server congestion Distribute.

Introduction What would our society be like now if we did not have ATm’s? Not able to access money when we urgently want it. You will have to go to the.

AGENDA Introduction Kind of information smart card contain

SFS-HTTP: Securing the Web with Self-Certifying URLs

SECURITY FEATURES OF ATM

Radius, LDAP, Radius used in Authenticating Users

How An ATM Work's Prepaid by, kakani Dinesh.

Authentication and Access:

E-cert (Digital Certificate)

Presentation transcript:

Use of Smart Card and Patron API in CUHK Libraries 香港中文大學圖書館系統 University Library System The Chinese University of Hong Kong Use of Smart Card and Patron API in CUHK Libraries Paul Lau Ernest Yik Kevin Leung Dec 10, 2001

A story about how Grace uses our library services

University Library

Turnstile

CU Link Card

Turnstile

PC Logon

PC

AVM

Photocopy Card

AVM

Check Out

Check Out

Library Proxy

How we use Smart Card?

Use of Smart Card Turnstile PC Logon Add-value Machine Check-out

How we use Patron API?

Use of Patron API PC Logon Add-value Machine Library Proxy

Smart Card in CUHK Libraries

Family of Smart Card in CUHK Libraries CU Link Card Alumni Card Faculty Copying Card Copying/Printing Card

CU Link CUHK and Hang Seng Bank jointly launch the CU Link as the university identity card starting from the academic year 1999-2000.

CU Link CU Link is designed to be an all-in-one-card for identification access control Mondex stored-value ATM banking transactions

CU Link The card contains two machine-readable elements: a microprocessor chip for storing personal information and supporting Mondex, and a magnetic stripe for ATM access.

Library Smart Card Microprocessor Card with 2K memory Multi-application card for payment and identification Secure transaction management for e-purse application

What is Patron API? Offer patron information and PIN verification Based on HTTP / HTML Limit network access by host / IP

PatronAPI request & reply (1) Request patron information : http://opac.host:4500/PATRONAPI/991234/dump Reply : <HTML><BODY> P TYPE[p47]=1<BR> CUR CHKOUT[p50]=2<BR> BORROW ID[pb]=991234<BR> </BODY></HTML> or "Requested record not found"

PatronAPI request & reply (2) PIN verification : http://host:4500/PATRONAPI/991234/MYPIN/pintest Reply : <HTML><BODY> RETCOD=0<BR> </BODY></HTML> or "Invalid patron PIN", "Requested record not found"

Library Proxy For off-campus access to electronic resources Squid web proxy cache Authentication : Patron API + authentication program

PatronAPI and authentication Gateway between application & Patron API Retrieve patron record from Patron API Check block status, exp date, patron type and PIN (including records without PIN) Reply to application

Authentication program A small Perl script Works with Squid & Apache Server for Squid : read one line "USERNAME PASSWORD", output "OK" or "ERR" for Apache : read two lines "USERNAME" and "PASSWORD", exit(0) or exit(1)

Smart Card logon system in C.U.H.K. There are four main elements Smart Card Smart Card logon client Smart Card logon server Innopac Server with Patron API.

Why Smart Card ? Hardware token to improve the security level E-purse application for network printing.

Why Patron API ? Single Point of patron authorization Reduces the cost of user account management Single account & password

Why smart card logon server ?

Smart card logon system without logon server User insert his library smart card to the public PC Type in his password User information “http://Innopac.cuhk.edu.hk/logon%myusername@mypassword” sent to the Patron API server Patron API server reply to the public PC

Problems Unencrypted user name & password are transmitted over the network. All the smart card logon PC can get the access ‘dump’ function in Patron API

How CUHK solve the problems?

Smart card logon system with logon server User insert his library smart card to the public PC Type in his password Encrypted user information “http://logon.cuhk.edu.hk/logon%546864678$@56569009gh” sent to the logon server Logon server decrypted the user information and sent it to the Patron API server. Logon server redirect the Patron API reply to the public PC

Problem solved Encrypted the user name and password before transmitted over the network Only the Logon Server can access the Patron API functions.

More..

Business logic and rules Example : supports different kind of Library smart card logon Normal user (CULink card or library card holder) Smart Card + Password Department user (Department Card holder) Smart Card only Any User with Printing/Copying card Smart Card + Borrower id + Password

Audit Trail Monthly Report

Others.. Server redundancy and load balancing. Replaceable authentication modules. More ..

Summary - Patron API Single Point of patron authorization Single account & password in library Simplifies the implementation and management in the authentication for other library applications and workstations. Reduces the cost of managing those user account.

Thank You