Presentation is loading. Please wait.

Presentation is loading. Please wait.

Use of Smart Card and Patron API in CUHK Libraries

Published by Modified over 8 years ago

Similar presentations

Presentation on theme: "Use of Smart Card and Patron API in CUHK Libraries"— Presentation transcript:

1 Use of Smart Card and Patron API in CUHK Libraries
香港中文大學圖書館系統 University Library System The Chinese University of Hong Kong Use of Smart Card and Patron API in CUHK Libraries Paul Lau Ernest Yik Kevin Leung Dec 10, 2001

2 A story about how Grace uses our library services

3 University Library

4 Turnstile

5 CU Link Card

6 Turnstile

7 PC Logon

8 PC

9 AVM

10 Photocopy Card

11 AVM

12

13

14

15

16 Check Out

17 Check Out

18 Library Proxy

19 How we use Smart Card?

20 Use of Smart Card Turnstile PC Logon Add-value Machine Check-out

21 How we use Patron API?

22 Use of Patron API PC Logon Add-value Machine Library Proxy

23 Smart Card in CUHK Libraries

24 Family of Smart Card in CUHK Libraries
CU Link Card Alumni Card Faculty Copying Card Copying/Printing Card

25 CU Link CUHK and Hang Seng Bank jointly launch the CU Link as the university identity card starting from the academic year

26 CU Link CU Link is designed to be an all-in-one-card for
identification access control Mondex stored-value ATM banking transactions

27 CU Link The card contains two machine-readable elements:
a microprocessor chip for storing personal information and supporting Mondex, and a magnetic stripe for ATM access.

28 Library Smart Card Microprocessor Card with 2K memory
Multi-application card for payment and identification Secure transaction management for e-purse application

29 What is Patron API? Offer patron information and PIN verification
Based on HTTP / HTML Limit network access by host / IP

30 PatronAPI request & reply (1)
Request patron information : Reply : <HTML><BODY> P TYPE[p47]=1<BR> CUR CHKOUT[p50]=2<BR> BORROW ID[pb]=991234<BR> </BODY></HTML> or "Requested record not found"

31 PatronAPI request & reply (2)
PIN verification : Reply : <HTML><BODY> RETCOD=0<BR> </BODY></HTML> or "Invalid patron PIN", "Requested record not found"

32 Library Proxy For off-campus access to electronic resources
Squid web proxy cache Authentication : Patron API + authentication program

33 PatronAPI and authentication
Gateway between application & Patron API Retrieve patron record from Patron API Check block status, exp date, patron type and PIN (including records without PIN) Reply to application

34 Authentication program
A small Perl script Works with Squid & Apache Server for Squid : read one line "USERNAME PASSWORD", output "OK" or "ERR" for Apache : read two lines "USERNAME" and "PASSWORD", exit(0) or exit(1)

35 Smart Card logon system in C.U.H.K.
There are four main elements Smart Card Smart Card logon client Smart Card logon server Innopac Server with Patron API.

36 Why Smart Card ? Hardware token to improve the security level
E-purse application for network printing.

37 Why Patron API ? Single Point of patron authorization
Reduces the cost of user account management Single account & password

38 Why smart card logon server ?

39 Smart card logon system without logon server
User insert his library smart card to the public PC Type in his password User information sent to the Patron API server Patron API server reply to the public PC

40 Problems Unencrypted user name & password are transmitted over the network. All the smart card logon PC can get the access ‘dump’ function in Patron API

41 How CUHK solve the problems?

42 Smart card logon system with logon server
User insert his library smart card to the public PC Type in his password Encrypted user information sent to the logon server Logon server decrypted the user information and sent it to the Patron API server. Logon server redirect the Patron API reply to the public PC

43 Problem solved Encrypted the user name and password before transmitted over the network Only the Logon Server can access the Patron API functions.

44 More..

45 Business logic and rules
Example : supports different kind of Library smart card logon Normal user (CULink card or library card holder) Smart Card + Password Department user (Department Card holder) Smart Card only Any User with Printing/Copying card Smart Card + Borrower id + Password

46 Audit Trail Monthly Report

47 Others.. Server redundancy and load balancing.
Replaceable authentication modules. More ..

48 Summary - Patron API Single Point of patron authorization
Single account & password in library Simplifies the implementation and management in the authentication for other library applications and workstations. Reduces the cost of managing those user account.

49 Thank You

Download ppt "Use of Smart Card and Patron API in CUHK Libraries"

Similar presentations

GCSE ICT By the end of this session, you will be able to: Explain main features of ATM machines Identify features of credit cards, debit cards, smart cards.

GCSE ICT By the end of this session, you will be able to: Explain main features of ATM machines Identify features of credit cards, debit cards, smart cards.
Lecture 6 User Authentication (cont)

Lecture 6 User Authentication (cont)
ELAG Trondheim 2004 1 Distributed Access Control - BIBSYS and the FEIDE solution Sigbjørn Holmslet, BIBSYS, Norway Ingrid Melve, UNINET, Norway.

ELAG Trondheim Distributed Access Control - BIBSYS and the FEIDE solution Sigbjørn Holmslet, BIBSYS, Norway Ingrid Melve, UNINET, Norway.
© Southampton City Council Sean Dawtry – Southampton City Council The Southampton Pathfinder for Smart Cards in public services.

© Southampton City Council Sean Dawtry – Southampton City Council The Southampton Pathfinder for Smart Cards in public services.
University Library System, CUHK Chinese Name Authority Portal - One Stop Search 1 Chinese Name Authority Portal 香港中文大學圖書館系統 University Library System The.

University Library System, CUHK Chinese Name Authority Portal - One Stop Search 1 Chinese Name Authority Portal 香港中文大學圖書館系統 University Library System The.
Controlling Access to Resources for Walk-In Users 14 September 2006 Rod Crowley Systems Team Leader Leeds University Library.

Controlling Access to Resources for Walk-In Users 14 September 2006 Rod Crowley Systems Team Leader Leeds University Library.
ICT at Work Banking and Finance.

ICT at Work Banking and Finance.
1.7.2.G1 © Family Economics & Financial Education – Revised May 2005 – Financial Institutions Unit – Electronic Banking Funded by a grant from Take Charge.

1.7.2.G1 © Family Economics & Financial Education – Revised May 2005 – Financial Institutions Unit – Electronic Banking Funded by a grant from Take Charge.
OCS Library Systems TIMED ACCESS GATEKEEPER ON-LINE PRINT VENDING.

OCS Library Systems TIMED ACCESS GATEKEEPER ON-LINE PRINT VENDING.
1 Pertemuan 12 Authentication, Encryption, Digital Payments, and Digital Money Matakuliah: M0284/Teknologi & Infrastruktur E-Business Tahun: 2005 Versi:

1 Pertemuan 12 Authentication, Encryption, Digital Payments, and Digital Money Matakuliah: M0284/Teknologi & Infrastruktur E-Business Tahun: 2005 Versi:
Debit Card Plastic card that looks like a credit card

Debit Card Plastic card that looks like a credit card
Online Banking Fraud Prevention Recommendations and Best Practices This document provides you with fraud prevention best practices that every employee.

Online Banking Fraud Prevention Recommendations and Best Practices This document provides you with fraud prevention best practices that every employee.
RFID & III API MENA IUG 3rd Annual Meeting November 18 – 19, 2008 American University of Sharjah United Arab Emirates Huguette Yaghmour Director of Library.

RFID & III API MENA IUG 3rd Annual Meeting November 18 – 19, 2008 American University of Sharjah United Arab Emirates Huguette Yaghmour Director of Library.
Submitted by: Rahul Rastogi, CS Department.  Introduction  What is a smart card?  Better than magnetic stripe card.  Technology What’s in a card?

Submitted by: Rahul Rastogi, CS Department.  Introduction  What is a smart card?  Better than magnetic stripe card.  Technology What’s in a card?
FIT3105 Smart card based authentication and identity management Lecture 4.

FIT3105 Smart card based authentication and identity management Lecture 4.
香港中文大學圖書館系統 University Library System The Chinese University of Hong Kong Power up your browser: an example of using LibX at CUHK Libraries Kevin Leung.

香港中文大學圖書館系統 University Library System The Chinese University of Hong Kong Power up your browser: an example of using LibX at CUHK Libraries Kevin Leung.
2009/10 Library Orientation Master Programmes (MEd / MA)

2009/10 Library Orientation Master Programmes (MEd / MA)
1 Dec. 2004 The Hong Kong Institute of Education Library Integrating Innopac with HKIEd “Portal” Environment Ivan Chan The Hong Kong Institute of Education.

1 Dec The Hong Kong Institute of Education Library Integrating Innopac with HKIEd “Portal” Environment Ivan Chan The Hong Kong Institute of Education.
1 6th HKIUG Annual Meeting, Lingnan University, 9 Dec., 2005 Li Yiu On Assistant Librarian (Systems) Hong Kong Baptist University Library.

1 6th HKIUG Annual Meeting, Lingnan University, 9 Dec., 2005 Li Yiu On Assistant Librarian (Systems) Hong Kong Baptist University Library.
香港中文大學圖書館系統 University Library System The Chinese University of Hong Kong Promoting Information Literacy Skills through Web-based Instruction: The Chinese.

香港中文大學圖書館系統 University Library System The Chinese University of Hong Kong Promoting Information Literacy Skills through Web-based Instruction: The Chinese.

Similar presentations

Ads by Google