Card payment implementation guide for ASP.NET and PHP websites
Hutchinson, Alexander (2012)
Julkaisun pysyvä osoite on
https://urn.fi/URN:NBN:fi:amk-2012091213608
https://urn.fi/URN:NBN:fi:amk-2012091213608
Tiivistelmä
E-commerce is growing by around 13% year on year, but more than 50% of orders on e-commerce sites are still abandonded prior to payment. This is due to a number of factors, such as consumer trust, and issues of site usability. This study tackles both factors by providing a guide for web developers to be able to implement effective card payment solutions.
The guide firstly explains about the process of card payments, and explains about the importance of the Payment Gateway (a third party handling card payments on behlf of online merchants). Payment gateway integrations generally fall into two categories, hosted solutions (requiring the e-commerce site user to be transferred to the payment gateway site) and API’s (requiring the handling of credit card details by the e-commerce site) This study focuses on the later due its complexity and important security considerations.
The guide gives ASP.NET and PHP developers usable code examples, showing how to implement a basic payment page, and explains in depth about the importance of validating user input, to reduce security threats, and about aspects of checkout page usablity. It also proposes the importance of informing consumers about SLL to increase awareness and develop trust, further preventing security problems, and ultimtaly loss of sales. Concerns about loss of personal data, and card fraud are the main concerns for consumers. The guide explains that SSL is the main technology used to secure the transfer of personal information accross the internet, and is routintely used in e-commerce, in accordance with security guidelines.
This guide then explains one aspect of maximising online sales while keeping consumers safe through explaining the technical implementation for accepting card payments for ASP.NET and PHP websites hosted on IIS for Windows Server, and Apache Web Server.
The guide firstly explains about the process of card payments, and explains about the importance of the Payment Gateway (a third party handling card payments on behlf of online merchants). Payment gateway integrations generally fall into two categories, hosted solutions (requiring the e-commerce site user to be transferred to the payment gateway site) and API’s (requiring the handling of credit card details by the e-commerce site) This study focuses on the later due its complexity and important security considerations.
The guide gives ASP.NET and PHP developers usable code examples, showing how to implement a basic payment page, and explains in depth about the importance of validating user input, to reduce security threats, and about aspects of checkout page usablity. It also proposes the importance of informing consumers about SLL to increase awareness and develop trust, further preventing security problems, and ultimtaly loss of sales. Concerns about loss of personal data, and card fraud are the main concerns for consumers. The guide explains that SSL is the main technology used to secure the transfer of personal information accross the internet, and is routintely used in e-commerce, in accordance with security guidelines.
This guide then explains one aspect of maximising online sales while keeping consumers safe through explaining the technical implementation for accepting card payments for ASP.NET and PHP websites hosted on IIS for Windows Server, and Apache Web Server.