CrazyEngineers Archive
Old, but evergreen and popular discussions on CrazyEngineers, presented to you in read-only mode.
@Manashree Thokal • 16 Jul, 2012 • 1 like
The idea of this project is to develop a website that can be used for internet banking.

Abstract:

The website created should be useful for customers for online transactions. Authorized users for particular bank can use this by providing valid user ID and password.

The website must provide following banking facilities-
  • Viewing Statements
  • Deposit
  • Fund Transder
  • Request for cheque book, passbook, etc
  • Balance Enquiry, etc.
Requirements:
  • PHP
  • HTTP Server
@Rohan Bagchi • 30 Oct, 2012 • 1 like How do you plan to handle the security?
@Kaustubh Katdare • 31 Oct, 2012 I don't see it as an issue to be considered. There are several ways - one may use HTTPS for secure transactions and follow the best practises in coding. That should be enough for a minor project I guess.
@Rohan Bagchi • 31 Oct, 2012 Banking project should be considered tricky enough. From personal experience I have known people who build security loopholes which finally result in breakage of the chain of control. HTTPS is only one side of the picture. Don't you think, admin?
@Kaustubh Katdare • 31 Oct, 2012 Well, actual security implementation would be another big project in itself. I'm not denying that any project that involves money transaction or stores user's information needs to be highly secure. Plus security is a continual work and it's not a 'do once and forget'.

I agree that banking projects are tricky. Even a leading private bank in India was found to be storing user's details without any security layer. It was exposed and it took over a month for the bank to really fix that issue.
@Rohan Bagchi • 31 Oct, 2012
The_Big_K
Well, actual security implementation would be another big project in itself. I'm not denying that any project that involves money transaction or stores user's information needs to be highly secure. Plus security is a continual work and it's not a 'do once and forget'.

I agree that banking projects are tricky. Even a leading private bank in India was found to be storing user's details without any security layer. It was exposed and it took over a month for the bank to really fix that issue.
Indeed admin. Liked the "Plus security is a continual work and it's not a 'do once and forget'".
I learnt it through similar tough examples that databases with extra-sensitive information like passwords must be one-way-hashed [my personal choice is an arcane combination of md5 and SHA1, returned to the main through a member function].
4k views

Related Posts

@Kaustubh Katdare · Sep 30, 2015

Since its establishment back in 1962, the Indian Space Research Organisation (ISRO) has come a long way to establish itself as a world leader in space exploration. With all its...
3.8k views

@hareesh ce · Mar 20, 2012

hey guys, plz let me get out of the confusion, how the load is distributed from slabs to beam and in what proportions??????? for the right block of the building...
9.2k views

@safiajen0055 · Dec 13, 2012

Hello all, I want some of the good author books on following subjects (with easily understandable language) Network Analysis Analog Electronics Field Theory Mathematics-IV
4k views

@Neha · Aug 2, 2006

How can this topic be left undiscussed in CE...The most important decision of our life...what waz that that made u opt B.Tech..whether it waz ur own decision or maybe ur...
9k views

@avm · Jan 30, 2009

We have heard of exciting current in electrical machines like transformers, alternators. What is actually this exciting current..........
3.8k views