Fermé

silver and gold electronic auction

Attached is a technical proposal by a software designer

Here is an additional document:

[url removed, login to view]

Openvz to safeguard applications, I added a OTP application to this document and questions to be addressed regarding vps and centos the new flavor of linux I've decided to use. I elaborated on details of some points as well

technical proposal attached and questions regarding openvz and HA

Electronic silver and gold trading platform for members,like a stock exchange a bid and ask and the member has a client on his computer to communicate with the server to purchase or sell silver. clients can depositor withdraw silver into their account and we do safekeeping with serial number on tube or bar which must be attached to customer account and removed once removed from our facility

at the end of the day mouvement of the bullion must be done.

customer must sign transaction with depository key and their key and the depository must verify each transaction before moving bullion. depository may be in a different country or locally.

clients can lend out their silver or gold at a certain interest rate.

with otp(one time pass) on server and client

payment can be made by converting silver or gold to any currency or kept in commodity if merchant is our member.

A normal card (similar to a bank card) will be used to access the account with a cell phone loaded with one time pass program or a device.) you have to setup the onetime pass server application as well as client.

You can deposit or withdraw silver,cash or check or make purchase from a merchant.

The card can be active with certain functionalities turned on or off and certain dollar limits for diffferent card functions) or the card can be frozen or hot carded(cancelled) or stolen ( call branch).

members need to be registered and can add bank to debit(ach) from to pay for transaction.

we need a feed for quotes on commodities so client can see the spot price live and trade accordingly.

fault tolerant and replication in case server goes down.

can you guys take a look at this while I am puting together my notes for my

requirements.

the transactions have to be super secure., understanding this document in

advance would help me alot, will be in touch.

looks like openvz and centos will be used

I want to make sure you get that all transactions have to be sent signed with pki using the depository key and the client key, so you need a database with clients keys on it with the depository(which moves the gold or silver), to verify transactions were sent by client.

the client communicating with live data from members(bid and ask and the live spot quote must not be tampered with as well. so ssl is good for that.

since singapore is knowlagable in smartcard technologies and OTP (one time pass) I think you would be in charge of developing that security and applications.

some ideas below for open source OTP

clients using the goods/service application installed on the merchant server will have to enter their card number and use the otp application on their cell phone or computer(find out if this application can be installed directly on a pc)

In the branch as well workstations need to have this application installed to service walk in clients.

[url removed, login to view]

Here are fips compliant librairies

[url removed, login to view]

3000.00 is budget startup, I would like proposal within 1 week and project would start thereafter if price target met.

I need a company who is effecient in understanding and implimenting my needs and doing all the bug testing so product is delivered bug free. I would like it finished in a two month period if possible.

QUESTIONS REGARDING VPS

Are you planning to deploy over VPS? Is this for load management? HA over VPS is not possible in the truest sense. Application level HA will be your only option. Postgresql has HA built-in. That will still work for two VPSs. Some hosting providers also have HA VMs with DNS fail-over. I'm not sure if this active-active?

But overall, given the kind of number crunching you are going for, I would suggest you perform some empirical tests to see what your performance is going to be like. It is not just a matter of hard disk space here. Computing power specific to hashing and total bandwidth required for all clients both need to match up here.

another view:

I’m not sure what the wiki says. Haven’t had a chance to read it.

I’m guessing that the security they refer to in the wiki is application security. That is, if each application is run within its own container or VM, then its environment remains unpolluted by other applications.

However, the basic security against external attacks is increased because the virtualization/containment layers are not very mature systems. This is in contrast to Operating Systems which are much more mature and provide greater confidence against external attack if routinely patched.

Containers are relevant when one requires a physical machine to be running diverse applications (possibly belonging to different users) which need separate environments.

Another motive to use VMs or containers is to use the hardware more efficiently by deploying several instances per machine, thereby having less machines than users/servers to deploy.

In your case, only the second motive applies. You would need to benchmark the physical hardware though, to see how many VMs/containers can be run at maximum load.

For security against external attacks, you should put the VMs/containers running the actual backend code within a private network and the public facing server in the DMZ. The public server will be a sort of proxy, which redirects requests to one of the VMs/containers, thereby providing load balancing and shielding the private network.

This is the layout most often used in web deployments. The greater the need for security, the more the separation between data/application and the public interfaces.

UPDATED DOCUMENT 5/12/2011

A brief description of my project with some technical proposals and debates and schematics.
Can you give me some kind of cost involved, what is your skype contact info? I am silverbuyer on skype

Attached is a technical proposal by a software designer and another not so good diagram.
Here is an additional document:
http://kerneltrap.org/node/6492
looks like proxmox (based on openvz) and ubantu will be used
OPENERP can be used for bullion warehouse and possibly other components http://www.openerp.com/
Audit of all transactions must be integrated
Encryption of all sensitive client informations including account numbers.
Technical proposal attached and merchant account rough notes and questions regarding openvz and HA below:


Electronic silver and gold auction platform for members, and the member has a client/web client on his computer to communicate with the server to purchase or sell silver/gold bullion bars or coins. Clients can deposit or withdraw bullion into their account and we do safekeeping with bullion warehouse with serial number on tube or bar as well as palette tracking serial number for bulk storage or box number for safety deposit box storage. which must be attached to customer account and removed once removed from our facility
At the end of the day batch movement of the bullion must be done.
Customer must sign transaction with depository key and their key and the depository must verify each transaction before moving bullion. depository may be in a different country or locally.
Here are fips compliant librairies
http://www.cryptopp.com/#fips

We can lend members silver or gold at a certain interest rate.

Members must logon to client application using (OTP One Time Password) and transactions (auction bids) single or batch must be authenticated as well using OTP.
http://www.openauthentication.org/about...see attached document for OTP (One Time Password) used on cell phone and on pc

Members need to be registered and can add and confirm bank account(s) to debit(ach) from to pay for transaction or to transfer money out of their account.
You can deposit or withdraw silver,cash or check.
Conversion of silver or gold to any currency ,multi curency accounts.
Clients can purchase goods/services from our merchants will have to enter their card number and use the otp application on their cell phone or computer
A normal card (similar to a bank card) will be used to access the account with a cell phone loaded with one time pass program or a device. you have to integrate the one time pass server daemon as well.
In the branch the workstations need to have this application (OTP soft token) to authenticate walk in clients.
The card can be active with certain functionalities turned on or off and certain dollar limits for diffferent card functions) or the card can be frozen or hot carded(cancelled) or stolen ( call branch).

A feed (broadcast) for quotes on commodities so client can see the spot price live and trade accordingly.
Fault tolerance and replication is needed.



I want to make sure you get that all transactions have to be sent signed with pki using the depository key and the client key, so you need a database with clients keys on it with the depository(which moves the gold or silver), to verify transactions were sent by client.
The client communicating with live data from members(bid and ask and the live spot quote must not be tampered with as well. so ssl is good for that.

Clients purchasing goods/services from our merchants will have to enter their card number and use the otp application on their cell phone or computer
In the branch the workstations need to have this application (OTP soft token) to authenticate walk in clients.
Here are fips compliant librairies
http://www.cryptopp.com/#fips
I would like proposal within 1 week and project would start thereafter if price target met.
I need a company who is effecient in understanding and implimenting my needs and doing all the bug testing so product is delivered bug free. I would like it finished in a three month period if possible.

QUESTIONS REGARDING VPS
Are you planning to deploy over VPS? Is this for load management? HA over VPS is not possible in the truest sense. Application level HA will be your only option. Postgresql has HA built-in. That will still work for two VPSs. Some hosting providers also have HA VMs with DNS fail-over. I'm not sure if this active-active?
But overall, given the kind of number crunching you are going for, I would suggest you perform some empirical tests to see what your performance is going to be like. It is not just a matter of hard disk space here. Computing power specific to hashing and total bandwidth required for all clients both need to match up here.
another view:
I’m not sure what the wiki says. Haven’t had a chance to read it.
I’m guessing that the security they refer to in the wiki is application security. That is, if each application is run within its own container or VM, then its environment remains unpolluted by other applications.
However, the basic security against external attacks is increased because the virtualization/containment layers are not very mature systems. This is in contrast to Operating Systems which are much more mature and provide greater confidence against external attack if routinely patched.
Containers are relevant when one requires a physical machine to be running diverse applications (possibly belonging to different users) which need separate environments.
Another motive to use VMs or containers is to use the hardware more efficiently by deploying several instances per machine, thereby having less machines than users/servers to deploy.
In your case, only the second motive applies. You would need to benchmark the physical hardware though, to see how many VMs/containers can be run at maximum load.
For security against external attacks, you should put the VMs/containers running the actual backend code within a private network and the public facing server in the DMZ. The public server will be a sort of proxy, which redirects requests to one of the VMs/containers, thereby providing load balancing and shielding the private network.
This is the layout most often used in web deployments. The greater the need for security, the more the separation between data/application and the public interfaces.

Compétences : Linux, Python, Architecture Logicielle, SQL, Virtuozzo

Voir plus : www auction com, www 3000 com, work gold, withdraw quotes, what will you do for a dollar, what to ask a web designer, what is virtualization, what is a technical designer, what is a bid proposal, web proxy free, web notes technologies, web designer what do i need to ask my client for, web designer software linux free, web designer setup, web designer quotes, web designer proposal, web designer open source software, web designer in singapore, web designer free card, web designer cash, web designer applies, web built in singapore, vps price, vps linux price, vm management

Concernant l'employeur :
( 0 commentaires ) montreal, Canada

N° du projet : #1046627

8 freelance ont fait une offre moyenne de 3287 $ pour ce travail

superior5

I have done similar work before. Please get back to me if the project is still open

3000 $ CAD en 20 jours
(18 Commentaires)
6.7
amsak

Placing bid

2000 $ CAD en 70 jours
(2 Commentaires)
2.8
cybertextron

Please check our PM

2000 $ CAD en 25 jours
(0 Commentaires)
0.0
velocity123

Hi,please check PM.

5000 $ CAD en 60 jours
(0 Commentaires)
0.0
neurocompusys

Hi We can do this work as per your [url removed, login to view] see your PMB.I am sure you will reply me positively. Thanks

4000 $ CAD en 60 jours
(0 Commentaires)
0.0
fusioninformatic

Hi Good Morning, Hope you are well. We have reviewed your proposal and we found that we can fit into your requirement. We have very strong expertise in building small to large scale web application. Core Ex Plus

2800 $ CAD en 25 jours
(0 Commentaires)
0.0
cressidainfo4

please check pMB for more info Thanking You

2999 $ CAD en 40 jours
(0 Commentaires)
0.0
jsinghvirdi

I have 15 Years Experiance in Web Application Development and 3 years Experiance in iPhone SDK. I was working in ALDAR company Abu Dhabi(UAE). We (its team work) have developed IT Helpdesk System, Cargo Management Syst Plus

4500 $ CAD en 30 jours
(0 Commentaires)
0.0