Overview of the organization
Zalando is a German based company which deals with fashion product ranging in from women, children and even mean. It is estimated that the company has employed over 10,000 individual across the globe. Being an online fashion retailer, this company has over 1500 brands of various products. These fashion products comprise of beauty products, accessories and clothes among others. With an estimated over 10 million customers in various states, the fashion retailer has incorporated to provide innovative shopping to its ever increasing customers. The payment policies within the company pose a great challenge and risk for the company. For instance, the purchasing online policies cause a general inventory management risks equally, in other words the products are purchased through phones, tablets and computers. Customers purchasing the fashion products use the credit cards, upon making the payments recording of all transactions are made. Moreover, the data processed by the company relates to transactions and sale records. On the same note, the company keeps information regarding the number of employees per unit of various departments as well as process cash flows and profit forecasts for the long term and short-term growth of the business.
Planning phase
Being an online fashion retailer company and relies on the customers across the World. Moreover, the company depends on several suppliers for orders. Therefore, in consideration of the above arguments the team will focus and make changes in the customer log in data, since customers of the company depends on these log ins to request for products. Additionally, the team will likely focus on the respective payment platforms as these platforms are used for debit and credit payments, thus essential for the operations of the company (Sahita et al 2018) This data needs to be reviewed as it is prone to external attacks by unauthorized individuals.
Requirements phase
There are various requirements that user needs to meet to be allowed access. The user object requirements include, but not limited to: unique user identifier, description of the user person, email-address, phone contacts and user security passwords. Important to note is that fact that these requirements will prevent access to information, as encryption ensures unauthorized persons do not access the customer data. On the same note, antivirus software and Infineon security platform software used in the company prevents possible loss of customer data (Singer, 2014).
Design phase
To ensure that the software components used in the system have trusted modules, the designers will be required to trusted platform ownership in which the users are allowed to create any associated passwords that are used for protection of keys and data. On the same note, the software system needs to allow configuration of security passwords/keys.
Development phase
The developer will ensure the flow of secret information from the sender to the receiver. The cryptographic algorithms will use 19 rounds of key dependent; equally the symmetric encryption employed by the developers will ensure the communication between the parties is very secure. Moreover the single key shared between the sender and receiver will enhance protection of the data from loss.
Integration and test phase
At this stage the developers and designers will be required to test for security and user acceptance of the application. Integration of the user accounts with the security software will be essential on this particular stage. The first step in security testing is educating of the user and empowering them equally, the step is followed by fine tuning of the possible code. The next step is to automate the system monitor its functionality altogether.
Installation and acceptance phase
The purpose of the installation of the system is to ensure protection of the customer’s personal data from external attacks. In addition, after installation of the system the organization will be in a position to monitor abnormalities and equally display them.
References
Zein, S., Salleh, N., & Grundy, J. (2016). A systematic mapping study of mobile application testing techniques. Journal of Systems and Software, 117, 334-356.
Sahita, R. L., & Schluessler, T. T. (2018). U.S. Patent Application No. 15/471,247.
Singer, J. B. (2014). User-generated visibility: Secondary gatekeeping in a shared media space. New media & society, 16(1), 55-73.
The post IP1-Project Life Cycle Security Measures: Zalando Case Study appeared first on My Assignment Online.