Simple user management and logging for .Net app
$250-750 USD
Completed
Posted over 12 years ago
$250-750 USD
Paid on delivery
We have a single-dialog application written using windows forms in .Net with C#.
The application is for payment processing purposes - it gets payment commands on COM port
and sends transactions for processing to the payment processor.
We're certifying this applications against PCI's PA-DSS ([login to view URL]). There are a couple of requirements in the certification outline that our application presently does not meet.
1. User management and authentication
We need to meet the following specific requirements:
Require unique usernames for all users
Require passwords for authentication
Require password changes every 90 days
Require password to have at least 7 characters
Require alphanumeric passwords
Prevent reuse of the prior 4 passwords
Lock out accounts after 6 invalid login attempts
Lock out accounts for at least 30 minutes
Time out accounts and require password reentry after 15 minutes or less
The following approach is strongly suggested:
-Introduce a database (free one like SQL server express) which contains authentication information for the application's users.
-Add a (modal?) dialog that blocks user intervention of the main payment application window. The user would have to enter his/her username and password to remove this dialog to tamper with the application.
-Add ability to add/remove users. This could be done through another dialog which is invoked through a menu item in the payment application (once a user logs-in).
2. Logging
PA-DSS requires the logging of certain events. You should use the same database from part 1 and log stuff into it.
The following events need to be logged:
1. Payment application log-on (the user that tried to log on, and was the attempt successful?)
2. User management (what users were added/removed and by whom)
-DB access trail. I've been lead to understand that in Windows (or SQL server) you can flip some switch so that windows (or SQL server) tracks when the DB is accessed in general. Note: This doesn't need to be done through the application - you just need to enable this. This trail isn't logged into the database.
Also, full read/write connections to the database should be accepted using the same credentials that are used to log onto the payment application.
You also need to give me API or ability to insert stuff into the DB as I have to log a few things deep within application.
You will be give source code for the application. This must be developed for Windows 7 and must work on Windows 7 Starter edition.
You must speak English and be willing to talk on Skype.
Project ID: 1273847
About the project
35 proposals
Remote project
Active 13 yrs ago
Looking to make some money?
Benefits of bidding on Freelancer
Set your budget and timeframe
Get paid for your work
Outline your proposal
It's free to sign up and bid on jobs
3.4
3.4
35 freelancers are bidding on average $496 USD for this job
6.1
6.1
6.2
6.2
5.9
5.9
3.6
3.6
3.7
3.7
3.8
3.8
3.8
3.8
3.5
3.5
3.8
3.8
3.4
3.4
4.0
4.0
3.0
3.0
1.4
1.4
0.0
0.0
0.0
0.0
0.0
0.0
0.0
0.0
0.0
0.0
0.0
0.0
0.0
0.0
About the client
Toronto, Canada
11
Member since Apr 7, 2009
Client Verification
Other jobs from this client
$30-250 USD
$30-250 CAD
$250-750 USD
$30-250 USD
$30-250 USD
Similar jobs
$30-100 NZD
$250-750 USD
₹180-1800 INR / hour
$10-30 USD
min $50 USD / hour
$30-150 USD
$30-250 USD
$250-750 USD
€12-18 EUR / hour
₹1500-12500 INR
$30-250 USD
₹1500-12500 INR
$250-750 USD
$30-250 USD
$250-750 USD
₹400-750 INR / hour
₹12500-37500 INR
€2-6 EUR / hour
₹750-1250 INR / hour
$10-30 USD
Thanks! We’ve emailed you a link to claim your free credit.
Something went wrong while sending your email. Please try again.
Copy to clipboard failed, please try again after adjusting your permissions.
Copied to clipboard.
Loading preview
Permission granted for Geolocation.
Your login session has expired and you have been logged out. Please log in again.