Project Proposal Document

1. Document Identification

Secure Network Infrastructure For eCommerce

2. Background

The past few years have seen an explosion in the demand for access to Corporate
Applications. Up until now it has been possible to limit the accessibility of this data to
staff based at the University. This has been achieved through a combination of
firewall and other access restrictions based on the IP address of the requesting user.
Under this regime access to Corporate Applications from off campus can only be
achieved by using the University Dial In Service to ‘incorporate’ the external user
into the Edinburgh domain. Effectively there are no Internet accessible Corporate
Applications.

Over the next 18 months it is anticipated that this policy will come under pressure
with increasing demands for business functionality and data to be delivered beyond
the bounds of the EdLAN. These initiatives include:

Accommodation Services Property and Allocation Management – modules enabling

prospective students and members of the public to book accommodation on-line via
the web.

Internet Payment Gateway – a system, supported by the Bank Of Scotland, to enable

secure credit card payments. This service is being established by MIS and the Finance
Office and will be available for use with all University eCommerce systems. The first
of these will be an e-Receipting system enabling staff, students and members of the
public to pay for EU products and services on-line.

Edinburgh Student Portal (ESP) – delivering information to students both on and off
campus.

Satisfying these increasing demands whilst retaining the security and integrity of the
University’s critical business data will be a key challenge over the next few years.
3. Objectives

In May 2001 MIS, with support from EUCS FMD Unix, commissioned external
consultants IS Integration Ltd to assist in the creation of a skeleton network
infrastructure to permit various University departments to securely host internet-
enabled service provision and conduct e-commerce transactions from within the
existing University network.

The main findings of this study were:

• The architecture should make use of application servers to provide a layer of

separation between software and data.
• The architecture should physically separate Edinburgh only services from
world accessible services available to users outside of Edinburgh.
• Highly sensitive data such as credit card details should not be held on
Edinburgh University systems.
• Services should be protected by the implementation of distinct ‘sub-networks’
with access between these networks tightly controlled through the use of a
firewall and subnet masks.
• Logging of access and intrusion detection software should be implemented.
• All systems introduced to the architecture should be subject to comprehensive
security audit.
• An ‘authorisation to connect’ record is to be maintained for each system
• A comprehensive register should be maintained for all connected systems
detailing software, hardware and data assets.

During 2001 many of these recommendations were adopted. The network

infrastructure was put in place, application servers were procured, intrusion detection
was installed and the Bank Of Scotland were engaged to provide a credit card
payment facility which did not require the University to store credit card details.

This project seeks to build on this work to complete the implementation of the secure
network infrastructure and establish a platform for the secure conduct of eCommerce.

4. Benefit Statement

eCommerce and the use of the Internet offer exciting business opportunities for the
University however it is vital that proper safeguards are put in place to maximise
these whilst protecting the University’s software, hardware and data assets from
unauthorised access and exploitation. The reputation of the University could be at
stake if proper safeguards are not in place. This project seeks to deliver a robust,
secure, scalable platform to enable the University to obtain maximum benefit from the
Corporate Application portfolio.
5. Scope

This project seeks to build on this work to complete the implementation of the secure
network infrastructure and establish a platform for the secure conduct of eCommerce.
It does not address the requirements for off EdLAN access to existing Corporate
Applications.

6. Deliverables

• Specification, procurement and configuration of database and application servers

to support known requirements for eCommerce, in particular the initial systems
which will utilise the Internet Payment Gateway.
• Implementation of these servers within the secure network infrastructure.
• Report on options for encryption of traffic between application and database
server – this may require additional software from Oracle.
• Complete implementation of SSL for all web based Corporate Applications.
• The removal of web services from all database servers.
• The removal of direct access to database and application from PC clients via telnet
and SQL.
• The establishment of regular procedures for vulnerability testing the network
infrastructure.
• Technical documentation for use by MIS and EUCS staff.
• Overview documentation for use by MIS customers.

7. Assumptions and constraints

The project assumes that no production eCommerce systems that require this
infrastructure will be implemented before September 2002. If this assumption is
incorrect it may be necessary to review priorities and bring forward spending to the
current financial year.

SSL implementation will use the Edinburgh University Root Certificate established
and managed by EUCS.

Proposed hardware spending aims to meet the needs of current known projects, in
particular Internet Payment Gateway related projects such as eReceipting. It is likely
that additional hardware will require to be procured during 2003-2004 if demand for
eCommerce solutions increases significantly.

Removal of web services from database servers is dependent on the completion of the
migration of web based Corporate Applications to Brodie during the remainder of
2001/2002. This project is currently in progress.

Removal of direct access via PC is dependent on the successful web enablement of

remaining client/server and character based Corporate Applications.
8. Estimates

Task Responsibility Estimated End Date

Removal of Web Services MIS DSG - TS
August 2002
From Database Servers FMD Unix
MIS DSG - TS
Implementation of SSL August 2002
FMD Unix
MIS DSG TS
Hardware Specification August 2002
FMD Unix
Procure and Configure MIS DSG - TS
September 2002
Hardware FMD Unix
Vulnerability Testing MIS DSG – TS
September 2002
Service Established FMD Unix
MIS DSG – TS
Implementation Of Initial MIS DSG – Dev Pool
From January 2003
eCommerce Systems MIS CSG
FMD Unix
Removal Of Direct PC MIS DSG - TS
August 2003
Access To Database Servers FMD Unix

9. Costs

Staff
MIS DSG -Dev Pool 10 Resource Days
MIS DSG - TS 50 Resource Days
MIS BSG – 10 Resource Days
MIS CSG - 5 Resource Days
EUCS FMD Unix – 50 Resource Days
Business Partners – 10 Resources Days (For Testing)

Consultancy
Nil.

Hardware
Allow £30,000 for Database And Application Servers – More Detailed Estimate To
Follow

Software
£5000 for Application Server Software

10. Approved/Rejected

Approved/Rejected by MIC February 2002

Last Update By: Mark Ritchie

Last Update Date: 08/01/2002