izpis_h1_title_alt

Uvajanje kartičnega prometa v trgovskem podjetju : diplomsko delo
ID Štrukelj, Anja (Author), ID Brodnik, Andrej (Mentor) More about this mentor... This link opens in a new window

URLURL - Presentation file, Visit http://eprints.fri.uni-lj.si/2948/ This link opens in a new window

Abstract
V diplomskem delu smo obravnavali standard PCI DSS (ang.: Payment Card Industry Data Security Standard), ki predstavlja enoten pristop k varovanju občutljivih kartičnih podatkov in preprečevanju zlorab v panogi plačilnih kartic. Implementacija standarda v podjetje omogoča višjo raven varnosti, ohranjanje zaupanja, zaščito pred zlorabami in posledično zaščito pred őnančnimi izgubami ter izgubo ugleda. Pri plačevanju s plačilnimi karticami so prvi člen v verigi trgovci, ki sprejemajo plačilne kartice. Takoj za njimi so na vrsti različni obdelovalci in posredovalci podatkov o plačilnih karticah. Sem spadajo procesni centri, ki so vezni členi med trgovcem in banko. Tretji člen v verigi so banke, ki imajo pogodbeno razmerje tako z imetniki plačilnih kartic kot s trgovci, ki so plačilne kartice pripravljeni sprejemati. Vse naštete organizacije morajo vpeljati standard PCI DSS v svoj sistem, če želijo poslovati s plačilnimi karticami. V diplomski nalogi smo se osredotočili na vpeljavo standarda PCI DSS v podjetje velikega trgovca. Namen diplomske naloge je raziskati možne rešitve za vpeljavo standarda PCI DSS v podjetje velikega trgovca in ugotoviti, če je bila izbrana rešitev res optimalna izbira. V prvem delu diplomske naloge opišemo, kaj standard PCI DSS je in katere zahteve je potrebno v podjetju velikega trgovca izpolniti, da dosežemo skladnost s standardom. Opišemo pojem PCI obseg in naštejemo razloge, zakaj je potrebno PCI obseg v podjetju čimbolj zmanjšati. V drugem delu analiziramo možne rešitve za vpeljavo standarda v podjetje. Opisan je potek implementacije izbrane rešitve v podjetje. Opišemo komponente sistema za zagotavljanje skladnosti s PCI DSS, ki so produkt lastnega razvoja. Na koncu analiziramo, če je bila izbrana rešitev res optimalna in predlagamo izboljšave ter ukrepe.

Language:Slovenian
Keywords:PCI DSS, vpeljava standarda v podjetje, trgovsko podjetje, kartično poslovanje, POS terminal, ponudnik varnostne rešitve, računalništvo, univerzitetni študij, diplomske naloge
Work type:Undergraduate thesis
Typology:2.11 - Undergraduate Thesis
Organization:FRI - Faculty of Computer and Information Science
Publisher:[A. Štrukelj]
Year:2015
Number of pages:52 str.
PID:20.500.12556/RUL-70180 This link opens in a new window
UDC:004.7:336.71(043.2)
COBISS.SI-ID:1536259523 This link opens in a new window
Publication date in RUL:10.07.2015
Views:1209
Downloads:237
Metadata:XML RDF-CHPDL DC-XML DC-RDF
:
Copy citation
Share:Bookmark and Share

Secondary language

Language:English
Title:Introduction of card payment system in a merchant company
Abstract:
The thesis is about PCI DSS, which stands for Payment Card Industry Data Security Standard. PCI DSS represents a uniőed approach to the protection of sensitive card data and to prevention of abuses in the payment card industry. Implementation of the standard in the company provides a higher level of security, it maintains conődence, protection against abuse and consequently protection against őnancial losses and loss of reputation. When paying with credit cards, the őrst link in the chain of events is a merchant that accepts payment cards. Right behind the merchant there are diferent types of processors, that process payment cards information. These includes payment processing centers, which are a link between the merchant and the bank. The third link in the chain are the banks which have a contractual relationship with both the cardholder and the merchant, who is willing to accept payment cards. All of these organizations must implement standard PCI DSS in their system if they want to do business with credit cards. In this thesis we are focused on the implementation of standard PCI DSS in the company of a large merchant. The goal of this thesis is to explore possible solutions for implementation of standard PCI DSS in the company of a large merchant and őnd out if the chosen solution is really the optimum choice. In the őrst part we describe what standard PCI DSS is and what requirements must be met in order to achieve compliance with the standard. We describe the concept of PCI scope and name the reasons why it is necessary to minimize it. In the second part we analyze the possible solutions for the implementation of standard in the company. We described the process of implementing selected solution to the company. We describe the components of the system that are responsible for ensuring compliance with the PCI DSS, which are a product of our own development. Finally, we analyze if the selected solution was really optimal and suggest improvements and measures.

Keywords:PCI DSS, standard implementation, merchant, payment card industry, POS terminal, security solution provider, computer science, diploma

Similar documents

Similar works from RUL:
Similar works from other Slovenian collections:

Back