Installation and Usage - A real time, system independent, secure, Internet based auctioning sy

6 ) RSA

Round 6 Round 6

10) Installation and Usage

The installation of the application is rather straightforward. The are a number of requirements though:

Requirements

• TCP/IP connection

• Web Server with ASP (VBScript) for Win32 or CGI (PERL 5+) for Unix

• Java 1.2 or above

• 1MB Free Space

The installation packages have been divided into two types Win32 and Unix. The files are named win32aucserv,zip and unixaucserv.tar, respectively. The only reason that there are two different files is that the CGI scripting used to pass parameters from the HTML documents to the applet and vice versa is different for the two operating systems. On Win32 system, VBScript through ASP is used, and on the Unix system, PERL through CGI is used. The class files are exactly the same.

Files Included

The files included in both zip files are: Aucserv,jar

HtmlHelp Directory Logs Directory Images Directory Html Directory Does Directory

The aucserv.jar file contains all the class files for the auction server. The HtmlHelp directory contains the Html Help pages for the Auction Server application. The Logs directory contains empty log files. The Images directory contains the image icons used by the Auction Server application. The Html directory contains a default Html site and a few required files. For a more comprehensive discussion see the "Auction Implementation" chapter. The Win32aucserv.zip file has a run.bat file used for executing the application.

9.1) Installation & Setwup

Extract the zip file by using a Zip utility, On Win32 systems use pkunzlp or Winzip, and in Unix use Tar. When unzipping be sure to include all directory structures and subdirectories.

Win32

pkunzip -d w;n32aucserv.zip

Allow the html directory to be executable.

Secure Internet Auctioning System

Installation & Usage

Unix

tar -zvf unixaucserv.tar

Set up a symbolic link from the web root to the html directory.

Ln -s <Installed Directory> <Link name>

The web site will then be available at http://hostname/<link name>

le: In -5 /home/auction/public_html /httpd/html/auction http://hostname/auction

Page J5J

One needs to configure the web server. In the /etc/httpd/conf/access.conf file add the following:

<Directory /home/httpd/html/auction AllowOveride No

Options ExecCGI Include

</Directory>

In the /etc/httpd/conf/srm.conf file add the following:

AddHandler cgi_script .c9i Add Handler Server_parsed .htm

Allow the files in the html directory to be executable chmod +x

"'.*

9.2) Executing the Server

In the aucserver directory execute the following Win32

run. bat Or

Java -Jar aucserv.jar

Unix

Java -jar aucserv.jar

9.3) Application Maintenance

The source is included in AucServersrc.zip and AucClientsrc.zip. Within each file is the source code for the specified application. All source files are included, except for the RC6Crypt and MARSCrypt source files as I cannot reveal the source code for the applications due to the AES non-disclosure agreement. However the class files were included so that the application may still execute.

Secure Internet Auction;ng System _{Page 152} Installation & Usage

9.4) Server Usage

Once the application has started it does not automatically start the server,

Note: Unavailable menu items (Greyed out) indicate that other options or features need to be addressed before one may proceed,

Starting the Server

To start the server, select the Server Menu

I

Start Server Selecting the Port number

If the server fails because the port the server has attempted to start on (Default 3002), one must change the port number, Once the port number has been changed one must then restart the server (see above),

To change the port number, select Server Menu

I

Port Number, Type a port value between 1000 and 65000, and then click on OK.

Exiting the Application

To exit the application there are two options Select the close option on the Window.

Select the Serve Menu

I

Exit.

Once the server has been started the auctions may then be configured.

Entering Item details

To enter the item details:

Select Auctions Menu

I

Item Details

Select the amount of items to be auction and click OK. One is then asked to enter the item details one by one in the Auction Item Details frame. The frame tells one what the number in the auction list the item is, and it requests the following details: the auction item ID number, the minimum starting price and a brief description. Once all the details for the current item have been entered click OK.

Repeat until all details for all items have been entered. If any errors are made the application will notify one about the errors.

Note: If one wants a picture of the item to be sent to the client, during the auction, one must place the image in the Images directory off the html directory. The image must have the name (in lower case) of the item ID number, and it must be a GIF image.

The details entered here are written to the file auchtm.inc file, which is included in an HTML file, so the clients may see what being auctioned, If one wants to enter more details about the items auctioned this will have to be done manually on the

Secure Internet Auctioning System Page 153 Installation 8.. Usage

web site. Once the details have been entered one can then set the stop tlme for the current auction. Auctions start with the first item entered and finishes with the last.

Entering Stop Time

When choosing the stop time it is for the current item auctioned only. To extend the current auction change the finish at any stage throughout the auction. All users will be notified about this change. When the auction finishes for the current item one may then set the following items stop time.

Select the Auctions Menu

I

Stop Time. Then choose the correct year, date and time to finish.

If no finish time is entered and the auction is started it will finish immediately and proceed to the next auctioned item.

Starting an Auction

Once all the above sections have been dealt with the auction may be started. If any of the previous steps have been missed this menu option will not be available. Select Auctions Menu

I

Start Auction

Select the Play button on the Menu Bar.

The auction will start and all details pertaining to the auction will be displayed in the status bar and on the information panel. To see information about the users select the Users panel (See below).

Stopping an Auction

When one stops an auction, the clients will be notified and the next item will be prepared for auctioning. This will forcefully stop the auction at the present time. If the auction is left to its own devices it will only stop at the pre-determined time.

Select the Auction Menu

I

Stop Auction Or

Click on the Stop button on the Menu Bar Demo Auction

If one does not want to go through the entire rigmarole of setting up an auction one can run the Demo auction. This auctions four items with random stop times and minimum values.

Select Auction Menu

I

Demo Auction Or

Click on the 0 in the Menu Bar

Secure Internet Auctioning System Page l54 Installation &. Usage

Selecting Key Length

One may change the RSA key length from its default (128 bit) to a number of different values up to and including 4096 bit keys. However one should be aware that large keys take longer to generate.

Select Security Menu

I

Key Length

This changes the key length but does not generate new keys, this need to be done manually.

Regenerating Keys

One may manually force the application to generate new keys.

Select the Security Menu

I

Generate Keys Selecting Symmetric Cryptosystem

One has a choice of two symmetric key systems. This may be changed before and auction starts, and thereafter It will remain fixed until the auction has ended. Only once the auction has ended may one select another cryptosystem.

Select Security Menu I Cryptosystem of choice (RC6 I MARS) Help

To get online help.

Select the Help Menu I Help

ThiS brings up another frame, which is a web browser. There are two buttons: the contents page, which will return one to the default help page, and the close help button which will close the help page. The application will continue running even though one may be perusing the help pages.

Information

There are various bits of information that is displayed in the auction application and it is displayed in two panels. The Information panel and the User panel.

Information Panel

The information panel displays information pertaining to the server, current auction and any problems. One may get Information about the current auction by clicking on the details menu bar button. If the screen becomes too cluttered one may click on the Clear button, which will remove all information from the information panel.

User Panel

The user panel displays a list of the current users connected to the application. By selecting a client it will display their details in the client information box, The current top bid is displayed in the bottom left hand corner.

Secure Internet Auctioning System Page 155

Installation & Usage

9.5) Client Usage

The client selects the item to bid for from the web page. It will take one to the page containing the applet. The applet execute and asks the client to type thirty random characters. These are used as the key for the encryption process.

Once this has been done the client needs to full in all relevant data (Name, Email, etc). Once this has been completed, click on the connect button to connect to the auction server. If there are no problems the applet displays the bidding page.

The bidding page only has one action available. This is simply to bid. The client enters a bid value which must be greater that the minimum bid or current top bid and clicks on the submit button to send it. This page relates all the details to the client about the current auction.

Secure Internet Auctioning System Page 156 Reference & Bibliography

Dalam dokumen A real time, system independent, secure, Internet based auctioning system. (Halaman 150-156)