Scalability by Parallelizability in Online payment gateway

Scalability and responsiveness in online payment gateway is not an option, it is a requirement. Some optional steps/process in a payment gateway performed in a parallel/asynchronous way can help in maintaining scalability of the system.  This parallelism will enable the system for betterment in latency and throughput. While some processes can only be performed in a sequential fashion, but the system designer should always check for processes which can be performed in an asynchronous way.

Following are some optional processes in an online payment gateway, which I think can be performed in parallel:

1. Fraud and Risk Prevention check: A check made for detection of a possible fraud in the transaction under process
   
   
2. Sending Email: Sending emails to buyers, merchants, self and any other third parties.
   
   
3. Sending SMS: SMS to the buyer
   
   
4. Dynamic currency conversion related processing: Dynamic currency conversion can sometime be performed in parallel
   
   
5. Sending online notifications to merchants: Some payment systems send HTTPS notifications to merchants
   
   
6. Account updater: When card details of the buyer has changed, and an update is required
7. Tokenization/One-Click-Checkout process: Tokenization or one-click-checkout or easy checkout is sometime used to speed up the checkout process, and this is mainly achieved by storing the card details for future use

Follow Payment Technologies for more updates.

Thanks for reading. Feel free to comment

Batch modules in Payment gateway and technology

The major part of a payment gateway is the back-end and batch modules. In this blog I will mainly focus on batch modules in payment gateways, functions and one example of batch processing technology. Front end of payment gateway accepts online real time authorization requests, and after this the back-end finishes/completes the request. Batch modules in payment gateway mainly serve back office operations, analytics, reports, settlement/clearing and End of day processing. Let us we have a look at each of the functionality mentioned above.

• Clearing & Settlement: This mainly involves transfer of funds from different entities like issuer to acquirer, payment gateway to merchant. It is mainly achieved by iterating over each of the online real time requests accepted from merchants and then creating a batch file, sending to acquirer/payment processor, receiving response file, parsing the response file and updating the database
  
  
• Reconciliation & Reports: Merchants and other financial entities require different kind of reports in different kind of formats. For example daily/weekly/monthly transactional reports, totals of different kind of transactions and summary
  
  
• Analytics: This mainly involves identifying different kind of parameters. For example, identification of potential business areas, who is doing what, what kind of transactions, is more from which merchant etc. Depending upon the flexibility and adaptability of analytics module, it can be much importance as an added service to merchants.

Technology selection for your payment gateway is of critical importance. The batch modules will be creating, parsing, sending/receiving and updating different file formats. Batch modules also perform database intensive operations, and would mainly run as scheduled tasks configured at particular time or internal of time.

Let us see why spring batch can be a module of choice. Spring Batch is a lightweight, comprehensive batch framework designed to enable the development of robust batch applications vital for the daily operations of enterprise systems. Spring Batch builds upon the productivity, POJO-based development approach, and general ease of use capabilities people have come to know from the Spring Framework, while making it easy for developers to access and leverage more advance enterprise services when necessary. It is intended to work in conjunction with a scheduler, not replace a scheduler.

Spring Batch provides reusable functions that are essential in processing large volumes of records, including logging/tracing, transaction management, job processing statistics, job restart, skip, and resource management. It also provides more advance technical services and features that will enable extremely high-volume and high performance batch jobs though optimization and partitioning techniques. Simple as well as complex, high-volume batch jobs can leverage the framework in a highly scalable manner to process significant volumes of information.

Spring batch can serve the following technical objectives:

1. Batch developers use the Spring programming model: concentrate on business logic; let the framework take care of infrastructure.
2. Clear separation of concerns between the infrastructure, the batch execution environment, and the batch application.
3. Provide common, core execution services as interfaces that all projects can implement.
4. Provide simple and default implementations of the core execution interfaces that can be used ‘out of the box’.
5. Easy to configure, customize, and extend services, by leveraging the spring framework in all layers.

All existing core services should be easy to replace or extend, without any impact to the infrastructure layer.  Provide a simple deployment model, with the architecture JARs completely separate from the application.

Thanks for reading. Feel free to comment

Follow Payment Technologies for more updates.

Tokenization – A solution for Security, Convenience and compliance

You have heard about tokenization or tokenization in payments, let me explain what tokenization in payments is “Merchants who accept card details on their payment page, can send the card number and expiration date to some third party (token provider) via a web service (or any other API) and in response merchant will get a token number against the card details, this token number can be used in future to get the actual card number and expiration date from the same token provider” The token number is generated by such algorithms that card details cannot be derived from token number.

At an abstract level tokenization can provide a merchant with

1    1) Increased online sales: Express checkout or one click checkout can be achieved using tokenization. This improves the checkout process dramatically by reducing the checkout time and added security; this also decreases the chances of transaction failure due to invalid card details. These kinds of services also promote the customer to return to merchant page for future requirements.

2    2) More security and reduced PCI DSS scope, as merchant is not storing card details on its system, so will be the reduced PCI DSS scope, and no fear of losing card details in a security breach.

3    3) Use of card details: Many online merchants usually have integration with more than one payment gateway, if tokenization system is independent of these payment gateways then the same card details can be used in any number of payment gateway. This provides the merchant with better flexibility and control.

Follow Payment Technologies for more updates.

Any questions and comments are appreciated. Thanks for reading

EMV Compliant mobile payments in India and global trends

EMV compliant (Chip and PIN) based mobile solutions are going to dominate card present transaction space worldwide, and there are some global as well as domestic forces pushing things in this direction. Let us we put together some technologies and trends in card present transactions ecosystem. There are two parallel momentum talking place. 

Once is technological momentum

1. Mobile technologies offering convenience with usability and widespread use by new generation

2. Chip and PIN card (EMV), Chip based debit card from Rupay

3. Fraudsters developing advanced technical patters for breaking secure systems.

The other is

1. Global Migration to EMV, specially increase in adoption of EMV in US

2. Drives by RBI and NPCI. RBI has mandated issuance of Chip and PIN based card to card issuers.

3. Big eCommerce merchants allowing COD (cash on delivery) are migrating to mobile based card payment on delivery.

4. Drives by VISA, MasterCard and other payment schemes to mandate Chip and PIN based transactions in future

So let us welcome the change with new mobile based EMV compliant (Version 4.0, level 2) secure solutions, offering more transaction success rate, less number of chargeback’s, increased sales, conveyance & reliability, and finally new challengers and game changing innovators.

Follow Payment Technologies for more updates. Thanks for reading

Choose the payment gateway which increases your sales

So you are running an online business and you accept online payments from your customers, and you will have to integrate with some payment gateway. This blog is about which payment gateway will better suite you, the conclusion upfront is "Choose the payment gateway which increases your sales/revenue". In other terms your payment gateway should be having

• Highest transaction success rate
  
  
• Advanced sales enhancement features like:
• Facebook payments  
• Payment retry option using click to pay button via email
• Mobile payments
• Payment through QR code
• Support for merchant promotional program
  
  
• CRM with sales analytic – find and target potential customers
  
  
• Express checkout
  
  
• PCI DSS compliant
  
  
• Easy integration API’s with proper documentation and integration kit as per merchant's technological needs
  
  
• Payment gateway payment page having look and feel similar to merchant page, so that customer feels at home and safe
  
  
• Fraud and Risk management system – this feature of payment gateway can help merchants be protected from sophisticated frauds and chargeback

Using the right set of tools and technologies’ supporting your online business is need of the hour. If such a payment gateway increases your sales by 5% then this could be a jackpot.

Follow Payment Technologies for more updates. Thanks for reading

Online Payment Gateway in India – Convenience Blended with Reliability

The online payment gateway in India has made payment against products and services purchased very easy and a process of least time-consuming experience. This in resultant consequence of making payment an easy experience for customers has invariably affected the business patterns of merchants nationally and internationally. The term “internationally” is stated because customers from other part of the world also become one of the fortunate beneficiaries to experience ease and convenience of online payment gateway in India against certain merchandising.

What involves with online payment gateway in India?
To say in the least narrative version, this names as a process of facilitating online payment safely and in a matter of great confidentiality whereby customer’s personal information about debit cards, credit cards and other payment means is maintained under absolute secrecy. Followed by a merchant’s willing acceptance of bank accounts, debit card or credit cards through the system of online payment gateway has logically augmented the growth of business as well as resultant upturn in the reliability and trust of the system.

What exactly involves with the online payment gateway in India is a very simple yet very reliable way of accepting payment from customers and delivering the received payment to the concerned merchant. Meanwhile, acceptance or decline of the payment is entirely subject to the nature of information supplied by the customers. The situation of payment decline is also experienced owing to browser related issue from the customer’s side or some technical issues at the end of recipient. However, the long and short of the payment gateway system is offering an ease of facility with regards to making payment regardless of location that a customer may hail from.

Is online payment gateway in India reliable?
The experience of reliability comes through a person’s satisfactory outcome from the whole business of virtual payment entryway structure. In the resultant consequence of the structure being dis-satisfactory, the person doubts making further payment using the particular source. However, the long-term existence of companies acting as a third party payment entryway promising fealty and confidentiality to both the customers and the merchants clearly indicates that the system of virtual payment doorway is reliable and very authenticated provided that you have chosen a reputed gateway payment source.

How to choose reliable payment gateway source?
When it comes to using online payment doorway in India, do not forget to ensure about the reputation of the website prompting you make an attempt of your payment. Always consider this from the point of your own safety about your personal information about your credit card or debit card because at the time of making payment you are almost confiding your “must be secret” information about your payment means to a third party.

Piece of advice
Do not be fooled by the third party gateway system until you are convinced after studying all the reliable sources supporting its relevance and trustworthiness. This is to your own safety and benefit to avoid any unsavory consequence later. You are also advised to run few searches in Google or in your favorite search engine and read the available information to help yourself reach at a conclusive decision in this regard.

Follow Payment Technologies for more updates. Thanks for reading

How to keep up a payment gateway database performance high for fast user experience and fast transactions

If database of a payment gateway is slow then user experience will also be slow and would lead to low transaction success rate, it will have cascading effect for example when a page is taking time in loading then user will press back/refresh button and then it would lead to a failed transaction. A loss to the payment gateway and merchant both.

As a developer you know that computing powers/processors have got very powerful but input/output has not got such powers and speed, and slow input output becomes reason of poor performance many a times.

Your database system can kill you when, may not deliver the performance you want, it can be a database for which hackers will thank you, or its stored procedures logic can break when you make certain mistakes.  There can be many mistakes, but common of them are:

1. Coupled database schema: When database schema is too coupled, there will be many foreign keys and other constraints, leading to complexity and hence to poor performance. An open advice in this matter can be KISS” -  Keep it simple stupid
   
   
2. Many transactions table: If you have many tables storing transactions, like for one application service request if your database is storing information in many tables, two or three tables should be enough
   
   
3. Loose security: When you do not have different users for different roles and privileges, and you are using one or two admin account for all database operations, you have kept welcome door open for hackers to exploit you. If your database has critically important information, then it is better to keep it under a firewall as an offline machine. One should also take care of SQL injection at application layer
   
   
4. Multiple read/write operations in a service call: If while serving one online request you are hitting your database multiple times, for example you are performing multiple read/writes to display a page or providing response to a service request. Try to keep minimum back and forth between database and application
   
   
5. No caching: if you are not using any caching mechanism to access (static) information from database, you can be overheating your database system
   
   
6. Low network bandwidth or low speed or low IOPS between application server and database server could be another reason to watch for. Check your limits and see how much bandwidth you are consuming, check what are the peaks.
   

Concluding piece of advice can be, “Your database is not yours, its database of your clients, do allow them to use it, and do not allow hackers to enjoy it”

Thanks for reading

Online payment transaction failure is a business loss. See how you can eliminate the loss by doing a robust payment gateway integration

Failure of eCommerce transaction is a direct sales loss to online merchants. An eCommerce transaction can fail for many reasons, but I want to talk about the reasons which can technically be controlled by merchant and payment gateway both. Let us try to brief the reasons

1. Poor integration of merchant eCommerce platform with payment gateway: A merchant eCommerce platform integration with payment gateway may have following kind of issues
• Integration not tested for different use cases before going in production
• Merchant eCommerce application sending invalid data to payment gateway in a transaction, for example a negative amount in an sale transaction
• Unable to handle a timeout in response from payment gateway. If payment gateway allows merchant should try a status inquiry request with payment gateway
  
  
2. When merchant web application is on HTTP. In this case when payment gateway will be redirecting customer web browser to merchant website, then there may be a warning from secure to non-secure zone and all customers may not be able to handle it properly.
   
   
3. A payment gateway should also be flexible in providing more space to merchant. Like maximum length and allowed characters in customer address field should be sufficient to handle rare cases, payment gateway should be able to handle UTF-8 strings in such cases.
   
   
4. Poor network bandwidth of merchant web application server
   
   
5. Merchant/payment gateway processing many information fields as mandatory, when that part of information can be processed as optional. More are the information fields in process, more is the complexity and chances of bugs.

Click to See Right Payment Gateway Messaging Format for a Payment Gateway Integration for details on messaging format. Thanks for reading