Kapalı

Depositing Tool for Source Code Escrow with Encryption

STATEMENT OF USER NEED

UNDERSTANDING

Credit will be given to bidders who read and understand all of the Statement of User Need. Standard replies and missing information will receive a negative inference.

The successful builder will:

1. Knowledge Base. Have extensive knowledge and understanding of the Source Code Escrow process (also known as Software Escrow). [login to view URL]

2. Current Agreements. Have standing Source Code Escrow agreements with other customers. (Desirable)

3. Cryptography. Have an expert understanding of encryption and cryptographic techniques to government standards.

4. Outright Sale. Agree that the company [EscrowProtect] will own the software, and all associated IPR, outright, including but not limited to the source code and all associated components. There will be no EULA. All rights to license, copy, alter or re-sell will be passed to the company on receipt of the final payment.

5. Support Solution. Do not include a support solution in your initial bid. Bidders are to quote this cost separately if they intend to provide it.

BRIEF

Develop a software application that will allow software developers to “deposit” source code in a organised, simple and consistent way. It must be efficient, tidy and easy to use.

The application will reside on a flash memory device and prompt the user through the complete process. It must be consistent, yet flexible enough to deal with every possible type of deposit. This will ensure that all the critical and added value information is reliably captured:

E.g. Version Numbers, ESCROW Agreement number, expected size (used for gross error checks), designer's contact details, Source Code Platform, Operating System, special tools (e.g. compression), passwords, operating manuals, special instructions, etc. etc.

At the end of the process the application will encrypt the code and extra information ready for safe transmission to the ESCROW agent. The encryption must be unbreakable and must require another physical device (holding the key), held only by the ESCROW agent, to successfully decrypt the software.

NEXT STEPS

The next step in the Escrow process is for the deposit to be verified. The bidder coming up with the clearest and most imaginative ideas for automating (as far as is possible) the next part of this process is highly likely to win the bid. Remember, it is not testing the software in the traditional sense, it is testing for integrity and completeness.

There is a possibility to do this process online. Bidders will be asked to comment on the pros and cons of this approach.

Developer Agrees:

1. to have his code put in ESCROW by EP and signs an online agreement. [Standard Agreement]
2. when the source code can be released to end user and signs online. [Release Clauses]
3. what information he will supply; and, agrees to keep it up to date. [Key Disaster Recovery Info & Notifiable Occurrences]
4. that he will update the code on certain triggers: new version, significant minor updates and/or every 1/2/3/4 months. [Update Trigger]

Then:

1. Developer follows on screen prompts, fills out carefully crafted online forms (GUI) and selects a file for upload.
2. The data is compressed and encrypted using a public key.
3. The data is held on a central server. Developer and End User can "see" the files via a password protected account & login, and, even download them (if he wants to). Neither can decrypt.
4. Data is mirrored on server - 2nd level security (1st is the encryption).
5. Automated 1st integrity check is carried out (0kb files, source code present when flag is set from upload, plus other clever stuff we can think of)
6. Server is backed up to SSD after every upload and weekly using Grandfather, Father, Son. - 3rd level security.
7. An Update Trigger occurs.
8a. An automated email is sent to developer and end user with links etc.; or
8b. Developer initiates update as part of the agreement (e.g. version upgrade).
9. The developer chooses fresh upload, individual files or clicks to say no update is necessary in accordance with the agreement.
10. repeat 1 to 6.
11. A release event occurs.
12. ESCROW agent decrypts code.
13a. End User downloads code to main site to begin immediate disaster recovery; or
13b. Code is held awaiting the appointment of a new developer.

Finally.

Company offers further verification services:

Bronze: Test download and human-check of data.
Silver: Rebuild at 3rd party site (trusted verifier)
Gold: Rebuild at End Users site.

Thanks,

Chris.

Beceriler: C Programlama, Gömülü Yazılım, Yazılım Mimarisi, Yazılım Test Etme, Web Güvenliği

Daha fazlasını gör: cryptography source code, software escrow deposit process step, will holding, will be holding, wikipedia's website, wiki online, website platform designer cost, website designer tool, use escrow online payment, use an escrow system to payment, understanding quote, the escrow, steps to develop website, standard payment agreement, standard escrow agreement, source code escrow cost, source code deposit escrow, software testing tool, software testing techniques, software testing cost

İşveren Hakkında:
( 12 değerlendirme ) Bromsgrove, United Kingdom

Proje NO: #525982

Bu iş için 9 freelancer ortalamada $1250 teklif veriyor

klycoder

Please check PM

$1400 USD in 30 gün içinde
(1 Yorum)
6.0
excelence

for a bit high budget we can develop for you this kind of product

$1500 USD in 0 gün içinde
(6 Değerlendirme)
6.1
skywalker65535

please see pmb

$1250 USD in 12 gün içinde
(5 Değerlendirme)
5.1
anipunge

experienced professionals

$1499 USD in 60 gün içinde
(0 Değerlendirme)
0.0
terryzlf

I am very interesting of your project. Frankly speaking, it's the first time I heard about source code escrow. However, I have done some research today.

$1200 USD in 30 gün içinde
(0 Değerlendirme)
0.0
aig

Let me know your Final Price and Final Time line for this project on PM , So we have Proposal / project Execution plan for your project . Waiting for your fast response on PM.

$1200 USD in 25 gün içinde
(0 Değerlendirme)
0.0
jerrymbc

Hi, I am very much interested in developing this kind of project so pleas give me a chance to prove my self .i am an engineer so i can able to develop this.

$1000 USD in 30 gün içinde
(0 Değerlendirme)
0.0
rythnace

We are highly esteemed concern deal with lot of projects, and our team of professionals can complete your work and the whole project within the time frame and with good quality standards. If my quotation and delivery t Daha Fazla

$1200 USD in 25 gün içinde
(0 Değerlendirme)
0.0
mithilamunshi

I can do the Testing part with zero defects

$1000 USD in 30 gün içinde
(0 Değerlendirme)
0.0