The customer is a US-based company that offers POS solutions for restaurants and retail businesses. With their iPad-based POS and cloud-based backend platform, they have a large installation base and considerable market share. The customer wanted to expand their business areas by adding payment processing services to their portfolio.

Challenge

The customer wanted to purchase a well-recognized payment gateway company that provides services with millions of payment transactions across North America. Before doing so, the customer sought to conduct a deep, complex product audit in order to understand product quality and potential weaknesses prior to acquisition.

Orion was selected as a trusted auditor with knowledge in all required areas of the assessment, including code and architecture quality, security and development processes. The team assigned to this project faced various challenges, such as short lead time for complete review, high product complexity and limited access to all materials (documentation, source code, etc.) in that these resources were only available on the company’s premises.

Solution

We quickly assembled a team of experts who traveled to the US and participated in the online product audit with the company representatives. We were provided with supervised access to the documentation and source code, so active communication was required to gather all the necessary information. The goal was to evaluate product architecture, solution scalability and functional extensibility; product implementation quality, areas of potential issues, risks related to product support; and software development, installation/configuration and troubleshooting routines.

Results

Our team provided the customer with a detailed product assessment report, covering all the requested review aspects. High product quality, robust architecture and good performance were confirmed from the source code point of view. Additionally, we identified a major man-in-the-middle attack vulnerability during the architecture review.

The results allowed the customer to view the deal from a new perspective and make a risk-free business decision. At the end, the customer chose in favor of the company acquisition, which allowed them to create a complete and reliable product offer.

Technologies:

Mobile Apps:

  • Objective-C
  • Java for Android

Backend:

  • Delphi
  • C#

Frontend:

  • ColdFusion
  • JavaScript

Other:

  • Windows OS based tech stack
  • VMware virtualization and clouding
Keep Connected
Sign up for our newsletter
  • This field is for validation purposes and should be left unchanged.