A Secure and Reliable Document Management System is Essential.docx
Uber Clone Script
1. The Dirty Truth About
Any Taxi Software
That You Don't Know !
2. 03/10
01
IS IT BUSINESS
READY?
02
IS IT EASY TO HACK
YOUR BUSINESS?
03
DO YOU REALLY
OWN IT?
Not all running software you see can be
used in a real business environment.
Will cease running even when a few
thousand users onboard.
Beware! A novice hacker can bring down
your software easily.
Ask your developer if 'DRACONIAN
SECUIRTY' is implemented.
Note: If not coded in a certain global
standard. You would need to depend on
the developer for any changes in future.
This is a common trick used by
companies to control the customer.
3. 01
IS IT BUSINESS READY?
Read this disturbing review by Thomas from Adelaide, Australia
" ...well finally after speaking to atleast 6 different vendors,
I decided to choose the Taxi Dispatch Software from
this company [ name removed ]. I do a free trial run.
The demo ran smooth, seemed to have all the features.
I tested it inside-out and everything seemed fine.
So, I went ahead and made the purchase.
I spent good on marketing and on-boarded near 1500+ customers in and around my district.
Bought in my existing fleet of cabs and also started signing in taxi's from the union. Everything went well until the
harvest festival. For the first time, I had a simple surge in traffic. Not much, like just 80+ people tried to use it
simultaneously and hell broke loose.
The app simply failed to load! it just kept spinning. I would have easily used that festival to make my app an
instant hit. But everything fell apart. Even the drivers left....."
Sad, but true. Not all Technologically ready products are business ready. Being Business ready means, your Taxi
Dispatch Software needs to be programmed in a manner to easily accommodate at least 1000+ parallel users at
any given point of time.
Most companies don't give this factor a thought. Or even worse, they don't have developers who know how to
code a product that will handle a lot of users.
On the other hand, there are companies that just claim their software can handle traffic but in reality they might
have not even tested it. If your Taxi dispatch Software is not business ready, it will fail when you try to run a real
business with it.
4. 02
IS IT EASY TO HACK
YOUR BUSINESS?
However good looking your Taxi Dispatch Software is.
Or, how much ever business ready it is.
If the system has not been build with strong security
foundations, it can be a disaster. Read on...
You need to understand, a Taxi Dispatch software involves
mobile apps on different platforms.
Front end and admin panel. A backend server side code
running.
In such a scenario there are various communications happening just within your system in so many ways that
you cant imagine.
Such an environment is also the most favourite playground for hackers. The reason, I keep saying security
protocols needs to be employed from the start of developing the system is: It CANNOT be added after the
system is developed.
Sadly most of the companies that develop the taxi dispatch software add security after its developed.
And it doesn't work.
There are a zillion ways even a novice hacker can hack your Taxi dispatch system effortlessly using a set of
elementary tools. In fact, there are automated bots that do the job.
And these hackers are damn cunning. They never waste their time on newly setup systems. They only work on
systems that have been running for some time and is making some decent money. So, they can take it over and
demand ransom.
So, please make it a point to ask your Taxi Dispatch Software developer if they have followed the DRACONIAN
SECURITY implementation process. Right from the start of the development cycle.
5. 03
DO YOU REALLY
OWN IT?
This is the million dollar question. If you are a coder, you will
already know what Am going to reveal.
Simple, you can program a product so other developers
find it super difficult to understand or modify it.
Many Taxi Dispatch software companies follow this strategy
to retain the customer.
If you try to hire a freelancer or another company in future to customize or maintain your product, it will be
a nightmare. Other developers wont understand why calls to functions and classes are made out of the blue.
Or why the business logic layer in the code is in so many different layers. Or why the API channels pass
through a different framework. In the eyes of the new developer the entire coding will be chaos.
This being an age old technique, now companies have become smart. They use existing frameworks like
Laravel, Node, Code igniter etc. and still make the functions inside complex. So, when asked about this point
they just say its done on standard frameworks and escape. Make sure, the coding practice in your Taxi
Dispatch Software follows the 'waterfall' model.
This model cannot be messed around with and is the most straightforward approach to coding. It's
considered the best methodology to program and also deliver any products.
Also, it helps to easily transition the entire code base to next set of developers. Any new programmer can
easily hit the road running when this is followed.
6. Smart-Car.Tech
DEAR CUSTOMER,
Welcome to the world of SMART-CAR.TECH.
We're committed to making your business a success. Our
product incorporates some of the best features and
measures to help you run the business as smooth as
possible.
We're excited for you and we understand that you're here
to speed up your Go To Market Time by using our product.
We are aggressively looking forward to meet your
expectations.
If you have any questions related to the product or
marketing your taxi business, do get in touch with us at
info@smart-car.tech | www.smart-car.tech
7. SMART-CAR.TECH
COMPANY BACKGROUND
Smart-Car’s Nikola is a growing web and mobile
application Development Company that is located
around the world and has its development center at
Bangalore, India. The silicon valley of India. We are a
team of 50 people on web and mobile application
development with average of 8 years of experience.
Our main area of expertise is building mobile
applications on the iOS and Android platforms.
We do application development for start ups,
agencies and enterprises in various industries like
E-commerce, Healthcare, Automobiles, Social
network and Educational area.
Our experienced developers have worked on PHP,
NodeJS, HTML5, AngularJS, CSS3 and other modern
web technologies. They've worked on projects that
involve building products for the CRM, ERP,
Ecommerce, Mobility, and Automobile industries.
As a team we also contribute to various community
projects in our free time. This brings out the best in
us.
8. SMART-CAR.TECH
ABOUT
NIKOLA
Base Product can be setup in 24 Hours
Industry Leader in adding new features first.
Considers Security an IMPORTANT product
feature.
Unlimited users and Drivers
Successful Rational robot simulation test
Real world Product testing.
Deployed for Customers with thousands of users
Installation Support for Ultimate Package.
Complete Marketing Service for your Taxi
Business (Optional)
Complete White label solution.
100 % Source Code and Installation
Documentation
WHAT MAKES NIKOLA BUSINESS READY?
ON-DEMAND TAXI APPLICATION THAT HELPS
YOU RUN YOUR RIDE HAILING BUSINESS
SMOOTHLY.
IS NIKOLA BUSINESS READY?
Nikola by SMART-CAR.TECH was created to cater
to Taxi businesses that were finding it hard to gain
strong foothold in a market that they once ruled
before app based aggregators like UBER, LYFT etc
came about.
NIKOLA was built tough to tackle the modern day
challenges that these offline taxi businesses face
and give them a new lease of life online.
9. Smart-Car.Tech
Accept / Reject Requests
Trip History
Toggle Availability Status
On-board Vehicle
Accept Airport Booking
Reject Airport Booking
Call Rider
Track Trip Status
Invoice through email
Chat with Rider
Normal Booking
Airport Ride
Rental Ride (Hourly Package)
Ride Variants (Basic, Premium, Luxury)
Unlimited Cars
Unlimited Drivers
Pre-ride Fare Estimator
RequestMatch Algorithm 2.0
Proximity based requests
In-App Chat
Display Driver Details
Call Feature
Ride Tracking
OTP while registration
App side language change
App side Currency change
Make Payment
Confirmation Receipt
Ability to rate driver
Geo Fencing
FEATURES OF ONDEMAND TAXI
APPLICATION
USER APP (iOS & Android)
Driver App (iOS & Android)
Includes: Corporate Dashboard | Call Center Dashboard | Admin Dashboard
Mobile Application will work in English and can be customized
to any other language.
10. We follow what we call as the Pyramid Testing
Procedure where as soon as the developer hands
down the code to First level testing engineer, it is
reviewed for Basic Functionality Flaw Testing
(BFFT).
Where basic functions on the app are meticulously
tested every time an update is put out.
Later the Secondary Test Engineer tests the code
for logical flaws and other complicated scenarios
known to us.
Feedback is given to the developers who would
rectify any mistakes and then move to optimize the
code for speed and security.
At the final stages of the product development, the
code is well documented so any developer you hire
to make changes would be able to do so with ease.
Our coding approach is modular and the meets the
global standard to make the product easy to work
on. Any developer can take it and add feature or
customize existing features to create a truly unique
product without our dependency.
The code has gone through rigorous testing and
multiple iterations by different teams. Nikola has
evolved over time and every new feature added is
regularly tested with multiple scenarios in mind.
In an unfortunate event, that we do miss out a
minor bug, we immediately get down to fixing it.
The code life cycle is documented and updated as
per recommendations by the Operating Systems
manufacturers from time to time. When there is a
new OS update by either Android or iOS there are
various aspects to consider, we prioritize and work
on releasing the updates to our customers.
CODE QUALITY AUDITING
SMART-CAR.TECH
11. SMART-CAR.TECH
We're leaving no stone unturned when it comes to
DRACONIAN SECURITY.
Making sure that the product not only stays up to
date with the features for you to scale and grow
your business but is also secure. A secure
application can withstand the test of time and
protect your customer data from most of the basic
security breaches known to us.
The code has also been audited by a third party
security firm for any potential breach possibilities.
SECURITY
01
Basic security compliance and
Penetration Testing procedures
02
Code level security measures and best
practices have been incorporated.
03
Up to date third party Components
with the latest security patches used.
Some of the security measures we've taken
DRACONIAN SECURITY is a 25 point security iteration that ensures your Web and Application security
from most of the attacks that are prevalent today.
Role based access: Access segregation and user Privileges were tested for data leakage and other known
issues.
Input Controls: Thorough Input validation checks were done to ensure no out of range value, mismatch
and Common controls related errors were occurring.
Password Encryption: Password encryption was checked to see if the hash was getting generated and
saved securely in the database.
Login Inactivity: Proper functioning of system wide session inactivity detection and termination were
tested.
Cross Site Request Forgery (CSRF): Measures to prevent CSRF and other common forms of session
poisoning attack methods were checked.
Directory security: Directory write functionality is disabled by default.
Suspicious URL String Filter: Longer characters are truncated while trying to pass on potential malicious
value through URL request.
NON-English String value rejection: Requests loaded with Non-English characters are rejected. This is
done to prevent attacks that use certain non-Unicode/non-roman characters to crash the application.
Please note: Some security measures require you to implement third party components like SSL etc., Please talk to our installation experts to know more.
12. SMART-CAR.TECH
SECURITY
Autocomplete is disabled on sensitive section of the system and the app.
Systematic Error logs maintained to trace any unintended events that the app may endure.
It is not possible to use sensitive information revealed by error messages to launch further attacks.
SQL injection preventive measures
MIME Type upload restrictions
Brute force attack restrictions (Custom)
Cache Poisoning prevention (Applicable for Admin Panel)
CloudFlare compatibility (Setup not part of the application)
SSL Compatibility and 100% encrypted app communication testing.
13. Ram – 2 gb min, HDD - 15GB min, Ubuntu - 14.04 LTS, Lamp - Mysql 5.4 and above, PHP
We highly recommend DigitalOcean or AWS(Amazon Web Server) server for hosting.
Server - Digital Ocean Sign up here > Choose $20 droplet > OS -16*64 and once you have purchased,
share us the server credentials that you receive in your email.
Twilio - Go to: https://www.twilio.com/ -> Sign up -> Fill in the details -> You
Mandrill - Click on this link -> http://mandrill.com/ -> Sign up -> Fill in the details -> After
Play store account - Click on this link here to create Playstore account-> Create an account - you will
have to pay $25 to enroll on developer console ->Share us the account credentials.
Facebook login -> Please create new one or giving us the existing credentials for social registration.
Logo , Splash screen , Brand name should be provided. Resolution will be shared once the project is
signed off by the support head.
Proposal
API Documentation
Source Code of iPhone, Android and Backend Application
Web frontend landing page, admin portal, API and Corporate
Dashboard. iPhone Application
Android application
Below mentioned are the Basic server requirements for hosting:
5.4 and above, Apache - 2.4.
- And please find the third parties steps for each signup you will have to provide us below list details:
will have to register and upgrade your account by recharging your wallet for $20 > Share
us the account credentials.
logging go to account - Choose transnational -> and then mandrill -> you will have to add
your payment method by selecting monthly.
DOCUMENTS AND DELIVERABLES
1. DOCUMENTATION DELIVERABLES:
The following documentation and deliverables will be provided,
2. APPLICATION DELIVERABLES:
14. UBUNTU -> Firefox– 45.0, Chrome – 49.0.2623.87
WINDOWS => Chrome - 49.0.2623.87, Firefox- 45.0, IE - 11.0
MAC => Safari Latest version
iPad - 768 x 1024
iPhone - 320x480
Samsung Note - 480 x 800
Moto G - 720 x 1280
Application will support in iOS 7 to latest
Application will work in iPhone 5 to abovedevices. Application will work in portrait mode
We can provide free support on the requirements that we delivered. Any defects
Any new additional requirements should be consider as Change of Request (which we will
Any high level defects occurs will be handled within 12-24 hours of turnaround time and
Lower level issues/changes will be responded within 48 hours of time period
The Customer will be required to undertake acceptance of the Deliverables within six [06] days of
the completion of the Deliverables.
The Customer must advise to Smartcar’s team of any defects that are identified for correction. If
no acceptance is undertaken within six [06] days of completion of the Deliverables, the
Deliverables will be deemed to have been accepted by the Customer and the Customer will be
invoiced for any charges due.
Source code will be delivered upon clearance of full payment
SUPPORTED VERSIONS AND DEVICES:
Web application:
Web browser compatibles are below,
Responsive design integration compatible resolution of devices are below:
iPhone Application:
only.
Android Application:
- Application will support in Android OS 4.4.4 to Android 9.0
- Application will work in android phones only which is OS of 4.4.4 to 9.0
- Application will work in portrait mode only.
Conditions:
After the scope document is signed, the scope of the project is fixed. New requirements have to be
submitted as change request and are chargeable.
in the system will be fixed.
handle it as new project enhancement).
revert back the status to team. Based on the issue, we will be flexible.
15. Once again, Thank you for your Interest in NIKOLA, Do write to us if you have any question
here:
info@smart-car.tech