CBS Interfaces - ICAI | Online Web TV

Report
CBS Interfaces
N D Kundu
Agenda
 Alternate Delivery Channels
 Automated Teller Machines
 Internet Banking
 Real Time Gross Settlement
 Cash Management Systems
External Interfaces
•
•
•
•
•
•
•
•
ATM Interface
ATM interface with switch
Tele banking
Internet banking
Mobile Banking
Cash Management
Real Time Gross Settlement
Bunch Note Acceptor
Central Bank
Clearing House
National Payment System
Bank A
Bank B
Retail Payment System
(ATM, EFTPOS, Credit Cards
Customer
Customer
Customer
I T and Retail Payment Systems
Customer
List of Interfaces and mode of connectivity
Global
Treasury
CTS
DMS
CMS
Interfaces used
19
6
4
6
STP – TCP/IP
1
1
-
2
DBlink
4
1
-
1
FTP
-
-
1
-
STP – SFTP
2
-
1
-
-
1
1
Network Share 9
2
Manual
2
DB Port
1
1
1
-
RDP
-
1
1
-
SMTP
-
-
-
1
Connect-24
• One view to the external world
through all delivery channels
• Middleware for real time interface
of delivery channels to Finacle
• Supports traditional and emerging
delivery channels viz. ATM,
Telephone or Internet using ISO
8583 and OFX standards
Connect-24
Finacle
DATABASE
DATA CENTER
CONNECT-24
e-Channels/
e-Corporate
Public
Network
ATM
ATM
SWITCH
POS
Telebanking
ATM
Deskt
ops
Automated Teller Machine (ATM)
 ATM Card & Debit Card
 Procedure for issuing ATM Cards
 ATM Switches
 Host Security Module
 Natural PIN Generation
 Storage of PIN??
 Track 2 on Magnetic-strip
 Chip based Card
 Cash Dispenser
Functions of ATM
 Cash Withdrawal
 Balance Inquiry
 Cheque book request
 PIN Change
 Mini Statement
 Utility Bill Payment
 Mobile Top-up
 Updation of Mobile number ***
ATM Structure
Functioning of the ATM
 Customer swipe the card
 Enter PIN, encrypted using HSM/SSM
 Validation of data by SWITCH
 Customer authenticated
 Service request like withdrawal of cash sent to Database
 Balance verification for adequacy
 Account debited and on confirmation ATM dispensed cash
 In the changed process, even the cash is not picked up, it will not
gone back to the ATM BIN.
 All details recorded in journal
 Interchange agency –VISA, MASTER, RUPAY
Verification of PIN
 Customer insert card & enter PIN
 Encrypted PIN sent to ATM Switch
 ATM verifies card details from database & confirm




correctness
Natural PIN generated
Switch is having the value which is difference between actual
PIN & natural PIN
This offset value verified using HSM/SSM
If tallied customer/card is authenticated
Change of PIN
 Card inserted, verified from Switch databases
 PIN change option – enter old PIN, verifies through





SSM/HSM
Enter new PIN
Using card no., Natural PIN new offset value generated &
stored in SSM/HSM
Old offset value erased
No where in the system PIN is stored
There is a process of computing PIN using card no. & the
offset value stored in HSM/SSM.
Operational Issue
 Insufficient Cash
 Journal paper exhausted
 Network connection lost
 Faulty card
 CCTV should be there
 Guard/ watchman should be insisted upon
 Three wrong attempts card should be blocked
 Limit of cash withdrawal, no. of txn per day
 Hotlisting of cards
 Fraud Risk Management Solution
Evaluation of Controls in ATM
 Card & PIN generation process
 Dealing with surrendered card
 Security of PIN
 Control over cash
 Maintenance of transaction records
 Dealing with lost/ stolen cards
 ATM Switch operations
Card & PIN Generation
 Separate department to handle card & PIN
 Confidentiality in PIN mailer generation
 Reconciliation of no. of PIN mailer & card produced
 Physical & Logical access control
 Flow of data to card printing agency, if outsourced
 Stock of blank cards
 Control on card card embossing & PIN mailer
 PIN & card should be despatched separately by different courier
 Record maintenance
 Handling of returned cards
Surrendered & Captured Cards
 Complete documentation
 Process for replacement of card & PIN
 Process for making captured card ineffective
 PIN mailer need not be returned by customer
 Register for surrendered card
 Removal of captured card on regular basis
 Report from Data Centre & reconciliation
 Capture procedure for entering wrong PIN thrice
Security of PIN
 Report by customer- block immediately
 Not to disclose PIN to anyone
 Process of timely generation of new PIN
 PIN/PIN offset should always be in encrypted form
 HSM/SSM should be in self destructive mode
 All storage for PIN encryption should be zeroised after each
calculation
 No hard copy of record of PIN produced
ATM cash Management
 Documented procedures for cash balancing
 Journal should automatically record all withdrawals
 Cash inserted in each BIN/ cassette should also be recorded
 Cash reconciliation for cash dispensed, remaining cash, misfit




notes
All discrepancies noted & reported
Maintenance of cash & reconciliation by 2 different persons
Wrong denomination – should be doubly check
Daily balance procedure
Record maintenance
 Journal Roll – recording of all events
 Hard copies of journal to be preserved
 Soft copy of EJ – no modification allowed
 Secure storage of EJ
 Journal roll should be checked regularly
 Unauthorised opening of ATM should also be recorded
Lost & Stolen Cards
 Documented Procedure
 Uptodate record of all stolen cards
 Restricted access
 Facility to identify when stolen card is used
 Reject the transaction or capture the card on trigger
 Procedure to note verbal instruction to stop usage
 Replacement card after written request only
 Legal provision to be followed
 Report to be generated & preserved
ATM Switch Operations
 ATM switch is also a server with dtabase
 Card No. & its offset value stored
 Details of hotlisted cards
 Details of surrendered card
 Account balance of customer
ATM- Audit Check List











Security guard & CCTV
Control on Server OS & DB
Sys Admin controls
Security of Admin password
Setting of parameters like max. no. of withdrawal, withdrawal per
day, no. of failed attempts etc.
Review the procedure for configuration
Authorised modification only allowed
Security of key encryption & decryption
Review procedure for hot-listing
Review types of logs generated
Agreement with other Banks & agency.
Skimming Sample
Picture Source: http://www.snopes.com/fraud/atm/atmcamera.asp
Skimming Sample
Picture Source: http://www.snopes.com/fraud/atm/atmcamera.asp
Skimming Sample
Picture Source: http://www.snopes.com/fraud/atm/atmcamera.asp
Internet Banking
 Banking transactions through Internet
 Permitted to registered customer only
 Any time, any where banking 24X7
 Adequate security to be built
 Customer awareness to be increased
 Beware of phishing attacks
Internet Banking Components
 Demilitarised Zone
 Web server
 Internet Banking Application Server
 Internet Banking Database Server
 Middleware – Connect 24
 Central Database Server
 Firewal
Customer accesses Bank’s website
using a browser
Web server sends the Bank’s Webpage
to the customer
Customer types Internet Banking user
name and password
Web server sends user name and
password to IBAS
IBAS requests user name and
password of the customer from IBDS
IBDS sends user Name and Password of
Customer to IBAS
Customer chooses an IB service say
“Account statement view”
Web server presents the facing page of the
Customer’s account (assuming customer is
authenticated)
IBAS authenticates the customer and
intimates the web server
Web server forwards the service
request to IBAS for processing
A
A
IBAS requests customer
account information from
IBDS
IBDS requests customer account
information from Core DB that is accessed
via Middleware
Middleware forwards request from
IBDS to Core DB
Middleware converts customer
account information to suit the
requirements of IBDS
IBAS accesses the customer
information in IBDS and presents it to
the Web Server
Web server presents the customer a
dynamic web page with the account
information
Customer is presented with the
requested account statement
IBDS temporarily stores customer
account information
Core DB retrieves
customer account
information and
forwards it to the
middleware
Internet Banking Process












Customer application – issue ID & Password
Login password & Transaction password
Change password immediately after first login
Browser based access through web pages
Website/ URL hosted in web server
Webserver is in DMZ of DC
Separate Firewall for Web server
Access through user-ID & login password
Customer detail will flow from web-server to IBAS
IBAS access IBDS which contains all details of IB customers
IBDS will verify the details, otherwise access will be denied
On successful authentication, customer will get access.
IB-available functions
 Fund transfer – self & third party
 Balance inquiry
 Statement of accounts
 Opening of Fixed Deposit & Recurring Deposit account
 Request for Cheque Book
 Stop Payment
 ATM/Debit card queries
 Other value added services
Process Flow
 Customer choose his function say statement of account
 Web server send information to IBAS
 IBAS access IBDS for getting data
 IBDS will interact with Central DB server through middleware
 Middleware convert the data to suit the requirement of central DB
 IBDS forward customer data to IBAS which process the request
 Statement of accounts from central DB made available to IBDS
 IBDS will send to IBAS then to web browser
 Web server generate dynamic web pages
 Customer will get their required services.
Security Concern
 Hacking, Phracking
 Phishing, Vishing etc
 Incorrect account linkage
 Fraudulent balance transfer
 Unauthorised access
 Cyber-related frauds
 Lack of segregation of duties
 Incorrect Firewall configuration
 Insufficient built in application controls
 Unstructured change management procedures
Audit Program of Internet Banking













Security policy
User inentity & authentication
Access control to operating staff – proper segregation
Sysadmin roles & responsibilities
Firewall configuration
Live & test environment separation
Network security
Router configuration
Web server security
Built in operation control
Key Management procedure
HSM/SSM security
Change Management process
Data/information/system security
 Internet banking systems have security features such as
 separate transaction passwords, two factor authentication,
multi-channel process for registering payees, upper limit on
transaction value and SMS alerts to customers.
 Appropriate verification procedures should also be
incorporated at all channels such as phone banking, ATMs,
branches and internet to ensure that only genuine
transactions are put through.
36
ujvala consultants
Naavi
Defeating 2-factor
•Vishing attacks
–Phisher poses as Bank’s call center personnel on telephone and
requests customer for SMS OTP for verification
•Smartphone malware to capture OTP
–Malware on symbian and Palm OS for stealing sms from banks
• Physical SIM replacement
– Multiple cases seen in India over last year
Enterprise Security- trends & concepts
Phishing, NetBanking & Call Center Fraud Example
Card
Application
My Accounts
Internet
Banking
Account
Balance
Uses Harvested Web
Credentials
Get Personal Data
from Autoforms
Authenticate using
Personal Details
and gets new PIN
Request Transfer
Account Id
12345678
Passcodes
godisGreat
2 Factor Auth
Address
Belapur
DOB
15 Aug 1947
Products
Card, Current
Mother’s Name
Sheela
Call Center
Customer
Sales
Officer
Discussion
Room
Reception
Universal
Teller
Customer
Care Team
Customer
Waiting
Area
Internal Transaction Fraud
• 30 crore transferred in 12 minutes using RTGS
• Fraud transactions were carried out early morning before the branch is fully
•
•
•
•
•
operational
Bank employee logs in with an user-id with “Maker” privileges
Creates a RTGS transaction for 17 Crore debiting a corporate account in
another branch. Beneficiary is a corporate account in external bank
Logs out and Logs in from same machine with user-id with “Checker”
privileges and approves transaction
Repeats the same cycle to put a second RTGS transaction of 13 Crore from
same account
All fraud transactions were carried out from a new IP in the branch subnet
range
Presentation Name
Risk Based Authentication – Internet
Banking
Token, Knowledge Based,
SMS, Soft tokens, Device
Based, Interactive
Customer
Challenge
Policies
Block
Fail
High
Risk
Login
/Transaction
activity
Pass
Real Time Risk
Assessment
Continue
Low
Risk
Risk Based Authentication Flow
Cash Management System
 Exclusive utility for all India based customers
 Collection & Payment at different location – large scale
 High volume of disbursement for salary, dividend payment
 Need not open account in multiple centres
 Multiple centres authorised to receive cheques etc.
 Credit to base account on same day subject to limit
 MIS generated, partywise, location wise report available
 Information through e-mail
Parameter setting
 Clearing cycle
 Credit limit
 Slab maintenance
 Interest calculation
 Processing charges
 Waiver of charges
 Validation of data
 Encryption
Controls
 Calculation process to be verified
 Any modification allowed in middle?
 Integrity of data – implement encryption
 Security on data moving through internet
 Authentication & verification
 EOD processing
 Pooling account – reconciliation- zeroise daily
 Interface with CBS
 Built in controls for exception reporting
 Audit trail to be maintained.
Real Time Gross Settlement
 Inter Bank Money transfer system
 No waiting period- immediate within 2 hours
 All transaction are gross, reflected in central bank account
 Payment is final & irrevokable
 Minimum amount 1 lac, no upper limit
 Debit first to customer account & credit through RBI
 Customer make the application, rest is automatic
 Correct account number and IFSC code of the Bank branch
 Money will return within 2 hours, if not credited.
RTGS information
 Amount to be remitted
 Customer account number
 Name of beneficiary Bank
 Name of beneficiary
 Account number of Beneficiary
 IFSC Code
 Type of account
RTGS Technology
 Routed through INFINET
 SFMS formats are used for messages
 RBI CBS used mainframe to handle the system
 Inter Bank Fund Transfer Processor (IFTP) & Integrated





Accounting System of RBI used.
Message in standard MQ series software of IBM
RTGS Client software is participant interface-PI
PI processes the inward and outward messages
IFTP transmit it to RTGS of RBI
From RBI it will travel to destination Bank in the same way.
RTGS
RTGS Message Flow
 Participant Interface
 Inter Bank Fund Transfer Processor at RBI
 RTGS System at RBI
 Communication Systems
 Encryption Process of Transactions
 PI Interface
- Gateway Module
- Outward Message Manager at OMM server
- Inward Message Manager at IMM server
 User Control Tool
 Settlement
RTGS

similar documents