ΙPROFITS INTERNET BANKING - Creating Value … banking. Software products developed are the ... The...

ΙPROFITS® INTERNET BANKING

This document is copyright and reproduction or transmission, in whole or in part, in any form or by means Whatsoever, without the express written permission of INTRASOFT International S.A.. is forbidden. This document contains proprietary information, which is protected by copyright.

i-PROFITS® Internet Banking

Copyright INTRASOFT INTERNATIONAL S.A. 2

TABLE OF CONTENTS

1. INTRODUCTION ....................................................................................................................2 2. SOLUTION OVERVIEW............................................................................................................2 3. SOLUTION ADVANTAGES.........................................................................................................3 4. DESCRIPTION OF MAIN TASKS .................................................................................................3 5. LOGICAL ARCHITECTURE ......................................................................................................19 6. SECURITY .........................................................................................................................21 7. ACTIVEOTP TOKEN SUBSYSTEM .............................................................................................23



1. INTRODUCTION

iPROFITS® Internet Banking consists of a total, complete, scalable and integrated Internet Banking which successfully accommodates current and future requirements of a Banking Institution for Retail and Corporate Operations.

The solution combines low price, rich functionality, high performance systems and is complemented with professional support maintenance and other relevant services provided by a highly skilled and experienced team of professionals. Following careful study of the requirements of a modern Banking Institution, the solution is based upon proven products and modular / scalable technical solutions which form an ideal architecture to deploy an Integrated Internet Banking that assists the Bank to enhance its services quality, increase its customer base and differentiate in the market through high-level technology infrastructures that provide a clear competitive advantage.

2. SOLUTION OVERVIEW

The Technical Architecture of the solution is based upon cutting edge technologies, such as MS Windows 2008 Server, .Net Framework and SQL Server 2008 provides for high availability (built in Load Balancing and Fail over) with minimal configuration efforts. In addition, the architecture provides for vertical and horizontal scalability so that the Bank can accommodate not only future transactions’ high volumes but can also easily introduce additional functionality. The built in integration with PROFITS® Core Banking System based upon web services provides the capability of fast exposure of PROFITS® functionality to the required channels, in accordance with the business needs. The Open Architecture of the proposed PROFITS® Gateway platform upon which the proposed solution is based in order to achieve the on-line, real-time interface to PROFITS® is designed and developed in such a way so that the proposed solution not only can interface to any other core banking system or third party application but also to be able to accommodate the interface of the core banking system to any other alternative delivery channel. This architecture enables the proposed solution to be completely independent of the core banking system in use and serve as the gateway to this core banking system for all alternative delivery channels. Very rich end user functionality and powerful administration tools are also included.



3. SOLUTION ADVANTAGES

Our approach offers to the Bank an integrated solution holding a set of advantages, which we believe renders INTRASOFT International SA as the most suitable to implement the Internet Banking System required. INTRASOFT International SA’ list of competitive advantages is the following:

• Company commitment to Internet Banking as core activities of its financial sector. INTRASOFT International SA is committed to the development enhancement and promotion of the internet banking. Software products developed are the outcome of a large production activity which is based upon contemporary methodologies and international quality standards (ISO 9001:2008) that guarantee the reliability of the software produced, both in its design aspects, as well as throughout its operational use.

• Cutting edge technologies and rich functionality, as mentioned above and described in the following paragraphs.

• Carefully structured project teams (integrations, support, security) built with highly skilled and experienced experts, to cater for the specific needs of the Bank and provide exceptional professional services for the implementation of the proposed solution.

• Close cooperation with the Bank’s Project team providing business and technical consulting, regarding the successful implementation.

4. DESCRIPTION OF MAIN TASKS

Following the needs of modern banking practices that dictate the introduction of the new delivery channels for banking services, PROFITS® Internet Banking System offers thin client (browser based) functionality. The Internet Banking System allows the Bank to:

• Improve efficiency and quality of service to the customer

• Enhance competitiveness in changing market demands

• Easily provide secure information to the customer via the internet

• Ensure Customer Service Availability Anytime, Anywhere

• Expose existing PROFITS® or any other Core Banking System’s functionality to the Bank’s clients in a secured manner

The Internet Banking System provides the following transactions:



HOME

In home page there is a brief info of customer position. The are message that are visible only by the specific user or by all bank’s user.



ACCOUNTS

My Accounts The Internet Banking System enables the customer to view the book and available balance per his/her accounts. Account Details The Internet Banking System enables the customer to view the various balances and other information of any of his/her requested accounts.

Term Deposit Details Main information of the customer's term deposit accounts is provided per Account. Loan Account Details Main information of the customer's loan accounts is provided per Account.

Account History The customer can view the account statement. This process is used to retrieve all the financial transactions of a deposit account for a given period. This transaction applies to first demand and overdraft, included in the Customer Profile.



Transactions History The customer can view the transactions history of several accounts in a time period. This process is used to retrieve all the financial transactions of deposit accounts as per their status (pending, completed etc) and the type of the transaction (transfers, payments, requests etc) for a given period. This transaction applies to first demand and overdraft, included in the Customer Profile.



FUNDS TRANSFER

Transfer to my account (same currency) The customer can transfer funds from its own account to another in the same currency (first demand or overdraft). Transfer to my account (different currency) The customer can transfer funds from its own account to another in a different currency (first demand or overdraft), using the exchange rate for conversion. Funds transfer to others (same currency) The customer can transfer funds from its own account to another bank customer’s account in the same currency (first demand or overdraft). Funds transfer to others (different currency) The customer can transfer funds from its own account to another bank customer’s account in a different currency (first demand or overdraft), using the exchange rate for conversion. Funds Transfer at a Domestic Bank (STP, NoN STP, Cash) The customer can transfer funds from its own account to a beneficiary at a domestic bank through an electronic clearing house of interbank transactions (ex. DIAS).



Interbank Outgoing Order Issue (SWIFT) The customer can transfer funds from its own account to a beneficiary, issuing an interbank outgoing order through SWIFT.

Term Deposit Opening The customer can open a term deposit account. Term Deposit Partial Withdrawal This transaction enables the customer to make a partial withdrawal from a term deposit account and transfer the money to a deposit account Term Deposit Early Payment This transaction enables the customer to make an early payment of a term deposit and transfer the money to a deposit account.



Term Deposit Increase Capital This transaction enables the customer to increase the capital of a term deposit account from another deposit / term account.

Standing Order Transfer The customer can enter a standing order for a transfer from its account to another account of its own or another bank customer’s account, defining among others the frequency and the expiration date. Standing Order Transfer List The customer can view all the standing order and amend them. Funds Transfer History The customer can view the history of its transfers using searching criteria, such as the status and the type of transfer (simple or group).



PAYROLL

Import Payroll File The Internet Banking System enables the authorized user of the organization to import a payroll file, in order to credit the bank beneficiary accounts, debiting the organization account (real time mode).

Payroll List The customer can retrieve the list of payrolls during a certain period.



PAYMENTS

Third Party Payment The Internet Banking System enables the customer to perform any third party payments with a corresponding agreement with the Bank. The payment can be done from first demand or overdraft accounts. Group Payment The Internet Banking System enables the authorized customer to perform a set of third party payments to any third party organization with a corresponding agreement with the Bank. This transaction is performed on behalf of a group of customer’s mandators. Payments History The Internet Banking System enables the customer to view all payments (simple or group) with their status (pending, completed etc).



CHEQUES

Cheque Book Order The Internet Banking System enables the customer to request cheque books for its accounts selecting the dispatch mode. This transaction applies to deposit account, according to the product definition. Cheques Ιnquiry The customer can view the status of the cheques issued for its account.

Stop Cheque Payment The Internet Banking System enables the customer to stop a single cheque or a range of them by using the Stop Cheque Payment Transaction. Bill Inquiry The Internet Banking System enables the customer to inquiry for all types of bill’s that correlated with him/her.



TOOLS

Exchange Rates The Internet Banking System provides the customer with the daily exchange rates of all predefined foreign currencies. Exchange Calculator The Internet Banking System enables the customer to convert an amount in one currency to another currency using the daily exchange rates. Forecast Total Loan Payment The customer has the ability to forecast the total payment of a loan Repayment Schedule On Amortize Loans The customer can view the repayment schedule of amortized loans.



ORDERS

Statement Copy Order The Internet Banking System enables the customer to request official printed statements of its accounts held with the Bank. This transaction applies to deposit accounts. Request New Account Insert The Internet Banking System enables the customer to request to insert a new deposit or loan account in order to be used through web banking upon bank’s approval. Request Cash / Bank Draft The Internet Banking System enables the customer to make a request for cash withdrawal or bank drafts issue. Request Account Opening The Internet Banking System enables the customer to request to open an account upon bank’s approval.



Request e-token The Internet Banking System enables the customer to request for an e-token. Request Personal Data Change The customer can request to change his/her data which are kept in core banking system Request Card The customer can request for a new card.



ADMINISTRATION

Account Management The Internet Banking System enables the customer to amend the accounts’ description in a friendly manner. Add Third Party Account The Internet Banking System enables the customer to append third party bank customer accounts. Customer Position The customer can view his/her position. Customer Details The customer can view his/her details. Change Password The customer can change his/her password Change Username The customer can change his/her username



Create Simple User The customer can add a new user with out the capability to execute transaction to core banking system. Edit Simple User The customer can manage the simple users which are opened by him/her



The e-token assures the safety of financial transactions. It is provided by the Bank and it is unique for each user producing unique numbers. E-Token Synchronization The customer can synchronize his/her e-token Disable Token The customer can disable the e-token in case of loss, for example



5. LOGICAL ARCHITECTURE

In the following architecture schema is displayed the global architecture of the e-Banking application i-PROFITS®. The components of the system architecture are analyzed hereafter:

• iPROFITS® e-Banking End-User Application, application of e-Banking service subscribers • iPROFITS® Admin Tool, application of e-Banking service administrators • PROFITS® Gateway, middleware of the application of the internet services (web services) of the e-

Banking through which is done the connection with the banking system PROFITS® • iPROFITS® Scheduler Service, windows service for scheduling and executing future payments and

transfers • iPROFITS® Token Management, OTP (One-Time-Password) for the authentication of the users during

the transactions’ execution • iPROFITS® Translator, windows application for the management of the literals and the messages of

the e-Banking application • iPROFITS® Database, e-Banking database • PROFITS® Gateway Default Value Tool application of manage parameter per channel.



profits

server server server

LAN – WAN (firewalled)

server

profitsgateway.net (SOA)

LAN – WAN (firewalled)

transaction transaction transactiontransaction

i-PROFITS e-Banking applicationTOKEN Server

Βάση δεδομένων i-PROFITS

Χρήστες ηλεκτρονικής τραπεζικής

Adminstration Tool

Εσωτερικοί Χρήστες της Τράπεζας

HTTPS

Εξωτερικά Δίκτυα

(Internet)

local memorydefault values storage

Εσωτερικά Δίκτυα

(Intranet)

i-PROFITS Translator

i-PROFITS Scheduler

The Internet Banking and the administration tool will have access to the Bank’s host systems through PROFITSGateway.net. PROFITSGateway.net is an application framework that enables 3rd party access to PROFITS® application servers. That means that any new PROFITS® application server is exposed with minimal coding efforts to the Internet Banking Application. The main tasks of the PROFITSGateway.net are:

• Managing and using the default values used by the Profits Application Servers • Interfacing with PROFITS® or any other Core Banking System • Authenticating the user, as a valid Core Banking System user • Interfacing with 3rd Party systems or applications • Interfacing with other alternative delivery channels



6. SECURITY

SSL The Transmission Control Protocol/Internet Protocol (TCP/IP) governs the transport and routing of data over the Internet. Other protocols, such as the HyperText Transport Protocol (HTTP), Lightweight Directory Access Protocol (LDAP), or Internet Messaging Access Protocol (IMAP), run "on top of" TCP/IP in the sense that they all use TCP/IP to support typical application tasks such as displaying web pages or running email servers.

The SSL (Secure Sockets Layer) protocol runs above TCP/IP and below higher-level protocols such as HTTP or IMAP. It uses TCP/IP on behalf of the higher-level protocols, and in the process allows an SSL-enabled server to authenticate itself to an SSL-enabled client, allows the client to authenticate itself to the server, and allows both machines to establish an encrypted connection.

SSL is the de facto standard security technology for establishing an encrypted link between a web server and a browser. This link ensures that all data passed between the web server and browsers remain private and integral. SSL is an industry standard and is used by millions of websites in the protection of their online transactions with their customers.

To be able to create an SSL connection a web server requires an SSL Certificate. When the user chooses to activate SSL on the web server a number of questions will need to be completed regarding the identity of the Bank’s website and organization. The web server then creates two cryptographic keys - a private key and a public key.

The public key does not need to be secret and it is placed into a Certificate Signing Request (CSR) - a data file also containing the Bank’s details. The Bank’s user should then submit the CSR. During the SSL Certificate application process, the Certification Authority will validate the user’s details and issue an SSL Certificate containing the details and allowing the user to use SSL. The Bank’s web server will match the issued SSL Certificate to the Bank’s private key. The Bank’s web server will then be able to establish an encrypted link between the website and the Bank’s customer's web browser.



The complexities of the SSL protocol remain invisible to the Bank’s customers. Instead their browsers provide them with a key indicator to let them know they are currently protected by an SSL encrypted session - the lock icon in the lower right/left-hand corner, clicking on the lock icon displays the Bank’s SSL Certificate and the details about it. All SSL Certificates are issued to either companies or legally accountable individuals. Typically an SSL Certificate will contain the Bank’s domain name, Bank’s company name, address, city, state and country. It will also contain the expiration date of the Certificate and details of the Certification Authority responsible for the issuance of the Certificate. When a browser connects to a secure site it will retrieve the site's SSL Certificate and check that it has not expired, it has been issued by a Certification Authority the browser trusts, and that it is being used by the website for which it has been issued. If it fails on any one of these checks the browser will display a warning to the end user letting them know that the site is not secured by SSL.



7. ACTIVEOTP TOKEN SUBSYSTEM

In addition, an OTP electronic pin generator can be used to ensure two stage security. Static passwords which are unique for each person are the simplest and frequently referred means of identity confirmation in Online Banking. However, in some cases this may turn out to be an inadequate way of preventing fraudulent activities in the virtual medium with the development of new technologies, due to the lack of care and knowledge of the user or system deficiencies in the computer. The said threats can be prevented only due to new security systems which are updated and strengthened. The OTP Token is a product that ensures a two stage security for users of Online Banking. Each time, the OTP Token generates a "One Time Password” and it can be used in additional to your ordinary password every time you login to Online Banking. Each OTP Token device is produced specially for its user. The OTP Token provides a new password of six to eight digits different from the previous one, each time you use it. This password becomes invalid the moment you enter it. That means that it cannot be used a second time either by yourself or by other persons included in the OTP Token system. In addition, to use easily, the OTP Token has been prepared in the form of a key ring. If it is lost, you can cancel it by telephone call and request a new one immediately. What are the advantages?

• It ensures two-stage security, • The generated passwords cannot be used more than once, • It is easy to use, • The OTP Token device can be taken everywhere, • It does not require any loading of software; it works independently from the operating system.

Our implementations use the ActiveIdentity SDK which gives us the ability to be independent form 3rd party servers and be able to host the entire solution in one server.



WEB SERVER

iPROFITS

OTP Authentication

Subsystem

Core Banking auth request

auth response

auth response

true

auth request

OTP authentication

PROFITS authentication

Core Banking Sytemapplication server

The entire ActiveOTP subsystem is hosted in the same servers that host PROFITSGateway.net due to the nature of the application.



Document history

Ed. Rev. Date Author Description Pages 1 00 16/02/2011 K. Koutoumanos

D. Kalikatzaros Initial Release 18

2 00 16/10/2012 K. Koutoumanos Release 2.00 reflect changes in added functionality

24

Action Date By Prepared 16/10/2012 K. Koutoumanos

Reviewed 17/10/2012 A. Rezitis

Approved 18/10/2012 I. Gekas

Revised

Approved

DISTRIBUTION LIST

Num. Name and Title Date Distribution mean

INTRASOFT

INTERNATIONAL

S.A.

18/10/2012

ΙPROFITS INTERNET BANKING - Creating Value … banking. Software products developed are the ... The...

Documents

Transcript of ΙPROFITS INTERNET BANKING - Creating Value … banking. Software products developed are the ... The...