Scribd Logo
Hochladen

Willkommen bei Scribd!

  • SWIFT Banking Solution Overview

    Hochgeladen von

    Santosh Sharma
    54 Ansichten14 Seiten
    This document discusses S.W.I.F.T., the international banking network. It describes the basic network architecture, including VPN boxes, routers, and modems. It outlines the process for banks to join S.W.I.F.T., including getting regulatory approval, ordering necessary software and equipment, and configuring the network. It also discusses key aspects like the SNL software, external interfaces, BKE for secure key exchanges between banks, and continuous technology improvements to the network.

    Originalbeschreibung:

    .

    Originaltitel

    SWIFT.ppt

    Copyright

    © Attribution Non-Commercial (BY-NC)

    Verfügbare Formate

    PPT, PDF, TXT oder online auf Scribd lesen

    Stufen Sie dieses Dokument als nützlich ein?

    Sind diese Inhalte unangemessen?

    Dieses Dokument melden
    This document discusses S.W.I.F.T., the international banking network. It describes the basic network architecture, including VPN boxes, routers, and modems. It outlines the process for banks to join S.W.I.F.T., including getting regulatory approval, ordering necessary software and equipment, and configuring the network. It also discusses key aspects like the SNL software, external interfaces, BKE for secure key exchanges between banks, and continuous technology improvements to the network.

    Copyright:

    Attribution Non-Commercial (BY-NC)
    Als PPT, PDF, TXT herunterladen oder online auf Scribd lesen
    Markieren Sie unangemessene Inhalte
    54 Ansichten14 Seiten

    SWIFT Banking Solution Overview

    Hochgeladen von

    Santosh Sharma
    This document discusses S.W.I.F.T., the international banking network. It describes the basic network architecture, including VPN boxes, routers, and modems. It outlines the process for banks to join S.W.I.F.T., including getting regulatory approval, ordering necessary software and equipment, and configuring the network. It also discusses key aspects like the SNL software, external interfaces, BKE for secure key exchanges between banks, and continuous technology improvements to the network.

    Copyright:

    Attribution Non-Commercial (BY-NC)
    Als PPT, PDF, TXT herunterladen oder online auf Scribd lesen
    Markieren Sie unangemessene Inhalte
    von 14

    S.W.I.F.T.

    - Andrew Kannian

    Universal Banking Solution from Infosys

    S.W.I.F.T.
    International Recognition Recognized by RBI/IBA Worldwide Presence Secure Network Well defined standards Continuous improvements in Technology in changing Business Scenarios Caters to all sizes of Banks / NBFIs

    Universal Banking Solution from Infosys


    Confidential and Proprietary to Infosys Technologies Limited

    Basic Network Architecture

    S.W.I.F.T. POP

    LL Modem LL Router Pri. VPN V42 PSTN Mdm Sec. VPN

    Int. WAN Switch

    SNL / Gateway Server

    App. Server (SAA /TS)

    CBT / Main S.W.I.F.T. Connectivity Office


    Universal Banking Solution from Infosys
    Confidential and Proprietary to Infosys Technologies Limited

    Salient features of Network


    The S.W.I.F.T. network operates on IP network. This can be termed as Internet for Banks. This network is physically separate from The Internet The Basic Network Setup consists of 2 VPN boxes provided by S.W.I.F.T. and are pre configured to the settings ( IP Addresses) the Bank has provided at the time of e-ordering, 1 router & modems (PSTN & LL) are also included in the setup.(Depending in the type of Network Resilience the bank has selected) Resilience in having connectivity to S.W.I.F.T. POP by at-least 2 mediums (a combination of dialup & leased lines e.g. 2 PSTN Lines, 1 PSTN & 1 Leased Line, 2 Leased Lines etc.) The Local Network is managed by Network Partners
    Universal Banking Solution from Infosys
    Confidential and Proprietary to Infosys Technologies Limited

    Salient features of Network

    ..contd

    Connectivity to Network only through SNL (S.W.I.F.T.Net Link software provided by S.W.I.F.T. to each bank.)

    A Set of PKI certificates maintained for additional security.


    Use of Hardware Security devices (like ICC Cards & Card Readers) Optional Firewalls allowed for additional security Strict Message format checking on the Network.

    BKE agreements between banks for transfer of Authenticated Messages

    Universal Banking Solution from Infosys


    Confidential and Proprietary to Infosys Technologies Limited

    Joining S.W.I.F.T. as a member


    To join S.W.I.F.T. network banks must get approval from the central bank & the regulatory Authority. ie. RBI/IBA

    It also need to have a valid FOREX dealers license


    Once the criterions are met the IBA forwards the proposal to the S.W.I.F.T..

    The member registers itself on the S.W.I.F.T. network & can e-order the necessary software & equipments. viz. SCR / BCR Integrated Circuit Cards (ICC USER / UKMO / USOF) SNL Network Partner Selection
    Universal Banking Solution from Infosys
    Confidential and Proprietary to Infosys Technologies Limited

    Joining S.W.I.F.T. as a member

    ..contd

    Bank also need to provide to S.W.I.F.T. the IP addresses that the Bank will assign to the VPN Boxes & the Primary / Backup / Test application (SNL) servers. (ie. One subnet other than private IP addresses needs to be allotted to the S.W.I.F.T. setup. S.W.I.F.T. allows the users to add firewalls to the setup but in the case the user needs to provide the IP of the firewall to the S.W.I.F.T..

    Universal Banking Solution from Infosys


    Confidential and Proprietary to Infosys Technologies Limited

    Joining S.W.I.F.T. as a member

    ..contd

    Once all the equipments are received and installed the Network Partner configures the Network Setup. The Bank also receive 2 Destination ID / BIC code (and subsequent branch codes if order along with). The destination are LIVE and Test & Training.

    The Bank must have a resilient Network setup to ensure connectivity to S.W.I.F.T. Network.
    The SCR that is received is to be CHARGED and then setup. i.e. RSA & STK keys should be generated in the SCR. (This can be done by your application software if it supports this functionality)
    Universal Banking Solution from Infosys
    Confidential and Proprietary to Infosys Technologies Limited

    Joining S.W.I.F.T. as a member

    ..contd

    The ICC cards received are configured with the help of USOF cards for which PIN is provided by S.W.I.F.T.. Usually the UKMO & USER cards come in LOCKED state and one needs to UNLOCK them before use. The USOF cards are for ICC administration, UKMO for Key Management & USER cards for LOGIN & SELECT operations. The SNL is installed & Configured. The destinations are configured on TEST & LIVE servers and first a test run is carried out. The Bank remains in TEST mode until the date of ACTIVATION on the network. The Bank can stimulate all the operations in TEST mode.

    Universal Banking Solution from Infosys


    Confidential and Proprietary to Infosys Technologies Limited

    SNL (S.W.I.F.T.Net Link)


    The bank gets SNL ids as per order. The least, Single tier SNL contains a SNL Instance Ids one each for LIVE, TEST, Contingency The user may install only the LIVE ID. As per their requirements.

    The SNL IDs can be cloned (adds to resilience)


    The SNL when installed gather secret information from S.W.I.F.T. and store in the VPN boxes as well as system (in form of PKI certificates) The SNL with itself installs features like Tuxedo, Dispatcher , FileAct & Management.
    Universal Banking Solution from Infosys
    Confidential and Proprietary to Infosys Technologies Limited

    External Interface Connectivity


    The External Interface connectivity depends upon the type of application software the Bank is using. But generally all the application software support external interface connectivity. IBM MQ series can also be used for Secure/Guaranteed transfer of messages between two hosts. Depending on the application Software, the S.W.I.F.T. II, CSV, XML Standard format are supported. May support for ACK/NAK S.W.I.F.T. updates the BIC & Currency Quarterly i.e. MARCH / JUNE / SEPTEMBER / DECEMBER
    Universal Banking Solution from Infosys
    Confidential and Proprietary to Infosys Technologies Limited

    External Interface Connectivity

    ..contd

    The new updates like new bank joining the S.W.I.F.T. network etc. are given specified time frame to be mentioned in the quarterly updates. The new branch codes may go LIVE on S.W.I.F.T. network on first Sunday of any month

    S.W.I.F.T. reviews the message standards every year. (It may / may not make modifications). This activity is generally carried out in the months of MAY / NOVEMBER.

    Universal Banking Solution from Infosys


    Confidential and Proprietary to Infosys Technologies Limited

    BKE (Bilateral Key Exchange)


    BI-Lateral 1 key used for sent/received messages

    UNI-Lateral Separate keys are maintained for Sent & Received messages. A bank usually initiates SEND key.
    The Keys can be exchanged between two banks or specific branches of a bank. A RSA , STK & CV ID is required for BKE Exchange. The UKMO ICC is required for RSA, STK, CV ID generation.
    Universal Banking Solution from Infosys
    Confidential and Proprietary to Infosys Technologies Limited

    THANK YOU

    Universal Banking Solution from Infosys

    Das könnte Ihnen auch gefallen