Technology-Based Banking Products & Services
Technology-Based Banking Products & Services
Technology-Based Banking Products & Services
information Funds transfer Cash Management Bill payment Bill presentment Loan applications Stored Value
clearinghouse (ACH) transactions Internet Payments Wireless Banking Certification Authority Data Storage
Internet Banking
First Bank in India to launch website
1996 First Bank in India to launch Internet Banking - 1997 First Bank in India to launch online bill payment-1999 Only Bank in India with million online customers Monthly average transactions per online customer- 7
Channel Usage
Call Centre 4%
Internet 4%
Branch 41%
Call Centre 6%
Internet 5%
Cops 7%
Branch 35%
ATM 51%
Apr 2001
Br an ch Cash Tr an sact i o n s Jan-02 18% Apr-01 19% No n Cash Tr an sact i o n s Jan-02 41% Apr-01 50% A TM 82% 81% 33% 39%
ATM 47%
Jan 2002
Net Nil Nil 9% 6% 7% 5% 10% Nil COPS
Cal l Cen t r es
Vendor Risk Issues Security, Data Integrity, and Confidentiality Authentication, Identity Verification, and
Authorization Strategic and Business Risks Business Continuity Planning Permissibility, Compliance, Legal Issues, and Computer Crimes Cross Border and International Banking
Outsourcing Trends
Outsourcing Guidance
process: Risk assessment Due diligence in selecting service provider Contract requirements Oversight of service provider
0 2000
2001
2002
2003
2004
2005
2006
7,600 8,076
Source: CERT/CC -- statistics are not limited to the banking industry and include all reported incidents
2006
2007
capabilities to ensure that intrusions will be detected and controlled Seek necessary expertise and training, as needed, to protect physical locations and networks from unauthorized access Maintain knowledge of current threats facing the bank and the vulnerabilities to systems Assess firewalls and intrusion detection programs at both primary and back-up sites to make sure they are maintained at current industry best practice levels
contractors, or third parties accessing your systems or facilities. If warranted, perform background checks. Evaluate whether physical access to all facilities is adequate. Work with service provider(s) and other relevant customers to ensure effective logical and physical security controls.
Authentication
Reliable customer authentication is imperative for
E-banking Effective authentication can help banks reduce fraud, reputation risk, disclosure of customer information, and promote the legal enforceability of their electronic agreements Methods to authenticate customers: Passwords & PINS Digital certificates Physical devices such as tokens Biometric identifiers
Computer Crime
re-direct a website Identity theft resulting in unauthorized or illegal use of account information Money laundering Phony Internet banks
Increase in global partnerships/alliances Risks to U.S banks from cross border Ebanking without adequate care
Unlicensed activities? Understanding application of local prudential and customer
protection laws & regulations? Expertise?
management issues available at www.bis.org or www.occ.treas.gov Developing guidance on cross border, e-banking risks
and aggregation