O slideshow foi denunciado.
Utilizamos seu perfil e dados de atividades no LinkedIn para personalizar e exibir anúncios mais relevantes. Altere suas preferências de anúncios quando desejar.

Convenience and Security for banking customers with CA Advanced Authentication

577 visualizações

Publicada em

Convenience and Security for banking customers with CA Advanced Authentication

Publicada em: Tecnologia
  • Seja o primeiro a comentar

  • Seja a primeira pessoa a gostar disto

Convenience and Security for banking customers with CA Advanced Authentication

  1. 1. World® ’16 Convenience and Security for Banking Customers Andrew Steadman - Product Director-Agiliti - Fiserv SCX50S SECURITY
  2. 2. 2 © 2016 CA. ALL RIGHTS RESERVED.@CAWORLD #CAWORLD © 2016 CA. All rights reserved. All trademarks referenced herein belong to their respective companies. The content provided in this CA World 2016 presentation is intended for informational purposes only and does not form any type of warranty. The information provided by a CA partner and/or CA customer has not been reviewed for accuracy by CA. For Informational Purposes Only Terms of this Presentation
  3. 3. 3 © 2016 CA. ALL RIGHTS RESERVED.@CAWORLD #CAWORLD Abstract Securing their channels, both digital and staffed, is key for a bank but that often comes at the price of convenience for the bank’s customer. Applying the appropriate level of security at the appropriate time will be both convenient for the customer and secure for the bank, satisfying the needs of both. We will discuss how CA Advanced Authentication and the Fiserv Financial Crime and Risk Management solution, Agiliti, allows banks to apply real time risk assessment to determine the right level of security challenge to ensure the customer and bank are protected. Andrew Steadman Fiserv Product Director, Agiliti
  4. 4. Balancing Security and Convenience in Banking
  5. 5. 5 © 2016 CA. ALL RIGHTS RESERVED.@CAWORLD #CAWORLD What problem were we seeking to solve? • Financial Institution Customers interact across multiple channels • Securely identifying customers has placed an onerous burden on customers • ‘Agiliti’ wanted to simplify this for customers • Ever increasing compliance and onus on the Financial Institution to protect • PSD2 is going to add broad access requirements
  6. 6. 6 © 2016 CA. ALL RIGHTS RESERVED.@CAWORLD #CAWORLD Making a ‘Faster Payments’ transaction ?
  7. 7. 7 © 2016 CA. ALL RIGHTS RESERVED.@CAWORLD #CAWORLD Making a ‘Faster Payments’ transaction - 2 Ways They are different!! Security Code Pay a new Beneficiary £250 Limit for 1st Payment No Limit for 2nd Payment User ID, Password and PIN Pay a new Beneficiary No Limit for 1st Payment Authorised by Card Device
  8. 8. 8 © 2016 CA. ALL RIGHTS RESERVED.@CAWORLD #CAWORLD How ‘Agiliti’ Solves that problem • A combination of components built to a single solution • Services published via a service bus enables all channels • Real time assessment of risk determines the level of credential required by the customer • User ID + Password • Temporary PIN • One Time PIN delivered via SMS • Cherished Questions
  9. 9. 9 © 2016 CA. ALL RIGHTS RESERVED.@CAWORLD #CAWORLD Assembling the Pieces Fiserv Communicator Advantage Fiserv Financial Crime Risk Management Platform (FCRM) CA Advanced Authentication (CA AA) Authentication Services
  10. 10. 10 © 2016 CA. ALL RIGHTS RESERVED.@CAWORLD #CAWORLD Device Signatures • Every call to the Authentication Services carries a device signature • Generated by CA client side libraries within Apps • Generated by javascript in browser • Value is not store on the device • Trusted Devices are identified by an Arcot generated ID which is stored on the device
  11. 11. 11 © 2016 CA. ALL RIGHTS RESERVED.@CAWORLD #CAWORLD Typical Process Logon ••User ID ••Static Password ••Temporary PIN ••Risk Analysis – SMS OTP OTP required if high risk ••Sent to mobile device known to be customers ••Dual factor authentication applied Customer executes a transaction ••Pre defined to have permanent PIN required ••User for ‘high risk’ transactions Transaction pattern is not ‘normal’ for customer ••CA AA OTP issued after FCRM identifies an out of character transaction ••Holistic risk assessment
  12. 12. 12 © 2016 CA. ALL RIGHTS RESERVED.@CAWORLD #CAWORLD CA Advanced Authentication
  13. 13. 13 © 2016 CA. ALL RIGHTS RESERVED.@CAWORLD #CAWORLD Financial Crime Risk Management Platform • Leverages organisational knowledge is assessing risk • Assesses in real time to determine risk • Creates a Customer Risk Score • Delivers an Holistic View of Fraud
  14. 14. 14 © 2016 CA. ALL RIGHTS RESERVED.@CAWORLD #CAWORLD Which Channels are using it in Agiliti? • Branch and Call Centre platform • Validates some numbers from PIN • Neither password nor PIN require to be fully disclosed • Uses cherished questions over password • Allows input of OTP received by customer via SMS • Web, Tablet, Mobile and Apps • All 4 digital channels are using the same credentials • Use of credentials is minimised for a better user experience
  15. 15. 15 © 2016 CA. ALL RIGHTS RESERVED.@CAWORLD #CAWORLD Where are we now? • Solution is live to the public with a number of institutions • It is supporting institutions with a new digital experience • Customer and Member reaction has been very positive
  16. 16. 16 © 2016 CA. ALL RIGHTS RESERVED.@CAWORLD #CAWORLD What does it mean for customers? • One set of credentials to remember • Only asked for minimal credentials based upon assessed risk • Known devices allow data display without any input • Remove typical approach of lowest common denominator security model
  17. 17. Thank you Andrew.Steadman@Fiserv.com www.agiliti-fiserv.com www.fiserv.com
  18. 18. 18 © 2016 CA. ALL RIGHTS RESERVED.@CAWORLD #CAWORLD Don’t Miss Our INTERACTIVE Security Demo Experience! SNEAK PEEK! World® ’16© 2016 CA. ALL RIGHTS RESERVED.@CAWORLD #CAWORLD18
  19. 19. 19 © 2016 CA. ALL RIGHTS RESERVED.@CAWORLD #CAWORLD Stay connected at communities.ca.com Thank you.
  20. 20. 20 © 2016 CA. ALL RIGHTS RESERVED.@CAWORLD #CAWORLD Security For more information on Security, please visit: http://cainc.to/EtfYyw

×