Background

With the widespread use of information technologies, cyber attack has become one of the biggest concerns and challenges for financial institutions. In order to prevent intrusions, malware, Trojans, phishing, spyware etc., a comprehensive protection to Banking and Financial Institutions should be proposed. Moreover, e-banking service has become more and more popular. People would like to handle their financial transactions via e-banking. Therefore, availability and stability are two critical requirements of this kind of service. Besides, long latency may affect user experience directly which makes it unacceptable.

Challenges and Solutions

Comprehensive Security – A full range of security devices, including Firewall, IPS, SSL VPN, Anti-Virus & Anti-Spyware, Anti-Spam, Web Filtering, Web Application Firewall and Bandwidth Management, is able to provide satisfied network security.

Regulatory Compliance – Audit System can provide real-time visibility and control of the network, which enables banking and financial institutions to meet the regulatory requirements.

Continuous Connectivity – Operation Monitoring System can monitor the operation status of the business systems, which enables IT department to predict the problems and solve the problems in advance ensuring continuous connectivity.

Remote Access – In order to build a safe and efficient platform for remote access, the central bank is proposed to deploy SSL VPN devices in the network. Therefore, all transmission data is encrypted by an industry standard SSL protocol, achieving security for access and transmission.

Bandwidth – In order to prevent employees using the network for P2P downloads, on-line videos, and other applications that consumed high amounts of bandwidth, it is recommended to deploy Audit System to monitor the network status and flexibly allocate the bandwidth to each application, user or group, which is effective to prevent the bandwidth abuse and guarantee there are enough bandwidth for business systems.

Centralized Account Management – There are numbers of business systems in banking and financial institutions. It is not only difficult for IT department to manage the account information, but also hard for users to remember such a lot of accounts for different systems. Therefore, it is proposed that a Centralized Account Management System is deployed into the network, enabling users to access to different systems by entering a uniform account.

DDoS Prevention –The DDoS attack is the key threat of e-banking system. E-banking system is usually accessed through HTTPS, which allows hackers to launch small-sized application-layer DDoS attacks to negatively affect service quality dramatically. These attacks may cause financial losses and unsatisfied user experience. Therefore, a professional Anti-DDoS device is recommended to apply to detect and prevent various DDoS attacks in real time.