Banking

Banking

Banking has changed significantly in recent years due to technological advances. With the introduction of PSD2 (Payment Services Directive 2) in Europe, the regulations for payment transactions have been expanded to promote greater security and competition. Two-factor authentication (2FA) was introduced as a security measure to protect access to accounts. APIs enable third parties to access banking services and develop innovative financial solutions. AISP (Account Information Service Provider) and PISP (Payment Initiation Service Provider) are important elements in the PSD2 framework that secure transactions and identities.

We have the expertise and technical capability to support banks in implementing their business models.

Barzahlen (Paysafe) – an Alternative Cash Service

Project description:Barzahlen - Integration into mobile banking.

Project objective:The aim of this project is to integrate the Barzahlen service from Paysafe, which enables cash deposits and withdrawals via barcode at the shop checkout.

The project aims to increase attractivity of the online transaction platform, expand its reach and fulfil the needs of a diverse customer base.


Step 1

Open banking app and select transaction type: Deposit or Withdrawal.


Step 2

Set the amount for deposit or withdrawal.


Step 3

Scan the barcode at the checkout and the deposit or withdrawal will be made.

Project scope and steps

  • Requirements analysis: Technical and legal requirements for Barzahlen
  • API integration: Implementation of the Barzahlen API and ensuring smooth transactions via barcode.
  • User interface customisation: Integrate Barzahlen into mobile banking app and design user-friendly interface.
  • Test phase: Comprehensive tests on the functionality and security of the Barzahlen service integration.
  • Documentation: Creation of comprehensive documentation for developers and administrators.
  • Training: Enable the support team to effectively process enquiries in connection with Barzahlen transactions.

Banking - Redesign of the Login Process

Based on the requirements regarding security and user-friendliness, the login process in a banking system was redesigned.

This involved a transition from impersonal account number identification and an insecure TAN procedure to a user-based login with individual user names and passwords as well as improved two-factor authentication based on digital signatures.

The aim of this change was to increase user-friendliness in order to enable personalised experiences and at the same time significantly increase security.

Project scope

  • Detailed technical design for the integration of the security procedure and its use for online/mobile banking.
  • Definition of display texts for approval by the customer.
  • Detailed design of the life cycle of the respective security procedure from new creation, activation, blocking and unblocking to cancellation.
  • Detailed technical design of the associated admin frontend for bank employees to access, block and unblock the respective procedures.
  • Detailed technical design of the customer frontends including the associated process definition.
„Information about money is almost as important as the money itself.”

Walter Wriston (former CEO Citibank)

Open Banking, API-Schnittstelle, XS2A

Requirement:

Automated retrieval of transaction data for further processing in the back office.

Solution:

Development of a service for the automated retrieval of account transactions, comparison with orders from a sales system and release of the associated orders. The newly developed application retrieves the transaction data - depending on the account-holding bank - via FinTS, EBICS or an API (XS2A) provided by the respective bank, and processes them automatically.

Background information:

Open banking means the use of bank services via specially created APIs (application interfaces). Third parties (e.g. account information services) can, with the consent of the respective end customer, view the customer's account transfer data electronically and process it as part of their own processes.

AISP/KID

Account Information Service Provider/Kontoinformationsdienste

So-called Account Information Service Providers access the customer's account information, which is stored at the customer's bank, on behalf of the customer. Depending on the provider, the information collected is analysed and processed further, for example as part of credit application processes.

EBICS

Electronic Banking Internet Communication Standard

Corporate customers demand technologically advanced standard products that can be used for multi-bank payment transactions. Multi-bank capability, i.e. the accessibility of all banks, is essential for corporate customers, as this is the only way to transmit payment orders to several banks at low cost. Payment transactions not only include transfers and direct debits, but also cover the entire spectrum of cash management for corporate customers.

PISP/ZAD

Payment Initiation Service Provider/ Zahlungsauslösedienste

So-called payment initiation service providers also get access to the customer's bank account on behalf of the customer. In contrast to account information services, however, they are authorised to initiate transactions on the customer's account.

 FinTS

Financial Transaction Services

FinTS is a German standard for the operation of online banking. FinTS is a further development of the HBCI online banking standard. The purpose of FinTS is to standardise the connection between bank customers and the credit institution, particularly with regard to multi-bank capability.



Changing customer model

A functional and technical access model for online banking was created based on the customer model of an SAP-based banking backend.

The aim was to fully map both natural persons and those authorised to represent and/or act on behalf of legal entities to the banking products - including their roles and rights.

The changeover from an impersonal login with an account number to a user-based login refers to the change in the login process to a system or application.

Project Information

  • Initial situation: Credit institution with account-based online access.
  • Goal: Establishment of a customer-based access model.
  • Result: Conversion of online banking to a customer-centric model and the associated significant cost savings. Preparation for the requirements of PSD2.