 |
Security
Page [1] 2 |
nFront is
dedicated to providing secure Internet solutions to the banking
industry. The nHome solution allows you to have a fully
functional Internet branch without attaching your bank to the
Internet. Customer information is housed on secure nFront
databases, which are updated with data sent to nFront by
the bank over traditional dial-up lines.
The security of an Internet banking model must
be addressed at three levels. The first concern is the security
of customer information as it is sent from the customer's PC to
the Web server and from the Web server to the customer. The second
area concerns the security of the environment in which the Internet
banking application and customer information database resides.
Finally, security measures must be in place to prevent unauthorized
users from attempting to log into the Internet banking section
of the Web site.
Data security between the customer browser
and the nFront Microsoft Web servers is handled through
a security protocol called Secure Sockets Layer (SSL). SSL provides
data encryption, server authentication, and message integrity
for a TCP/IP connection. In addition, SSL provides a security
"handshake" that is used to initiate the connection.
This handshake results in the client and server agreeing on the
level of security they will use and fulfills any authentication
requirements for the connection. A Web site secured with the SSL
protocol will display a key in the lower corner of a Netscape
browser, or a padlock at the bottom of a Microsoft browser, ensuring
that data transmitted from that page can not be altered in route
over the Internet.
Requests for Internet banking information are
passed from the Web server to the nFront Internet banking
application. The Internet banking application is designed using
a three-tiered architecture. The three-tiered architecture provides
two distinct advantages. First, it provides a double firewall,
completely isolating client side applications such as the World
Wide Web interface from the customer information SQL database.
Secondly, it provides centralized mechanisms in the automation
application server where all business logic, event logging, and
security analysis is performed.
The three-tiered architecture consists of the
following components: Automation Clients such as World
Wide Web and Import / Export Interfaces, the Automation Application
Server, and the SQL DatabaseServer.
Page 1 of 2
|
