step 1: user enters id/pw for fi: encrypted in quicken pin vault
Post on 11-Jan-2016
Embed Size (px)
DESCRIPTIONStep 1: User enters id/pw for FI: encrypted in Quicken PIN vault Id/pw transmitted to Intuit CustomerCentral Servers at NCR using 128 bit SSL. Step 2: Credentials stored in CC database using 3DES. Credentials transmitted to bank web site using 128 bit SSL. Step 3: - PowerPoint PPT Presentation
Step 1:User enters id/pw for FI: encrypted in Quicken PIN vaultId/pw transmitted to Intuit CustomerCentral Servers at NCR using 128 bit SSLStep 2:Credentials stored in CC database using 3DES.Credentials transmitted to bank web site using 128 bit SSL.Step 3:Bank QFX files transmitted to CC server using 128 bit SSLLogoff bank site.
Step 4:QFX file received from bank, stored in database. Account number encrypted with 3DES.EWC data transmitted to Quicken, 128 bit SSLStep 5:Data received from Intuit Servers, stored in Quicken.
NCR at a Glance100+ year old company$5.9B in revenues32,800 employees worldwide$2.9B in services revenueNearly 20,000 service professionalsNCR Executive CommitteeRetail and Financial GroupAmericas/Europe/Asia-Pacific/JapanRetail Solutions DivisionFinancial Solutions DivisionTeradata DivisionWorldwide Customer Services DivisionSystemediaDivision
NCR eCommerce FactsBusiness startup in 1997>40% compounded annual growth rateeCommerce Solutions Across All Industries, with focus on Finance Industry140 banks hosted in data centerDeploy eCommerce Managed Solutions In-House or Outsource(2) eCommerce Data Centers (Columbia, MD; Columbia, SC)(1) Disaster Recovery Hot Site (Dayton, OH)
Secure, High Availability Data Center IT Managed Services
PLANTPOWEReCommerce Data Centers Diesel Generator BackupBattery Room -- UPSCommand Center - Monitoring - Bandwidth - Data CommunicationsPING
NCR Secure, High Availability, Hosting Data Center Infrastructure Services
Hosting Availabity + Security-High Availability-UPS and Diesel Generator-Redundant Environmental Controls -Card Access Security-Security Cameras-Smoke and Water Detection -Fire Suppression-Redundant Power Grids-Dual Fiber Optic Rings
Financial Institution Experience:Currently hosting over 130 internet Banking sites, including 4 top 50Same data center as 300 bank core systems
NCR Personnel Expertise-24x7x365 Management of Hosted Applications-OS Management to Include Teradata/Windows/Linux/Unix-Certified OS Engineers -Security and Network Consultants-Database Administrators-Certified Router and Firewall ConsultantsSecurity and Compliance-Vulnerability Assessments and Penetration Scans-Internal and External Intrusion Detection-Monthly Executive Summary Security Reporting-Security Fraud Detection Service-Annual SAS 70 Type II Certification-FFIEC, OTS, OCC Compliance and Annual Review
NCR eCommerce SecurityRedundant Checkpoint Firewall ConfigurationRealSecure Intrusion Detection Solution from ISSMonthly Third Party Security ConsultingAnnual Vulnerability AssessmentsQuarterly Penetration ScansCharter Membership in Infragard
NCR is constantly monitoring its adherence to best practices andsubjecting itself to the most stringent third-party audits available.For example, each year in addition to NCR corporate audits, anindependent auditing company performs a SAS 70 Level 2 audit ofthe NCR eCommerce Data Center. NCR is also audited by the FederalFinancial Institution Examination Council (FFIEC). This interagencybody is comprised of the Board of Governors of the Federal ReserveSystem (FRB), the Federal Deposit Insurance Corporation (FDIC), theNational Credit Union Administration (NCUA), the Office of theComptroller of the Currency (OCC) and the Office of ThriftSupervision (OTS). It is this commitment to excellence which setsNCR apart when it comes to secure hosting and outsource services.
Begin overview of NCR eCommerce Data Center Facility.