| Online banking has provided more and more online features sine the development of Internet. The amount of Online banking transactions has reached nearly554trillion RMB, equivalent to14times of society GDP in2010. As Internet is an open network, online banking has become the targets of malicious criminals, especially the growing economic information theft. Once the local security incidents happened in online banking, it will spread quickly and make an overall impact, which not only brings about unpredictable bank’s reputation and economic loss, but also affect the social stability. The security of online banking has aroused the concern of all levels of society.As domestic joint-stock commercial banks, Shanghai Pudong Development Bank (SPDB) occupies a pivotal position in China. Internet bank is an important business of SPDB, so security always plays a key role in the banking business. This thesis provides a more secure structure of internet bank from analysis of SPDB security architecture, which could ensure the sustained and rapid development of banking business.The innovation of this thesis is the following four points:1. Construct the Integrated Security Architecture:Security architecture of online banking involves a wider thesis and usually the past thesises are limited to some parts. This thesis designs an integrated security system from technical aspect and builds an assured security of online banking for clients.2. Add Client Security Solution:For a long time, bank-side security is important in online banking, and so were some security products, such as firewall, IDS/IPS, which focus more on security of the bank side. But recently,’Internet Banking Thief’ and other security threats commit the crime frequently, through client-side which is not attracted much attention. Therefore, add client security solution of online banking in this thesis, as an important chart to description.3. Adopt One Time Password Technology:Usually, the customer password is a fixed6-digit password and the security can be assured in traditional occasions, such as counter/ATM/POS etc. In internet era, it is easy to crack and access the fixed password, so online banking certificates and other security tools are used for client authentication, but they are spread difficultly due to complexity. One Time Password technology, ease of use, is introduced in this thesis, and it could be promoted in security of online banking. 4. Design Infrastructure of Disaster Recovery for Online Banking:In order to improve the experience of clients and ensure that the Online Bankingkeep7x24running, it is necessary to build up DR back-up in another place for business continuity, which could not cause service expectation by environmental factors, such as power and communication problem. At the same time, considering the utilization rate of DR environment, design active-active system infrastructure of DR for Online Banking. |
PDF Full Text Request