IBM RegTech Ideas Portal

 Welcome!

 

Our team welcomes any feedback and suggestions you have for improving our offerings. This forum allows us to connect your product improvement ideas with IBM product and engineering teams.

 

For product documentation, see Knowledge Center.
Create and View Support Cases and Use the Discussion Forum here

 

Reminder: This is not the place to submit defects or support needs, please use normal support channel for these cases

 

The shorter URL for this site is:   http://ibm.biz/WFS-Ideas

IBMers, please visit the WFSS Internal Ideas portal https://ibm.biz/WFS-Internal-Ideas

 

note: The IBM ICM IDEAS Portal is no longer available at this location. If you have reached this page, please look for a new link in the Varicent Administrator. Direct links are found under the "?" in the upper right corner.
A period of transition is likely to impact this service, while ICM becomes Varicent. Please contact Varicent support if you have additional challenges or concerns.

Please document how to implement SWIFT security recommendations in WBIFN.

Requirement from my customer for information on how to implement SWIFT security recommendations in WBIFN.

As a result of the recent security incident at another SWIFT customer institution, my customer is asking for documentation on how SWIFT recommendations and guidelines can be implemented in the WBIFN products.

As an example, one specific question from my customer is if and how two factor authentication (2FA) can be enforced when users login to the WBIFN WAS applications MER/RMA/AO.

Please refer to PMR/Service request number 18390,010,678

However the information requested by my customer is not limited to getting documentation on enforcing 2FA, but any other means to implement SWIFT's security recommendations in WBIFN are asked for.

The recommendations would ideally be based on and alligned with the Security Guidance Checklist issued by SWIFT.

SWIFT has created a number of checklists to assist its users in verifying whether their infrastructure meets the minimum recommendations of the security guidance documents.

One of these is KB tip 5020818 - Security Guidance Checklist for interfaces by 3rd party providers

Other KB tip numbers are 5020786, 5020890, 5020928

The documention is needed for both WBIFN and FTM for SWIFT .

The documentation is needed asap to progress with implementation of the required changes in the customer's environment. Hence the urgent priority.
  • Avatar32.5fb70cce7410889e661286fd7f1897de Guest
  • Apr 9 2019
  • Shipped
Component Documentation
Priority Urgent - Blocker
  • Attach files