Security & Integration
Activa employs proven banking and payments industry best practiceS when it comes to security. The Activa services are intrinsically 2FA compliant and therefore already more secure than conventional online banking.
At a basic level, Activa offers the following security safeguards:
Authentication: Mobile banking end-customers and administrative users are authenticated for every interaction with any Activa application. Authentication can be by username / password or utilize single sign-on technologies
Role Based Access Control and Security: An approach to restricting system access to authorized users only with full log and tracking.
Data Access Monitoring: Our DAM components audit and block access to key data as a growing threat comes from within application screens and reports, giving employees, external work force, IT and outsourced support teams unnecessary access to sensitive data
Encryption: 256-bit encryption is used for all transactions within Activa 's network and between Activa server-based infrastructure and bank hosts (such as core banking and payment systems).
Fraud:Activa incorporates mechanisms such as transaction validation (e.g. real-time value and velocity checks) and transaction reconciliation processes to proactively detect and address fraud.
Availability / Resilience: Activa 's technology is protected against malicious attacks through software and server hardening measures.
Audit: Activa 's systems provide full audit capabilities through event logs and event-based reporting. Intrusion detection technologies enhance the auditability of Activa -delivered mobile financial services.
Regulatory Compliance: Activa technology exceed the regulatory compliance requirements of the US, Europe and other jurisdictions. This includes the auditing and authentication needs arising from Sarbanes-Oxley (SOX), BASEL II and other industry risk management policies and regulations.
Integration - Setting the Security Benchmark
The Activa service has been designed from inception to be simple. In the same way that an ATM is ordered, configured and connected, the Activa service is a solution that requires minimum integration and commissioning before the service is running. An overview of the simplicity of the Activa service is shown in Figure
The boxes indicate the common Activa components supplied and the circles indicate the points of integration necessary for the service for banked consumers.
The Activa architecture enables banks to rapidly test the service through a proof of concept and also rapidly commission the service for launch. The service is flexible to be tailored to the local market by the "plug-and-play" transaction technology that enables new application types to be rapidly built by the service provider or Activa.