Professional Documents
Culture Documents
BOX Solution Overview V5.0
BOX Solution Overview V5.0
BOX Solution Overview V5.0
Solution Overview
July 2019 edition
Instant Payments
Table of Contents
THE 3 TOP 2019 CHALLENGES --------------------------------------------------------------------------------------------------------------- 4
SINGLE WINDOW FOR MULTI-NETWORK INTERBANK FINANCIAL MESSAGING --------------------------------------------- 7
LIVE PRODUCTION AND ONGOING DEVELOPMENT IN AN ACTIVE USER COMMUNITY ----------------------------------- 7
MULTI-NETWORK CONNECTIVITY FOR SWIFT, SIA, EBICS AND DOMESTIC NETWORKS ----------------------------------- 7
EUROPEAN CENTRAL BANK DIRECTIVE FOR SIPS TRIGGERS MULTI-NETWORK CONNECTIVITY ------------------------- 7
EBA CLEARING STEP2 ------------------------------------------------------------------------------------------------------------------------- 8
T2S - TARGET2 SECURITIES ----------------------------------------------------------------------------------------------------------------- 8
EBICS------------------------------------------------------------------------------------------------------------------------------------------------ 9
SIANET --------------------------------------------------------------------------------------------------------------------------------------------- 9
SWIFTNET ----------------------------------------------------------------------------------------------------------------------------------------- 9
SWIFT GLOBAL PAYMENTS INNOVATION (GPI)----------------------------------------------------------------------------------- 10
BOX-LINK ---------------------------------------------------------------------------------------------------------------------------------------- 10
DOMESTIC NETWORKS -------------------------------------------------------------------------------------------------------------------- 10
FURTHER TRADITIONAL NETWORKS ---------------------------------------------------------------------------------------------------- 11
INSTANT PAYMENTS - EBA CLEARING RT1 & ECB TIPS IN PRODUCTION ----------------------------------------------------- 11
KEY ADVANTAGES OF USING BOX OVER PAYMENT APPLICATION DIRECT CONNECTION------------------------------- 11
INTEGRATION WITH CUSTOMER’S CHOICE OF INFRASTRUCTURE ------------------------------------------------------------- 12
PLATFORM INDEPENDENCE ---------------------------------------------------------------------------------------------------------------- 12
INTEGRATION WITH SOFTWARE INFRASTRUCTURE: MQ, SOA, FILE AND DATABASE ------------------------------------ 13
BOX WEB SERVICES, ALSO CALLABLE FROM EXTERNAL APPLICATIONS ------------------------------------------------------ 15
INTEGRATION WITH THIRD PARTY APPLICATIONS---------------------------------------------------------------------------------- 15
USER PROFILE MANAGEMENT --------------------------------------------------------------------------------------------------------- 16
SERVICE PROVIDER OPTIMISATION ----------------------------------------------------------------------------------------------------- 17
MULTI-COUNTRY DEPLOYMENT ----------------------------------------------------------------------------------------------------- 17
BILLING & STATISTICS -------------------------------------------------------------------------------------------------------------------- 18
THREE TIER ARCHITECTURE – BOX SERVER, BOX CLIENT, CONNECTED VIA DATABASE ---------------------------------- 19
HIGH AVAILABILITY WITH CONTINUOUS OPERATION VIA TWINNED ACTIVE-ACTIVE------------------------------------ 19
SCALABILITY ------------------------------------------------------------------------------------------------------------------------------------ 20
PERFORMANCE OPTIMISATION ------------------------------------------------------------------------------------------------------ 21
COMPLETE ISO 20022 STACK -------------------------------------------------------------------------------------------------------------- 21
FORMAT CONVERSION-------------------------------------------------------------------------------------------------------------------- 22
SECURITY ASPECTS IN BOX --------------------------------------------------------------------------------------------------------------- 22
SWIFT CUSTOMER SECURITY PROGRAMME (CSP) ---------------------------------------------------------------------------------- 23
MONITORING AND ALERTING ------------------------------------------------------------------------------------------------------------- 23
MESSAGE WAREHOUSE ------------------------------------------------------------------------------------------------------------------- 24
ARCHIVING ------------------------------------------------------------------------------------------------------------------------------------ 25
WORKFLOW & ROUTING ---------------------------------------------------------------------------------------------------------------- 26
2
BOX Solution Overview
3
BOX Solution Overview
Instant Payments
PPI TRAVIC-Interbank
SWIFT Alliance Gateway Instant
SIAnet FEMS XS
Including (EP/BX) Session
Management & Administration
4
BOX Solution Overview
5
BOX Solution Overview
T2 / T2S Consolidation
6
BOX Solution Overview
BOX covers all aspects of financial messaging, including the 2018 challenges:
BOX is live with Instant Payments for EBA CLEARING RT1.
BOX is the first SWIFT interface to be fully compliant with the SWIFT CSP.
BOX customers are using gpi in live operation.
BOX has been in live production with central banks, large financial institutions and
service providers in Europe and North America for many years.
The annual BOX User Forum is the key event for the user community.
The product roadmap is discussed and ongoingly developed with our SME customer
community.
The ECB directive for SIPS (systemically important payment systems) covers legal,
functional, security, reliability, and contingency arrangements.
To minimise risks, financial institutions connecting to SIPS need to mitigate against
single points of failure in their infrastructure. This includes network connectivity.
The ECB has to date declared several pan-European Payment Systems as
systemically important; including T2S operated by the Eurosystem, and STEP2
operated by EBA CLEARING. The new T2 and others will follow.
EBA CLEARING STEP2 Intraday Switch via EBICS / SIA / SWIFT is the first
implementation of alternate network switching capability for a SIPS.
BOX can simultaneously connect to multiple networks and guarantees continuous
operation even in case of complete network outage - thus mitigating single points of
failure risk.
7
BOX Solution Overview
The European Central Bank (ECB) has identified STEP2 as one of the “Systemically
Important Payments Systems” (SIPS).
EBA CLEARING offers its customers multiple options to connect - via EBICS, SIA,
and/or SWIFT.
Using the multi-network architecture of BOX, customers can connect to STEP2 via
EBICS, SIA, and/or SWIFT simultaneously. This support is ‘out of the box’ and
guarantees complete redundancy of the networking infrastructure. Additionally, higher
bandwidth can be achieved for peak traffic periods by connecting to more than one
network at the same time.
BOX is adapted to the specific requirements of T2S and supports both network
providers SIA/Colt and SWIFT.
The European Central Bank (ECB) has identified T2S as one of the “Systemically
Important Payments Systems” (SIPS).
8
BOX Solution Overview
EBICS
EBICS is mainly used in Germany, France, and Switzerland. It is one of the 3 network
options to connect to EBA CLEARING STEP2 for SEPA transactions and one of 2
options for the Pan European Instant Payments service from EBA CLEARING which
went live in November 2017.
BOX provides EBICS connectivity and supports the French domestic network PeSIT via
the TRAVIC components from PPI AG - a leading provider of EBICS solutions.
SIANet
SIA, in partnership with Colt, is one of the two network infrastructure providers to
connect to TARGET2-Securities (T2S).
In Italy, SIA provides access to, and operates, the RNI (Rete Nazionale Interbancaria)
national financial network including CIT (Cheque Image Truncation).
BOX has been tightly integrated with SIANet and is certified by SIA for:
SEPA File transfer to EBA CLEARING
T2S via SIA / Colt
RNI, Rete Nazionale Interbancaria
SWIFTNet
BOX connects to SWIFT via SWIFT Alliance Gateway (SAG) via MQHA and provides
the following messaging services:
FIN CBT
FileAct Store and Forward
FileAct Real-time
InterAct Store & Forward
InterAct Real-time
RMA
For FileAct, the Remote File Handler provided by SWIFT as well as MQ LFT are
supported, thus avoiding the necessity to store confidential data outside of the DMZ.
All messaging interfaces are fully certified for SWIFTNet 7.2.
9
BOX Solution Overview
BOX has implemented the necessary extensions for gpi and has been part of the initial
pilot program. Several major banks are in production with BOX for gpi today.
Backward compatibility
▪ UETR generation when missing in SWIFT MT
▪ Matching of 202cov with MT103
▪ UETR / Service Type Identifier removal for FIN-Messages
MT199 tracking facility, which customers don’t have to pay SWIFT fees for.
Several major banks are in full production with BOX for gpi today.
BOX-LINK
BOX-Link can be used to transfer messages and files from BOX to BOX and to/from
other SWIFT enabled solutions without using the SWIFT network.
BOX-Link provides a full emulation of SWIFT traffic for FIN, InterAct and FileAct.
“BOX-Link” used to be called “MQ FIN Link” in previous BOX versions and “MERVA
FMT” (Financial Message Transfer) with MERVA.
Domestic Networks
The support of additional national or regional networks and protocols are implemented
based on feedback driven by the BOX community, with the BOX User Forum being key
to discuss and prioritise these requirements.
Currently under development and/or discussion with the user community are:
CHAPS, UK
CHIPS, Fedwire, ACH - USA
EDItran, Spain
SIC, Switzerland
10
BOX Solution Overview
BOX also supports the following generic options for the transfer of financial messages:
Unlimited software scalability enables highest throughput and extreme peak handling.
Complete monitoring can be fully integrated with the customer’s choice of
infrastructure.
11
BOX Solution Overview
Platform independence
12
BOX Solution Overview
13
BOX Solution Overview
14
BOX Solution Overview
BOX provides some out of the box web services. Some examples are outlined below.
The ‘Validation Service’ allows an application to send a message to the service and to
receive a reply indicating whether the message passed validation, or if not, which
syntactical or semantic errors were detected.
The ‘Authorisation Service’ checks if an RMA authorisation exists for a specific
correspondent and specific message type and returns the result to the calling
application.
The Archive Search and Retrieval Service enables applications to look up the BOX
Archive and extract messages for further processing.
The ‘Printing Service’ can be used to print SWIFT messages in various formats.
The ‘T2S Signature Service’ checks the validity of a T2S signature or calculates a
signature from a provided digest and returns the result to the calling application.
Based on a modular plug-in architecture, third party software for embargo checking,
filtering and liquidity management can be seamlessly integrated with BOX workflow
functionality.
The BOX plugin architecture for content processing workflow is used to transform BOX
messages into 3rd party specific formats. Three different types of plugins are used:
• XSLT transformation
• Fixed length Buffers
• Customer specific implementation
BOX analytic functions are used to determine which messages require processing by
external applications.
Reply messages are received from the external application and appended to the original
message. The data provided by the external application can be viewed in the standard
journals and queues using XHTML technology.
The data received from the external application is analysed and further routing decisions
based on the analysis results.
15
BOX Solution Overview
BOX comes with a sophisticated User Profile Management (UPM) facility, covering up
to 8 hierarchical levels. This allows our customers to model even the most complex
organisational structures. This powerful capability eliminates much of the complexity
found in legacy messaging systems when managing user profiles.
For service providers this allows completely independent organisations to define their
organisational UPM map using their own virtual BOX instance. This does not impact
the UPM configurations or message processing of other organisations sharing the
same physical BOX system. This function and architecture makes BOX a favoured
platform for service providers - who manage the traffic of multiple financial institutions.
INTERCOPE has several large service provider customers making use of this
functionality.
Within an organisation, access rights for message handling can be defined with high
granularity, including approval limits based on message amount values in local and
foreign currencies. These attributes can be defined for large organisational units,
departments, or individual users whereby definitions on higher organisational levels
are inherited down the hierarchy.
Typical “roles” are used to define different access profiles, and then associated with
organisational units or individuals. A time zone indicator may be set for UPM objects
such as users, roles, and organisational units. This information is used in distributed
environments to display all date/time information in the local time of the user.
The user authorisation for message processing functions is handled directly by BOX.
The user authentication can also access external directories/ repositories via LDAP or
other standards. In addition, single sign-on systems are supported with the user data
synchronised with external directories via LDAP.
16
BOX Solution Overview
A new release or fix pack of BOX is normally installed and tested on the development
system initially, then verified on the QA system, and finally deployed on the production
system. To ease these deployment steps, BOX includes batch tools to migrate
configuration data easily between systems. The data is exported in XML format. All
relevant objects can be exported and imported including Workflow (routing)
configuration, UPM configuration and Journal views.
Multi-Country Deployment
When one logical BOX system is used in several different countries, for legal reasons,
it may be required that messages are stored only in the country where they are sent or
received. This can be implemented using regional data warehouses, physically located
in each of the countries where the requirement is. The central message processing
database only stores the messages temporarily until the message processing
sequence has been completed.
17
BOX Solution Overview
Box integrates with the customer specific billing infrastructure of service providers.
Using a plug-in technology individual interfaces can be provided.
Statistical data can be obtained in online queries in the BOX client using various filter
criteria. For further processing in tools such as EXCEL the results of these queries can
be exported.
BOX comes with a predefined set of reports generated with BIRT (Business
Intelligence and Reporting Tool – Open source). In addition, customised reports can
be defined in BIRT.
The BOX statistics tool reads SAG event logs as a central data source and provides
unified reports even when different CBTs are used. The tool stores all collected data in
DB2 or Oracle database tables and includes a set of standard statistics. In addition,
tools such as Crystal Reports or BIRT can be used to create any type of individual
report.
The BOX statistics tool can run independently of the BOX server and even on a
different platform such as z/OS, z/Linux, AIX, Linux, Solaris or Windows.
18
BOX Solution Overview
Three Tier Architecture – BOX server, BOX client, connected via database
The BOX server controls message processing, the workflow and it includes a system
monitor that generates alerts and allows integration with the customer’s system
management tools via SNMP. The server is written in C and C++ and optimised to
handle very large data volumes on a small footprint.
BOX stores all relevant data in the tables of a Relational Database Management
System (RDBMS), which is a prerequisite for every BOX installation. ODBC and JDBC
standard interfaces are used with products from different vendors.
19
BOX Solution Overview
Scalability
BOX is horizontally and vertically scalable and can be deployed in several processing
nodes on different machines at the same time. Each of these processing nodes have
their own dedicated physical message processing database. Each physical database
is part of an overall logical BOX message warehouse, which is presented to users,
system administrators, and external applications as a central BOX Message
Warehouse, with a central UPM and configuration database.
20
BOX Solution Overview
Performance Optimisation
BOX has been designed and optimised to handle very large message volumes – as
processed by the largest financial institutions and service providers. Importantly it also
does this on a very small system footprint. Benchmarks using actual customer use
cases and workflows on IBM and Oracle labs have shown impressive results:
For instant payments in excess of 1.000 msg/sec were achieved on one processing
node.
ISO 20022 is a universal financial industry message scheme defined in XML syntax by
ISO (International Organisation for Standardisation Standard Organisation). Since
2005 ISO 20022 messages have been developed for many business areas of the
financial industry and ISO 20022 has evolved as the future standard for financial
messaging.
In Europe ISO 20022 messages are already mandatory for SEPA Credit Transfers
(SCT), Direct Debits (SDD), and now for Instant Payments Credit Transfers (SCT inst).
For the clearing and settlement of security transactions ISO 20022 messages are
used by the Target2 Securities system of the European Central Bank. The RTGS
system of Eurosystem Target2 will be migrated to ISO 20022 based MX messages.
The SWIFT services FileAct, InterAct and RMA make use of ISO 20022.
BOX includes a complete ISO 20022 stack including the implementation of specialised
T2S Messages derived from ISO 20022 and special SSP messages used by the
European central banks. Comprehensive functionality is provided for message entry,
repair, and authorisation, printing, retransmission, as well as for duplicate checking
and validation.
21
BOX Solution Overview
Format Conversion
BOX has several facilities to convert between different message formats: Using standard
XSLT style sheets any XML based format can be generated (e.g. for backend applications
using proprietary formats). For non-XML formats additional plugins can be developed.
Conversion between SWIFT MT and MX messages, and vice versa, is an integral function
of BOX. Implementation for specific message types is made when SWIFT defined
conversion rules are published and when requested by customers.
Both formats for the same transaction are visible through the BOX GUI.
Initial conversions are provided for:
Box is fully integrated into the security infrastructure environment of the customer
including the following aspects:
Resilience
Secured Redundant Customer Environment
Cluster, Disaster Recovery
Transaction Protection
Monitoring
Message & Configuration Audit-log
Configuration Management (n-Eyes)
Alerting & Keep-alive signalling
Application Security
Cooperate with Customers on Audits
Integration with SSO-Systems
Continuity Services
Continuity Services
Training Classes
Health Check
Confidentiality
Content Encryption
Segregation of Duties
User Profile Management
Role Allocation (n-Eyes)
22
BOX Solution Overview
The INTERCOPE Security Team actively supports customers with CSP- related advise
in close cooperation with the BOX User Community.
INTERCOPE has become one of the first SWIFT software vendors to complete the
SWIFT Customer Security Programme (CSP) self-attestation for SWIFT global
business services; FIN, RMA, InterAct and FileAct by August 2017. In December 2017
the customer certification has been completed.
For centralised system control and supervision BOX can interact with external facilities
and systems such as Syslog, an operator console, file-based data exchange or via
SNMP. BOX has an SNMP subagent with a worldwide registered Management
Information Base (MIB). These components are used to integrate BOX into standard
System Management Applications such as IBM Tivoli Netview or others. BOX alerts
are received as standard SNMP traps. A broad range of information can be accessed
by reading SNMP variables and the system can be actively controlled by writing SNMP
variables.
23
BOX Solution Overview
Message Warehouse
Message specific data warehouse tables are available for the following types of
messages:
PPI EBICS and PeSIT
FIN
RMA
ISO 20022
SEPA
FileAct
T2S messages / files
SIANet file transfer
RNI
With this approach, specific message types can be better reflected in GUI elements
such as journals and application queues. Significant performance enhancements have
been achieved by an index structure adopted to the specific search criteria applicable
to the different message types.
24
BOX Solution Overview
Archiving
Messages can be purged after a configurable retention period from the active
message database. It is also possible to configure if, and with which data, messages
should be archived in the BOX archive during this operation. The archiving tables are
separated from the message warehouse of the live messages, but the data can be
retrieved from the Web Client in the same manner as live messages and archived
messages can be moved back to the life database for further processing.
25
BOX Solution Overview
The BOX routing component can analyse all fields of a message including header
information, user or applications defined fields and information generated by BOX.
Based on this analysis, multiple routing destinations can be assigned - including
specific back office applications, printers, email addresses, and queues for manual
intervention. In addition, functions such as duplicate checking and interaction with
external applications like e.g. embargo, filtering, and liquidity management solutions
can be included in the workflow.
Routing rules can be defined in a table based graphical user interface, or alternatively
in a traditional analysis programming language.
The table-based routing is business oriented, easy to use and mainly used for the
definition of standard routing rules. The data can be exported to MS Excel.
Application Queues
BOX includes a concept called “application queues”. Typically, messages routed to these
queues require some form of manual intervention such as an authorisation or correction,
or they are waiting for a system event such as the receipt of an ACK or NAK. The
messages in these queues can be accessed via the BOX GUI under various selection
criteria and a predefined set of actions can be performed by authorised users.
Although BOX comes “out of the box” with a predefined set of standard application
queues, the general concept of application queues is universal, and any type of
application queue can be defined to address customer specific requirements.
In addition, application queues can incorporate certain specific attributes such as being
started and stopped or launching external applications manually or at predefined times
(scheduling). The elimination of physical queues saves on computing resources, gives rise
to performance benefits, and enables higher levels of message throughput from the same
hardware configuration
Message Enrichment
Messages in BOX can be enriched by application specific data. This data is stored in
BOX as part of the message and can be displayed in BOX Journals and Application
Queues. The data can be filtered and searched for by standard BOX search and filter
functions and can be analysed for routing decisions.
In addition to the configuration options of the graphical user interface it is also possible
to customise screens using X-HTML syntax. This is particularly helpful for visualising
customer specific user data and offers a high degree of flexibility for implementing
customer specific requirements.
26
BOX Solution Overview
Duplicate Checking
This functionality exists for FIN, InterAct and FileAct via checksum and header info.
Duplication Checking is a specific configurable part of the workflow and is not related
to any PDE / PDM handling. If this feature is active, BOX builds and stores a message
digest from configurable message information such as amount, transaction references,
sender, and recipient. Every new message is checked against this information. If the
message is found to be a duplicate it is passed to the corresponding error queue.
Options can be defined as to which message types are to be checked, which parameters
are to be extracted, and which time period for which messages are to be checked.
BOX offers the most comprehensive functionality available in the industry in this area
currently including ISO 20022, FIN, and RNI messages.
A single browser-based user Interface offers the same look-and feel for SWIFT FIN
and ISO2022 XML Messages.
An intuitive graphical user interface for message entry and repair, authorisation,
investigation and message warehouse visualisation.
Complete online message validation including cross field validation and RMA
check.
Configurable authorisation rules and cycles (“4 eye” or “6 eye” principle for
specific messages and amounts).
Several levels of context sensitive online help are provided together with error
checking including field related access to SWIFT user handbooks when applicable.
Message Inquiry
The BOX Web Client includes a customisable graphical user interface to allow searching
for specific messages under various filter criteria including “Quick Search”, “Standard
Search” and “Advanced Search” modes. With the help of these tools, frequently occurring
queries can be easily initiated with just a few clicks, while complex analyses can be
carried out using combinations of logical operators, like those used in SQL statements.
The results of a search are presented in configurable columns, showing the most
important information at a glance on the first page, whilst more specific data can be
obtained by opening an individual message.
The message content can be visualised in several formats, including a user friendly
graphical presentation, Wire Format and XML, and all information displayed can be
printed. In addition, the GUI can be customised for accessing external data repositories
based on individual customers choices.
27
BOX Solution Overview
Company Overview
Contact
Intercope GmbH
Himmelstrasse 12-16
22299 Hamburg
Germany
+49 40 514 52 0
info@intercope.com
28
BOX Solution Overview
Management Team
29
BOX Solution Overview
The BOX User Forum was founded in 2011 with the first meeting hosted by Bank
Austria in Vienna. Subsequently, the event has been organised on a yearly basis,
evolving into the most important event for the BOX community and INTERCOPE.
The BOX User Forum and its meetings provide an excellent forum for BOX customers
to exchange their experiences with the product, to discuss customer requirements for
new functions and enhancements of the product, and to hear about new trends and
developments in the industry. INTERCOPE actively participates in this process to
ensure that all development activities are in line with customer requirements and
technological advancements in the industry.
This year’s BOX User Forum was held at Burg Hemmersbach, Germany 13-15 May
2019.
Next year’s BOX User Forum will also be held at Burg Hemmersbach near Cologne,
Germany.
30