Professional Documents
Culture Documents
mCommerce
MobiFin
Plastic money
Coins
Barter
. Leonard Waverman
MobiFin Overview
MobiFin is a unique
Mobile based
Transaction
Management System
that acts as a highly
versatile intermediate
platform. It enables
service provider to
diversify business by
provisioning core
services like Recharges,
Banking services, Sales
and Support to various
channels.
MobiFin empowers a
service provider with a
set of distinct features
that provides an
intuitive and convenient
way for managing
service channels with
various interfaces under
single roof
MobiFin - Opportunities
Mobile Top-Up
Utility Payment
mTicketing
Mobile Money
Loyalty
Int. Remittance
Micro Finance
Mobile Banking
Lottery/Betting
Insurance
Services at a glance
Mobile Top Up & Bill Payment
Mobile Money/Wallet
Mobile Ticketing
Mobile Banking
Micro(Agent/Branchless) Banking
P2P ( Person-to-Person)
Air Ticketing
Register
Bus Ticketing
Check Balance
International Remittance
Toll Tickets
Railway Tickets
Movie Tickets
Self Recharge
Ferry Tickets
Stop Cheque
Bulk API
Change Password
Mobile Money/Wallet
Mobile Banking
Micro Banking
Voucher recharge is
expensive, fraud prone,
with logistics
challenges
Person is banked
Person is unbanked,
works & lives in urban
or rural area, earns &
spends cash
Voucher is unfriendly
and needs every MNOs
EVD SIM Card
Traditional rmittence
infrastructure not
available
Banking is
cumbersome due to
limited branches & ATM,
no computer & Internet
for online banking
Cash handling is a
security problem
Unable to access
banking services & Has
Mobile Phone
Mobile Money/Wallet
Mobile Banking
Micro Banking
Multi-channel PIN-less
top up
Provides doorstep
banking with minimal
infrastructure
Solution
Mobile Top Up
Problem
Why MobiFin ?
Solution Architecture
GPRS
POS Access
GPRS Mobile Application
WAP
Web
Merchant Log IN
Unstructured Supplementary Service
Data (USSD)
USSD Menu
Interactive Voice Response (IVR)
POS Device Application
Service Flow
Mobile
Account
Wallet (Bank)
Services
Top Up
Services
Remittances
Serices
Wallet Transfer
Mobile Top Up
Domestic
Remittances
Bank Transfer
Internet Top
Up
International
Remittances
Load Money
from bank
Account
DTH Top UP
Check Balance
/Statement
Merchant
Payment
Bill Pay
Settings
Electiricity
Change
Password
Tax Collection
Change
Transcation
Password
Loan Payments
School Fee
Payment
Mobile Top-Up
Utility Payment
Channel Member
Challenges
Operator Challenges
Time to market
Cost of printing
Stock availability
Higher investment in
stocks
Dependence on the
channel members
Availability of the
preferred denomination
Transportation and
storage
Storage
Limited visibility on
distribution channel
Revenue realization
Geographic coverage
Customer Challenges
mTopUp Advantages
mTopUp Advantages
Multi-channel PIN & PIN-less Top up
Multi Operator Single PIN & PIN-less Top up
Device & network independent
Self Recharge
Retailer Recharge
Bulk Recharge (API)
Balance Transfer (MNO)
Bill Payments (Utility)
Top up Via Banking Transaction
Services
Service Offered
Brief
Transaction Type
Mobile Handsets
Web Portal
Bill payments
SMS
IVR
Open API: XML, HTTPS
Feature Requires
Banking Integration
MobiFin Apps
MobiFin provides Application for
Java
Symbian
Smart Phone (Android & IOS)
Blackberry
MobiFin platform support a Distribution channel up to 16 Levels. Also , allows to Create a Distributor. Distributors can have their
own Mobile Applications and Web portals through which they can Create and manage agent/Retailers under them. They can set
the desired Products and commissions to the agents and control their business. MobiFin also allows real-Time reports which
shows on going transactions and Commissions.
Multiple domains
Distributor
Sub-Distributor
Sales Agent
Retailer
Commissions Management
Value of transfer
Transaction Rules
Daily/Weekly/Monthly
Transaction Control
Daily /Weekly/Monthly
Amount Control
Retail Rules
Sales Rules
Daily /Weekly/Monthly
Retailer Transaction
Service Rules
Rules
Mobile Money
Int. Remittance
mTransfer
The Mobile Money concept has transformed many countries from Cash based market to Cash Less market.
Mobile Money allows banked
system
Using Send Money , the Agent can load money into the End Users Wallet. Basically , the End User providers physical cash to Agent and ask agent to
transfer eValue into his/her wallet. Below snapshots providers graphical view for the same
Receive Money allows the End User to convert their eValue in to physical
cash. In this case , The End User has to transfer the evalue in to Agents wallet
and get the physical cash on confirmation of the same. Receive money
request are generally initiated by the End Users from their mobile Devices.
They can initiate the Receive Money request either from USSD or SMS. Upon
successful Transaction , The user and the Agent gets notifications from
provider and user gets the physical cash from Agent.
The below
snapshots
describers
the steps involved
in User
Application to
perform Transfer
mTransfer Advantages
mTranfer Advantages
* Traditional rmittence
infrastructure not available
Services
Wallet Transfer
Wallet Transfer
Withdrawal
Wallet Transfer
Load Cash
Load Cash
Check Balance
Top Up Services
Top Up Services
Remittances Services
Remittances Services
Bill Pay Services
Bill Pay Services
Tax Collection Services
Merchant payment Services
Ticketing Services
Ticketing Services
Change Password
Supported Charges
Fix Amount Based Charges
Flexi Amount Based Charges
Fix Amount Based Charges
Flexi Amount Based Charges
Fix Amount Based Charges
Flexi Amount Based Charges
Transaction Based Charges
Fix Amount Based Charges
Flexi Amount Based Charges
Fix Amount Based Charges
Flexi Amount Based Charges
Fix Amount Based Charges
Flexi Amount Based Charges
Flexi Amount Based Charges
Flexi Amount Based Charges
Fix Amount Based Charges
Flexi Amount Based Charges
Transaction Based Charges
Participants in Ecosystem
Participants
Brief
Subscriber
Mobile operator
Operational Flow
Operational Overview
Agents
Subscriber
Local Agent pulls inward remittance from Holding account into his
M Wallet via his handset and pays cash out to the recipient
Recipients can also choose to pull their inward remittance into
their bank accounts ( Banking Integration Recquiered)
The sender shall also receive the transaction ID , amount and the mobile number of the person for the transaction done
Mobile Banking
Upholding profit margins necessitates an increased focus on driving productivity - reducing the overall cost to reach out the customers
Bank customers are provisioned on the system to access their account and carry out transactions like Notifications and alerts,
Bill payment, transfers and transactions, Account and wealth management & Financing: credit, loan, insurance
The bank is
responsible for
the licensor so
contractual
relationship with
compliance, facilitating
serves as a proxy,
MBSP
providing secure
settlements, forex
mobile phone.
subscriber m-Wallet.
offered).
Account
Information
mWallet Services
Cash IN from Bank Account
Cash Out to Bank Account
mWallet Statement
Wallet Money Transfer
Banking Services
Mini Statement and checking of account history
Alerts on Account Activity or passing of set thresholds
Access to card statement
Cheque Book Request
Recent Transaction
Add / Remove Bank Account
Bank Fund Transfer
Locating nearest bank branch, ATMS
PIN Provisioning or Change of PIN
Payments, deposit,
withdrawals,
and transfer
Payment
Mobile TopUp
Utility Payment
Mobile Ticketing
Deposit / Withdrawals
Operational Overview
Create different service packs with different product mix per pack
Account ID mapped to
MSISDN & bank account
Subscriber
number(s)
registration
Links
mobile
number
to
account
mBanking -Features
Subscriber password (MPIN) management via handset & web based self care
Salary Disbursements
Stock Quotes
Last 5 transactions
mBanking Advantages
mBanking Advantages
Enable full banking services on any mobile,
with full security with all following features on
a single click of a mobile
Register
Check Balance
Get Statement (Mini Statement)
Transfer Funds
Make Payments
Stop Cheque
Request Cheque Book
Change Password
Bill payments
Balance check
Change M-PIN
Additional functionalities can be added as per requirement of the Service Provider, regulatory requirements and availability of appropriate
API at the Bank host system.
Firewall
CryptographyAl
gorithm
Internet
HTTPS
SSL 3.0
CryptographyA
ES
HTTPS
SSL 3.0
CryptographyAl
gorithm
IP Sec VPN
Database Cryptography
Digital Certificates - SSL
End to end transmission Cryptography
Two different authentication processes
Ethical Hacking Test (Vulnerability Assessment)
Self destruction in case of loss, theft or a password mistake.
User vs personal device (only a specific user ID can use a specific device)
ISO 8583
Bank
SMSC
Opt in
Customer Subscribers
Invitation
Bank Solicit Subscription
Queries
Customer Request
Information
Delivery
Path
SMS Modules
Customer Relationship
Management
Present
Offer
Customer
Notices
Alerts
Transaction Alerts
Cheque Bounce Alerts
Cheque Paid Alert
Clearing Cheque Alert
Standing Instruction
Bank Dispatch
Rewards
MobiFin
SMSC
Gateway
Carrier
Transmission
Utility
Information
Customer
Handset
Un bank
Consumer
Approaching
Authorized
Banking
Agent in their
area
BANK
Processed
Enrolled Data
Personalized
baking details Verification
Consumer
Dispatch
Bank Benefits
Gives banks large retail presence without opening expensive branches or ATMs
Visibility via signage at retail outlets
Requires minimal infrastructure: mobile phone & BA; no bank accounts &
branches / ATM
Subscribers of all mobile operators can use service, giving banks access to huge prospective customer base
Architecture
Secure ANI
IVR
ISO 8583
Consumer
WEB
Firewall
Firewall
https
Provider
3DES / AES
ISO 8583
Mobile App
https
Bank
SMS / USSD
Consumer
Security
Scalability
Redundancy
Hardware
can support.
efficiently.
MySQL DB supported.
total operation.
AML
Reconciliation
MobiFIN
Platform
Transaction
Data Files
Provider/Op
erator
Transaction
Data files
Trace Files
MobiFin Platform
Application Logs :
of logs based on
access.
debugging and
troubleshooting
troubleshooting at
access to platform
highest level.
applications.
Transaction Logs :
These logs are
maintained in the
reliable DB thus it is
available as Report
Formats. It also
contains vital
information such as
Request/Responses
in it. It helps to
troubleshoot
transaction related
queries.
auditing facility to
admin users.
Database Servers
Application Servers
Redundant servers
Storage
KVM
Routers
Switches
Power recq
Rack Space
Scripts are configured for periodic hot backup (data files) and archive log backups
Able to perform period cold back-ups
Scheduled scripts copy the backup files to shared storage
Backup files are later moved into tapes
Two copies of archives logs are created
Archive log files of last two days are available on hard disk for recovery
Database recovery is done by commands using files from shared storage and tapes
Database Maintenance
Database space and cluster monitor
Database tuning
Database tuning (e.g. Identify database buffer and library caches hit ratios, sort in memory adjust as required)
Application Maintenance
Server load checking
CPU utilization
Memory utilization
Alarm Scenarios
Application subsystem failure: A process level alarm when any of the module can be brought up
Congestion: A system or network component has reached its capacity or is approaching it.
Corrupt data: An error has caused data to be incorrect and data is therefore unreliable data passed by the application is
incorrect
File error: The format of a file (or set of files) is incorrect and cannot be used reliably in processing
I/O device error: An error has occurred on the I/O device cases in which the application is unable to read configuration
files
Resource at or nearing capacity: There is a congestion control mechanism to provide high availability of service
Response time excessive: The elapsed time between the end of an inquiry and beginning the answer to that inquiry is
outside acceptable limits
Security levels
Fraud Checking
Automated barring on
failed attempts exceeding
threshold
System bars customers
after a defined number of
repeated unsuccessful topup attempts
Configurable block period
in between two successful
transactions.
The objective of setting a
time gap is to track and
identify abnormal
transaction requests
Upper limit on the
transaction amount
permissible in a day
Barring Users
Channel users
Subscribers for P2P
transactions
PIN based access
Forced changed of PIN on
1st request
Forced changed of PIN on
a periodic basis
Security Parameters
Security Features
3DES Security
Brief
Triple DES (3DES) is a block cipher formed from the Data Encryption Standard (DES) cipher by using it three times. When it was found that
a 56-bit key of DES is not enough to guard against brute force attacks, 3DES was chosen as a simple way to enlarge the key space without
a need to switch to a new algorithm. The use of three steps is essential to prevent meet-in-the-middle attacks that are effective against
double DES encryption.
Requests coming into the e-Top Up platform via SMS are encrypted using 3DES, to ensure security during transmission from handset to eTop Up system
MD5 Hashing
MD5 (Message-Digest algorithm 5) is a widely used cryptographic hash function with a 128-bit hash value, as an Internet standard (RFC
1321). An MD5 hash is typically expressed as a 32 digit hexadecimal number. This is a one-way algorithm and is irreversible i.e., cannot be
decrypted.
AES
AES has been adopted by the U.S. government and is now used worldwide. It supersedes the Data Encryption Standard (DES),[5] which
was published in 1977. The algorithm described by AES is a symmetric-key algorithm, meaning the same key is used for both encrypting
and decrypting the data.
SHA1
Secured Hash Algorithm 1 -A 160-bit hash function which resembles the earlier MD5
To make an transaction exchange using SMS, the bank or mobile operators connect to our central server over a secure channel using Industry standard Hypertext transfer
protocol Secure (HTTPS), the same protocol is used for online banking.
For additional Security we do deploy VPN (Virtual Private Network)
Mobile Transactions made through SMS can also apply Second Factor Authentication (2FA) using IVR (Interactive Voice Response) or WAP (Wireless Access protocol)
To further safeguard the SMS we store records of each Message. Storing a record of the message is regulatory requirements and we take one more security step by encrypting
each message, we use cryptography algorithm from security leader RSA. This encryption technology is based on Asymmetric Public Key Cryptography and has strength of 2048
bits.
To Make an transaction exchange using USSD , the banks or mobile operators Connect to our network of server system over a session based ( not store and
forward)Connection. USSD reduces risk and leaves no trace of transaction on handset.
Customers who want to transact over web are protected by Inactivity lockout.
When an account has no activity for a set time after customer logs in , the connection is dropped, locking the user out.
Currently all transactions over web are on secure channel using Industry standard Hypertext transfer protocol Secure (HTTPS)
Mobile transactions can also be made using a downloadable client (Mobile App).
During these exchanges data send from the mobile devise is secured using HTTPS , as well as other security algorithms such as RSA(An American computer and network security
company. RSA was named after the initials of its co-founders Ron Rivest, Adi Shamir, and Len ), SHA 1 (Secured Hash Algorithm 1). Mobile devise they do not support SSL (Secure
Socket Layer) protocol are secured by protocols with similar strength.
The Mobile application also supports MPIN ( Mobile Personal Identification number ) /Transaction Pin using RSA and AES (Advance Encryption standards) .
Another layer of security can be applied with application Pin(A PIN), this pins is validated locally at the middleware or the application.
The APIN is used to unlock the application on the mobile phone before connecting to the server system.
The additional layer of security keeps Validation information from being stored on the mobile phone or the middleware.
Audit Trail:
Every transaction (whether successful, failed or error) passing through our System is logged.
The Admin Interface offers a full audit trail for every activity on the system; it tracks & logs all the activities being performed by each admin user on the Admin Interface.
Hardware Interfaces