Підтримка інформаційної безпеки процесингу платіжних карт

Abstract

Розглянуто роль банківських установ у забезпеченні динамічного розвитку економіки, впровадженні сучасних банківських технологій та інструментів. Визначено проблеми надійного та ефективного процесингу платіжних карт, інформаційної та фінансової безпеки, протидії випадкам фроду, кардингу, скімингу тощо. Запропоновано методи і програмні засоби для оперативного визначення точок компрометації та скомпрометованих платіжних карт з метою запобігання випадкам шахрайства у сфері банківського обслуговування та організації боротьби з його проявами. The impact of banking system on the economy is increasing. Financial institutions and banks directly participate in the capital activities, produce and support a large number of financial products, including payment cards. Security issue is the priority for banks. The emergence of chip cards radically changed the situation of card fraud. However, the presence of magnetic stripe cards is still great, the old types of fraud continue to exist and develop. Analysis of statistical monitoring confirms the continuation inUkraine: consistently high level of ATM fraud (skimming attacks); significant reduction in the time interval of copying information from card etc.In cases of fraud attacks the task is to detect compromised “common points of purchase” (CPP) and compromised payment cards. The task is to identify transactions in this CPP, to prevent use of the information read from the card. Also there is an inverse situation where fraud on the card takes place (transaction are not made by the client) and it is necessary to identify CPP.To solve this problem one have initial data on transactions from database in .xls format. Comparing data it is possible to find the crossing point, which likely will be the compromised CPP. A simple way to solve this problem - compare two corresponding Excel-spreadsheets. The problem is solved by means of VBA. The spreadsheet contains two Excel-tables to be compared to find the intersection TID, MID, AID codes. After analyzing the data of comparable tables program macro identifies compromised CPP. It allows to detect skimming attacks, to block payment cards that have been compromised and to prevent material damage, threats and inconvenience to customers.The work shows that IT protection against fraud in the banking sector can and should be enhanced.