alliance portfolio - swift
TRANSCRIPT
African Regional Conference
Alliance Portfolio
May, 2017
Alaa ALROUSAN, Jonathan LALLEMENT, Billy NYA
ARC 2017 - Alliance family and integration services 2
Agenda
• Alliance Portfolio Overview
• Updates and Roadmap
• Integration Portfolio
• AMH
The Alliance Portfolio
• Modular component architecture
• Zero down time infrastructure
• Mission critical resilience
• Multi-network support
CONNECTIVITY
INTERFACES
INTEGRATION
Alliance Integration Platform
Alliance Lite2 Alliance Access (SAA)
Alliance
Gateway
Alliance Messaging Hub (AMH)
Alliance
Remote
Gateway
• Out-of-the-box solution
• Quick-time to market
• Adaptable and configurable
• Low investment
• Low footprint
• Security
SWIFT Community Cloud Standard on-premises Modular on-premises
La
ye
rs
Solutions
Value proposition
Alliance Connect Other network
gateways
ARC 2017 - Alliance family and integration services 3
ARC 2017 - Alliance family and integration services 4
Updates and Roadmap
• Alliance Access
• Update 7.1.30
• Release 7.2
• Lite2
• AutoClient 1.2.2
Alliance Access
Update 7.1.30
• New version of the Remote file Handler
• Password policy changes (7.1.20 & 7.1.23)
• Database cleanup during the installation process (7.1.23)
• Security Best Practices Check tool (7.1.23)
• Two-factor authentication (7.1.20)
5
April 7, 2017
ARC 2017 - Alliance family and integration services
Why a mandatory upgrade?
Mandatory Technology Refresh
• Mandatory upgrade of key embedded COTS in our products and SWIFT Central Platform to ensure continued support from the vendors
• Introduce 64-bit support
• Refresh OS Baseline
Security Features
• Align the community on security features delivered since 7.0
• Large scale deployment of latest HSM enhancements
• Hardware refresh for HSM tokens and EOL for HSM cards
Product Evolution
• Release alignment as a foundation for future evolutions
Supportability
• Renew the baseline to ensure supportability and long term stability
7 ARC 2017 - Alliance family and integration services
Alliance and SWIFTNet 7.2 Release Timeline
2015 2017 2016
Q4 Q1 Q2 Q3 Q4 Q1 Q2 Q3 Q4 Q1 Q2
2018
18 + months upgrade planning 15 months upgrade implementation
Q3
Sept 2015
7.2 Release
announcement &
availability of
preliminary Alliance &
SWIFTNet 7.2 Release
Overview
Availability of final
Alliance & SWIFTNet 7.2
Release Overview,
Vendor Specs &
Updated Release Policy
Availability of release
SWIFTNet Link and
Alliance Gateway 7.2
DTK for developer
testing in ITB
End Mar 2017 End Jun 2017
General availability
of Alliance and
SWIFTNet 7.2
release
End Sept 2018
End of support of
releases 7.0.x/7.1.x
Jul 2016
8 ARC 2017 - Alliance family and integration services
9
Release 7.2 impact points: Alliance Access moves to 64-bit
SWIFT
network
SNL
7.2
SNL 7.2 Alliance
Gateway
7.2
SOAP proxy WSHA
RAHA
MQHA
Third Party
SWIFT Interface
Third Party
SWIFT Interface
Alliance
Access 7.2
AMH
MQHA
SOAP
AFT
ADK WS IPLA
Third Party
SWIFT Interface
SAA
64-bit
Requires Alliance
Gateway 7.2
Transparent to IPLA
packages and existing
web services
ADK components need
to be rebuilt
Transparent to
out-of-the-box adapters
AFT, MQHA, SOAP
ADK components with
GUI on Workstation
need alternative
Alliance Workstation
GUI retired
CAS
CAS retired
ARC 2017 - Alliance family and integration services
Applies to: Alliance Access/Entry, Gateway, Web Platform and SNL
ARC 2017 - Alliance family and integration services 11
Release 7.2 impact points: Operating System versions – server side
Migration flow
• Take a fresh environment
• Install new OS
• Install new Alliance software & import configuration data
Release 7.0 AIX 6.1
AIX 7.1
RHEL 6.4 Solaris 10
Solaris 11
Windows 2008 R2
Windows 2012
Release 7.2 AIX 7.2 RHEL 7.2
RHEL 6.7(*)
Solaris 11.3 Windows 2016
(*) RHEL 6.7 will only be supported till 2020
12
Release 7.2 impact points: Operating System versions – client side
Release 7.0 Windows 7
Windows 8.1
Release 7.2 Windows 7
Windows 10
Internet Explorer 11
Firefox
Chrome
Edge
ARC 2017 - Alliance family and integration services
13
• It has not been refreshed since release 7.0
• Normal usage moves CPU usage and/or
memory usage significantly over 60%
• Hardware provider will not support the
hardware on the new OS levels
• You plan significant business growth
• You plan to go from bare-metal to
virtualization
• It is less than 2 years old
• Normal usage needs less than 30% of
CPU and memory
• Hardware is explicitly supported by new
OS levels
• Message volumes are declining
Release 7.2 impact points: What does this mean for my hardware
Consider hardware replacement if Consider hardware re-use if
Reference hardware will be provided when software is released
Budget the same value as what
you have currently running
ARC 2017 - Alliance family and integration services
Service Proposal
R7.2 Migration package - Service Proposal
1. Project preparation 1.1 Sanity Check
2. Upgrade services
2.1 End-to-End project assistance
2.2 Migration Services
2.3 Implementation of mandatory changes prior to the migration
3. Training services 3.1 User Training on Alliance Web Platform GUI Interfaces
4. On-going maintenance 4.1 System Care / Local Support
5. Advisory services
5.1 Security Excellence review
5.2 Architecture review
Mandatory module
Optional module
Autoclient 1.2.2
• New configuration tool
• Security enhancements
16
To be installed by
June
ARC 2017 - Alliance family and integration services
Back Office not designed to connect to
SWIFT
Discrepancy between internal message
formats and SWIFT formats
Yearly Standards updates to be applied
to applications
Multiple applications, multiplied
complications
Involvement of more than one vendor
and team
SWIFT
Clients
Service
Providers
Typical integration challenges
18 ARC 2017 - Alliance family and integration services
Connecting your back office to SWIFT can be very complex and requires specific expertise
Interfaces
Messaging services
A secure network
Applications
Reference data
Standards
Integrating your back office with SWIFT…
Sounds easy ?
19 ARC 2017 - Alliance family and integration services
Services
Appropriate integration
poduct
Combining services and the appropriate integration product to offer a true end-to-end solution
SWIFT’s approach to integration
Services and products
20 ARC 2017 - Alliance family and integration services
SWIFT's layered Integration and Interfaces solutions
Secure and
reliable
exchange with
the financial and
business world
Financial
networks
Providing and
managing the link
to SWIFT and
other proprietary
networks
Automating and
streamlining
message exchange
Orchestrating the
interaction with the
customer’s back office
systems
Increasing
interoperability
and efficiency
Reducing cost
and risk
IPLA
Fully embedded in Alliance Access
Seamless interaction with Alliance Access
routing rules
Benefits from Access operations, maintenance,
backup, resilience
GUI based configuration and transaction
monitoring via Web Platform
Search message capabilities via Web Platform.
Alliance Integration Platform (IPLA and SWIFT Integration Layer)
One product – 2 ways to deploy
SWIFT Integration Layer
Provides integration solutions for both Lite2
and Alliance Access
Independent from Alliance Access and main
message flow
Lightweight footprint for powerful integration
Connectivity to Alliance Access using Message
Partners (AFT, SOAPHA, MQHA)
Flexible setup: Different OS than Alliance
Access, can be hosted on the same machine
or a different one than Alliance Access
22 ARC 2017 - Alliance family and integration services
IPLA
GPI connector
APIs for SWIFTRef data access
IBAN validation
New features
SWIFT Integration Layer
GPI connector
23 ARC 2017 - Alliance family and integration services
Project management
Knowledge transfer and formal training
Functional
Analysis
Technical
Design Development Test Go Live Care
Advise on appropriate integration product
and required effort
Zooming in on the Integration part Across project lifecycle
24 ARC 2017 - Alliance family and integration services
REGULATION
COMPLIANCE IT OPERATIONS
LINES
OF
BUSINESS
MARKET
DRIVERS
─ Horizontal scalability
─ Zero downtime
─ Message
transformation
─ Centralized Monitoring
─ Bridge with sanction
filtering solution
─ Compliance
─ Anonymization
─ Faster implementation of
new business flows
─ Highly flexible
─ Free text search through
all transactions
─ Any Message Standard,
FIN, ISO2022, domestic,
proprietary
─ Integration with
MyStandards
─ Message & file volume
growth
─ Payment services
integration ARC 2017 - Alliance family and integration services 26
AMH – Drivers
ARC 2017 - Alliance family and integration services
AMH – Drivers and features
• Consolidated infrastructure
• Integration flexibility
• Message management
• Orchestration
• Message management
• Inquiries and reporting
• Targeted in AMH 3.6 as configuration
• Resiliency
• Zero down-time
• 24/7 operations
• Separate STP from manual
handling
• Upgrades, Patches, Annual FIN
Standards
AMH
Multi-network
27
AM
H
GU
I
AM
H
SE
RV
ER
AM
H
DE
SIG
NE
R
Operating systems:
Oracle Solaris
IBM AIX
Windows family
Red Hat Linux
Application server:
Oracle WebLogic
IBM WebSphere
RedHat JBoss
ECLIPSE BASED
DESKTOP
AM
H
DB
JMS
MQ
Configuration Database server:
Oracle: Dataguard, RAC
Financial
Networks SWIFTNet
Traditional browsers
IE, Firefox
Other
Internal
Infrastructure requirements
ARC 2017 - Alliance family and integration services 29
Architecture & modularity
AMH
Other
Networks
SWIFT
network
DOMESTIC
FILES
FIN
20022
BUSINESS
APPLICATION
BUSINESS
APPLICATION
BUSINESS
APPLICATION
BUSINESS
APPLICATION
AMH and Back office
operators
AMH DOMESTIC TRAFFIC
AMH FileAct
AMH FIN
AMH FIN
AMH for MI & ISO20022
• Dedicated service per instance
• Agility to respond to business
• Segregation of flows
• Central monitoring
Unparalleled flexibility to
manage business flows ARC 2017 - Alliance family and integration services 30
AMH pre-configured vs standard version
Liquidation Mng. & Settlement Cycle
RMM Module
Power Search
Segregate STP and Manual Entry
Instances
Upgrades, Patches, Annual FIN Standards
Sanction Screening (FIRCO)
Message Flow Designer
Report Designer
Ref. Data Distribution
Standard Msg Searching
Feedback to Backoffice App
Handling
Manual intervention of STP messages
Custom Performance Tuning
DB Replication
Archiving
DB Partitioning
Config Mng.
RMA Validation of messages
Ext. Triggers
Validations (Format, Crossfield, FINCopy, Blacklist /Wht Lists
User Mng. (Auth / Athen)
Manual Message Entry
Dublication Checks
Generic Reports
Message Monitoring
SIC, SECOM
Other Network Channels
Request / Response mech. to enrich msgs
LAU – protecting msg transports to
Backends
Active – Active Setup
Blindkey Verification (SAA like)
SwiftNet Protocols (FileAct, Interact, FIN)
Transforming / Enhancing Msgs, DB
Lookups
Anonymisation of Msgs for Security
Triggering steps via business matching of
msgs
SAA to AMH transformation /
migration support
RJE Formatted File System Channel.
File System Backend Channel.
MQ Backend Ch
Standard offering
Pre-Configured
Business applications
AMH resiliency
AMH
SWIFT
network
Alliance Gateway
AMH AMH
Business applications
Alliance Gateway Alliance Gateway
Maximum
availability with
lower TCO
• Active-active
deployment by simple
configuration
• Zero downtime
• Continuous processing
• Duplication check
shared service
• Can be expanded to
additional data center
• Central monitoring
Performance • Proven to perform
under heavy message
load using relatively
minimal resources
• Publishes benchmark
with all supported
hardware vendors
Integration • Easy transformation
capabilities on the edge or as
part of the flow
• Powerful Request/ Response
interface to any back offices
• Real-time queries to external
tables
• Open database model
Resiliency • Zero downtime
• Operates in active-
active mode
• Automatic failover
• Automatic
reconnections and
retries ,
Scalability • Use minimal resources
and grow with your needs
• Gradual approach to
migrate Lines of Business
separately
Business continuity • Traffic never stops
• Respect Cut-off times
• Around the world high
availability
• End to end message
prioritization
Single window • Consolidation of all your messaging needs (e.g.
RTGS proprietary networks, internal traffic)
• One main screen for traffic monitoring or
channel control
• Interoperability and co-existence within multiple
standards
Flexibility • Support of different service’s SLA
• Applicable to various business
requests while reusing existing
components –fast time to market
• Direct connectivity to any external
archiving system
Key Benefits
Alliance Messaging Hub (AMH)
ARC 2017 - Alliance family and integration services 33