basic trn itm

SIGMA CIPTA CARAKA

Integrated Transaction Management (ITM)

Basic Trainingby

Joko Wijoseno

AgendaAgenda

• Overview electronic delivery channel product

• Overview ITM as middleware, ATM & InterLink concept

• ITM & InterLink version product

Electronic Delivery Channel Electronic Delivery Channel ProductProduct

Secu

re L

ayer

ATMs

Telephones

PCs

MobilePhones

PDAs

POS DevicesSe

cure

Lay

er

ITM™

FinancialInstitutions

GlobalNetworks

RegionalNetworks

MobileOperators

Billers

CUSTOMER TOUCHPOINT

ROUTING ENDPOINTS

EDC Product Cont'dEDC Product Cont'd

HSM

Card Database

PIN Management

Card Embossing

CARD MANAGEMENT

Terminal Management

Host Security Module

DEVICE HANDLER

ATM MANAGEMENT

Online Switch Management

SIGMA|INTERLINKFINANCIAL

INSTITUTIONBank, insurance,

multi finance

EFT NETWORKGlobal Networks

Regional Networks

PAYMENT GATEWAYBillers, Mobile

Operators

Branch A

Branch B

Branch C

CORE

BA

NKI

NG

I T MI T M

Visa, Mastercard, EuropayATM Bersama, Alto, Cakra, BCA

Multi Core Banking,Insurance, Multi Finance

PLN, Telkom, TaxTelkomsel, XL, Satelindo, Im3

Appl. InterfaceCore Banking

Appl. InterfaceOther Banking Appl.

LEGACY APPLICATION

Introduction to ITMIntroduction to ITM

• ITM System Overview• ITM Modular System• Transaction Flows and Modules

ITM: OverviewITM: Overview

Established in 1975, over 30+ year history of technology enhancement and transaction solutions.

Experienced in 70+ countries, presence in US, EMEA, Latin America, Caribbean, south Asia and pacific rim with an active client base of over 200.

Enterprise and middleware system. Improved customer service. 24x7 customer access to all channels. Consistent balances and channel delivery. More efficient IT support - reduce number of

vendors. AS/400 integration. Speed to market, proven implementation.

ITM: Modular SystemITM: Modular System

. . .Driver

POSDrivers

OFXDriver

VoiceDrivers

ISO8583Drivers

ATMDrivers

JSPServlets

Tran

sact

ion

Pac

kage

s

InformationTx

MessageTx

HistoryTx

DepositTx

WithdrawalTx

TransferTx

InquiryTx

. . .Tx

Tran

sact

ion

Rou

ter

Mail/MessageProvider

Bill PaymentProvider

AccountingProvider

UserProvider

CardProvider

ITMProvider

. . .Service

ExternalNtwrk Provider

Mail/MessageService

Bill PaymentService

JDBC/SQL

JDBC/SQL

JDBC/SQL

DQ MessageService

. . .Service

Data CommService

Open Transaction Middleware

API Layer

DeliveryChannelDrivers

OpenTransaction

ObjectsApplicationProviders

ApplicationServers

ITM

EFTNetwork

DataSources

EFTNetwork

ITM: Modular SystemITM: Modular System

HSM

Card Database

PIN Management

Card Embossing

CARD MANAGEMENT

ATM Terminal Management

Host Security Module

DEVICE HANDLER

ATM MANAGEMENT

Online Switch Management

SIGMA|INTERLINKFINANCIAL

INSTITUTIONBank, insurance,

multi finance

EFT NETWORKGlobal Networks

Regional Networks

PAYMENT GATEWAYBillers, Mobile

Operators

Branch A

Branch B

Branch C

CORE

BA

NKI

NG

I T MI T M

Visa, Mastercard, EuropayATM Bersama, Alto, Cakra, BCA

Multi Core Banking,Insurance, Multi Finance

PLN, Telkom, TaxTelkomsel, XL, Satelindo, Im3

Appl. InterfaceCore Banking

Appl. InterfaceOther Banking Appl.

LEGACY APPLICATION

ATM

ITM: A Modular SystemITM: A Modular System

Automated Teller Machine

Device

Euronet Internet

Banking PC

Communications Interface

ITM Core

Point Of Sale Device

Banking Application

Interface

Device Control Interface

ExternalNetwork Link




Automated Teller Machine

Device


Device Control Interface ITM Core

Banking Application

Interface



ExternalNetwork Link


CommunicationsInterface


ITM CORE





Network



POSATM Telephone Baking

CommunicationsModule

ATMTransaction

ManagerDevice Control

Module

CommunicationsManagerModule

CardProcessing

Module

SecurityModule


NetworkDriver

External Network

ApplicationInterfaceModule

Remote HostModule

System Administration

Module

SystemLoggingModule

System Routing Program

ITM: Transaction Flow Overview


ATM The Communications Module (COM) handles the physical communications with the device through a specific communications protocol. No data conversion is done. This module provides a transparent link to the rest of the system.

Communications Module

Communications ModuleCommunications Module

• Protocol specific (X.25, TCP/IP, LU0)• Assigns the STAN to each transaction

(System Trace Audit Number)• Removes/adds protocol information• Fills out RTDS - Routing Data Structure• Delivers messages to DCM• Examples: X25xx, TCPxx, FNCxx


ATM


The Communications Manager Module (CMG) handles the background monitoring of the status of communications links in the system. (Example: CMGxx)

Communications Manager Module


ATMThe Device Control Module (DCM) handles any processing specific to the device type. Messages coming from the device are translated from the device specific message format to an internal message format and vice versa.

Device ControlModule


Device Control Module

Device Control ModuleDevice Control Module

• Specific to message format of device

• Translates messages between ITM

and device

• Processes and reports device status

messages (NDC, DDC)

• Examples: DDCxx, NDCxx, SATxx, xx,

BCAxx, TLBxx, VIPxx, MDSxx,EDCxx


ATMTransaction


Module


The Transaction Manager Module (TMM), provides transaction/message routing, recording of transactions and basic management functions.

Transaction Management Module

Transaction Management ModuleTransaction Management Module

• Records transactions to the TRAN file

• Determines participants and types• LON, RON, ROF, NET

• Validates transactions

• Routes transactions

• Starts the first phase of currency

conversion

• Example: TMMxx


ATMTransaction


Module


CardProcessing

Module

TMM sends a message to the Card Processing Module (CPM) if the participant type is LON or RON.

Card Processing Module

Card Processing ModuleCard Processing Module

• Validates the card number.

• Performs security validation (sends PIN information to SEC).

• Links card number to account number.

• Performs transaction authorization processing based on limits and previously authorized transactions.

• Sends transaction to AIM/ABL.

• Example: CPMxx.


ATMTransaction


Module


CardProcessing

Module

SecurityModule

Security Module performs cryptographic functions such as PIN validation and PIN block translation (for external networks).

Security Module

Security ModuleSecurity Module

• Validates the Personal Identification Number (PIN) entered

• Generate PIN • Translate PIN• Example: RSMxx, ERCxx, CRPxx


ATMTransaction


Module


CardProcessing

Module

SecurityModule

NetworkDriver

In the case of cards “not on us” (participant type = NET) , the transaction is routed to the appropriate external network (Example: VIPxx, MDSxx)

External Network


Network Driver


ATMTransaction


Module


CardProcessing

Module

SecurityModule


NetworkDriver

External Network


AIM performs transaction authorization based on account balances downloaded from the host system. It allows for a standardized interface to host systems.

Application Interface Module

Application Interface ModuleApplication Interface Module

• Provides a generic single point for the ITM system to interface with various accounting systems.

• Performs common actions and then exits to vendor specific programs that handle the actual authorization processing according to vendor or customer specific requirements.


• Interface option:• Direct update to core banking file• Using service program from core banking• Using message format


• Verifies account number

• Applies transaction to Memo balance

• Sends response to TMM or others

module driver H2H for payment

• Example: AB2xx, ICBxx, JSLxx, ABLxx,

KP3xx, BVNxx, SMLxx, COSxx, etc


ATMTransaction


Module


CardProcessing

Module

SecurityModule


NetworkDriver

External Network


Remote HostModule


Module

SAM provides transaction timing control and stand in processing if needed.

System Administration Module

System Administration ModuleSystem Administration Module

• Transaction timeouts

• Administrative message

processing(08xx)

• Stand In Processing (if required)

• Example: SAMxx


ATMTransaction


Module


CardProcessing

Module

SecurityModule


NetworkDriver

External Network


Remote HostModule


Module

SystemLoggingModule

The System Logging Module provides logging support for all modules in the system

System Logging Module

System Logging ModuleSystem Logging Module

• Writes messages to the log file in

chronological order

• Variable levels of logging: additional

logging can be turned on or off as

necessary

• Example: LOGxx


ATMTransaction


Module


CardProcessing

Module

SecurityModule


NetworkDriver

External Network


Remote HostModule


Module

SystemLoggingModule


System Routing Program handles transaction routing between modules according to system routing tables.


System Routing ProgramSystem Routing Program

• Called by all the modules

• Routes transactions

• Writes messages to the Log Module

ITM Software- Integration Is the KeyITM Software- Integration Is the Key

ITM COREITM COREEFT Network

Solution

Other CPU(s)

WorkstationAuthorizationPOS

ATM

OnlineSwitch Control

Hostto

Host

AutomatedCommunications

Manager

Telephone Banking

ICCSIntegrated

Credit CardSystem

iSeries Platform

IntegratedBill Payment

System

IMSIntegratedMerchantSystem

CoreAccounting

Software

Wireless Banking

InternetBanking

OnlineCredit/Debit

Network

Other Vendor(s)

Host to HostSolution

ATM Transaction Message FlowATM Transaction Message Flow

• Authorized, Host PIN Verification

ATM Com ATM DCM TMM SAM CPM Security AIM

Request 0200 02000200

0200

0200

02100210Reply

Completion 0202


• OAR Processing, No Host PIN Verification


Request 02000200

0200 (OAR=Y)

0200

02100210Reply

Completion 0202

0200 (OAR=Y)OAR Reply

OAR Response 0200 0200


• Denied by DCM, No Host PIN Verification


Request 0210

Completion 0202

Reply


• Denied by TMM, No Host PIN Verification


Request 0200

Completion 0202

0210Reply


• Denied by CPM, No Host PIN Verification


Completion 0202

0210Reply

Request 02000200

0210


• Denied by AIM, No Host PIN Verification


Request 0200 02000200

02100210Reply

Completion 0202

9202 9202

9212


• SAM Time Out, No Host PIN Verification


Request 0200 02000200

0210 (50 Response Code)Reply

Completion 0202

9202

9202

9212


• Late Response, No Host PIN Verification


Request 0200 02000200

Completion 0202

9202

9202

9212

0210

0210 (50 Response Code)Reply


• Hardware Fault, Misdispense, No PIN Verification, or Customer Timeout


Request 0200 0200

0210

0200

Reply

Cancel 0202 (denied)

0210

9202 (denied) 9202

9212

ITM Set ITM Set UUp and Operationp and Operation

• iSeries and ITM Definitions• ITM Naming Conventions• Library List Utility

ITM: iSeries DefinitionsITM: iSeries Definitions

• LibrarySystem LibrariesUser Libraries

• ObjectProgramsFilesLibraries

ITM: iSeries DefinitionsITM: iSeries Definitions

• FileDisplayPrinterSource PhysicalLogical

• ProgramRPG, RPGLE, CLP ,C

ITM: Naming ConventionITM: Naming Convention

ITM Libraries• T - Test / Temporary • C - Custom• D - Data• R - Release• B – Base

• ASILIB


Programs• Product/Owner Prefix – 1 Byte• Component ID (or Free form) – 3 Bytes• Program Function Code – 1 Byte• Free form – 2 Bytes• Program Suffix – 1 Byte

• Example:ZITM6BDRADDC8SER


Online Modules• Product/Owner Prefix – 1 Byte• Module Identifier – 3 Bytes• Program Function Code – 1 Byte• Program Type – 2 Bytes• Program Suffix – 1 Byte

• Example:ZTMM000RZCPM001C


AIM API Programs• Product/Owner Prefix – 1 Byte• Component ID (for Vendor) – 3 Bytes• Program Function Code – 1 Byte• API Type – 1 Byte• Vendor Release Level – 1 Byte• Program Suffix – 1 Byte

• Example:ZAB26P2RZKP36R4R


Physical File• Product / Owner Prefix – 1 Byte• Component ID (or Free form) – 3 Bytes• File Description – 2 Byte• Constant – 1 Byte• File Suffix – 1 Byte

• Example:ADDCCM0PSISONR0PZPARCT0P


Logical File• Product / Owner Prefix – 1 Byte• Component ID (or Free form) – 3 Bytes• File Description – 2 Bytes• Sequence Number – 1 Byte• File Suffix – 1 Byte

• Example:PHYPDT1LSVIPNX2LZMODCT3L

ITM System Internal MessagesITM System Internal Messages

• 01xx – Authorization message• 02xx – Financial transaction message• 04xx – Reversal message• 9xxx – Internally generated message

InterInterLLink: Overviewink: Overview

ATM Network

Communications

IBM AS/400

CommunicationsCard Networks

HSM

And over 100 moreNetworks

Payment G/W:

•Telkom - GSM

•PLN - Tax

CAKRACAKRACommunicationsNetwork

CommunicationsNetwork

EDC Network

Server

Internet Banking

SMS Banking

Phone Banking

Workstation

CommunicationsNetwork

http://images.google.com/imgres?imgurl=www.ifibank.com/images/bersama.gif&imgrefurl=http://www.ifibank.com/_data/atm/atm.html&h=63&w=103&prev=/images%3Fq%3Datm%2Bbersama%26svnum%3D10%26hl%3Did%26lr%3D%26ie%3DUTF-8%26oe%3DUTF-8%26sa%3DN

http://www.detik.com/adv/detikmobile/im3.shtml

http://www.pajak.go.id/lto/index.htm

InterLink: FeatureInterLink: Feature

Type of InterLink connection• H2H to EFT Network

With Card ManagementALTO,CAKRA,ATM BERSAMA,BCA,KARTUKU, etc

Without Card ManagementATM BERSAMA,CAKRA, etc

• H2H to Billers/Merchant PLN,TELKOM,SATELINDO,TELKOMSEL,IM3,Pro-XL, etc

• H2H to another application Internet Banking Host, Call Center Host, KIOSK Host,

EXIMBILLS, etc

The Message Data of InterLinkThe Message Data of InterLink

Message Data between hosts are:• Free Format Message data• Fixed Message data• XML• ISO8583

ISO8583 most popular rather than others, many application use it to handle message data between hosts


ISO8583 Bit Maps• Started with Message Type Identifier• Following the Message Type Identifier is a bit map. • This “bit map” also called the primary bit map, consists of

64 bits (normally in hexadecimal)• The primary bit map is always present (bits 1-64) with the

most frequently used data elements being indexed from these bit positions.

• Each bit signifies the presence or absence of the data elements associated with the position of bit. Presence is denoted with “1;” absence with “0."

• When first bit value of the primary bit map is “1,” then the secondary bit map is presence.

• The secondary bit map represents data elements between 65-128.


ISO8583 Bit Maps

Sample of Primary Bit Maps (Bit #0) F 2 3 E 4 0 0 1 8 8 E 0 8 0 0 01111 0010 0011 1110 0100 0000 0000 0001 1000 1000 1110 0000 1000 0000 0000 0000

Bit on: 1,2,3,4,7,11,12,13,14,15,18,32,33,37,41,42,43,49

Sample of Secondary Bit MapsBit #1 on mean, it has the secondary Bit Maps 0 0 0 0 0 0 0 0 0 2 0 0 0 0 0 00000 0000 0000 0000 0000 0000 0000 0000 0000 0010 0000 0000 0000 0000 0000 0000

Bit on: 103


ISO8583 Bit MapsISO8583 0200 Financial Request Sample Data :MSGID BIT#0 BIT#1 BIT#2

0200 F23E400188E08000 0000000002000000 166019810000000003

BIT#3 BIT#4 BIT#7 BIT#11 BIT#12 BIT#13 BIT#14 BIT#15

382099 000000000000 1010114206 366734 114205 1010 0310 1010

BIT#18 BIT#32 BIT#33 BIT#37 BIT#41 BIT#42

6011 06601981 06601981 000000000625 ATMNCR 601981

BIT#43 BIT#49 BIT#103

KAPT. SUBIJANTO TANGERANG 154ID 360 0130021005550012

CMS Concept

Card Concept

•One ATM Card can be attached with up to 4 account numbers with the same type.

•Example:

•1 ATM Card can be attached with 3 saving accounts and 4 current account

•Using Track-1 and Track-2 of magnetic stripe.

CMS Concept

•Track-1: Containing name to be appeared in ATM screen

•Track-2: ISO format

•;123456XXXXXXXXXX=05121011010000?

•Start sentinel = ;

•Card number = 1234 56XX XXXX XXXX

123456 = Bank Institution Number (BIN)

Expiration date = 0512 (not processed)

CMS Concept cont'd

•Service code = 101 (Depend Product)

•Member number = 1

•Language code = 01

•PIN offset = 0000 (not processed)

•End sentinel = ?

CMS Concept

Card ValidationEach transaction request is checked against the card data for the following:•Is the transaction requested allowed by the card ?•Has the card been issued properly ?•How is Card status ? (negative or not)•Is the PIN correct ?•Is transaction still within specified limits ?•Collects information for transaction tracking and limits processing•Account number and type•Present multiple accounts with same type for selection by cardholder

basic trn itm

Documents