Digitálisbankolásvalósidőben az Oracle felhőalapú …konferenciak.advalorem.hu/uploads/files/Banki 04.10. Racz Zsolt... · Configurator Dialog Flow Execution ... Tuning Pack,

Copyright © 2015, Oracle and/or its affiliates. All rights reserved. |

Digitális bankolás valós időben az Oracle felhő alapú platformján

Rácz Zsoltzsolt.racz @oracle.comOracle Technology Financial Services

Oracle Hungary Kft.


Safe Harbor Statement

The following is intended to outline our general product direction. It is intended for information purposes only, and may not be incorporated into any contract. It is not a commitment to deliver any material, code, or functionality, and should not be relied upon in making purchasing decisions. The development, release, and timing of any features or functionality described for Oracle’s products remains at the sole discretion of Oracle.

2


Agenda

1

2

3

Real time digital bankingInitiatives, requirements, challenges, dilemmas, status:• Digital transformation in sales• PSD2 • Instant payments

Oracle cloud platform for Digital Banking

Oracle Cloud at Customer platform for instant payment

Copyright © 2015, Oracle and/or its affiliates. All rights reserved.

Initiatiative and requirements

Availability and manageability: Legacy data access and compute processing in 7x24/365

SLA – continuous!

Scalability: 25TPS-500TPS / 300ths-3M accounts

Performance – 5 seconds total – milliseconds processing even in peak times

Projected capacity need: 10-25M/month basic transactions + uncertainty (Fintech)

Time to market: 2019 Q1

Creation of Trusted networks – capability to join networks and add TP partners

Smart and automated contact management with on behalf Auth – contact service subscriptions + event handling

Real time from gateway to legacy and front ends – account information, payments

Fraud detection real time

Real time digital banking


Challenges

Non existent real time 7/24 MAA legacy + transaction mgt architectures

Maximum Availability Infrastructure + Network + under 5seconds automatic failover mgt.

Short time to Market + Project delivery capacity

Parallel implement new account management and transaction management application

Higher than current SLA – like card authorisation

Quick scallability – TPS is an educated guess, can skyrocket at any point in time

Test and prove milliseconds processing capability – close to

Adjust to back end systems business logic

Transform daily operation - from IG2 to IG3

Integrate real time considering multiple internal systems and processes

Manage increased query complexity and frequency

Manage 3rd parties - service providers

Customer sensitivity to getting response and information on mobile


To milliseconds

From seconds

At All times


Dilemmas

Projected transactional volumes

Commercial viability of FINTECH

Innovation growth inside the banks or outside

Level of substitution of current services IG2, IG1, cards, branch services



A bankrendszer digitális transzformációja

Change management digitális eszközök

használata

Retail - digitális megoldások

B2B - digitális megoldások

Digitális Sales management eszközök használata

Back officeszolgáltatások

digitális megoldásai

Fundamentális változások

Metodikai változások

2/3

1/3

7

Kö

ltsé

gtak

aré

koss

ági

célo

kÁ

rbe

véte

l nö

velő

célo

k


Oracle - Digitális transzformáció felmérése

Felméréshez csatlakozott bankok:

OTP Bank K&H BankErste BankTakarék CsoportMKB BankRaiffeisen BankGránit BankSberbankNA

8

Digitális fejlesztések státusza: Retail szolgáltatások: 8 B2B vagy corporate: 6 Sales management: 11 Back office operáció: 4 Change management: 4Összesen: 33 digitális funkció

Nem tervezett Tervezés alatt Kivitelezés alatt – pilot Megvalósult

Copyright © 2015, Oracle and/or its affiliates. All rights reserved. |9

0

1

2

3

4

5

6

7

8

Webespapírmentes

digitális távoliügyintézés

Videó alapútávoli kiszolgálás

Elektronikusaláírás

Fióki ügyintézéssorán digitalis

eszközökhasználata

Kereskedési platformok –

deviza

Kereskedésiplatformok -értékpapír

Mobile bank Mobile fizetési megoldás – NFC

Milyen Retail digitális szolgáltatások, megoldások használ/tervez használni a bankszektor?

Nem tervezett Tervezés alatt Kivitelezés alatt - pilot Megvalósult


0

1

2

3

4

5

6

Kereskedésiplatformok - deviza

Cash poolingplatformok

Co-brandedkártyaszolgáltatások

e-commerce fizetésimegoldások

platform bankingszolgáltatások

blockchain

Milyen B2B digitális szolgáltatásokat használ/tervez használni a bankszektor?



0

1

2

3

4

5

6

Milyen sales management megoldásokat használ/tervez használni az bankszektor?



Digital banking: Front end to/from back endsHow to integrate with legacy IT?

AMLAccounting

SavingsERP

CRM

Card-linked offersKYC

PFM

Crowdfunding

Gamification

Cash Management

Data Visualization

Anti fraud

Developer portal

Public APIs

Bank’s Legacy IT System

1

2

3

Bank’s Customers

AdvisoryUse innovativeFinancial apps

On different platforms

Provided bytheir bank

Financial Institution’s data center / cloud /

appliance

TPP, Bank’s competitor

How to integrate?


Dig

ital

Ban

k /

PSD

2 S

erv

ice

Lay

er

Operational Data Store

(cust. master data, balances,

short transaction history...)

Sec. platf.

Batch

Oracle Digital Banking patformB

ack

Off

ice

Sys

tem

s

Ente

rpri

se S

erv

ice

Bu

s

DWH

TPP

s

API Service

Mgr.

API Design

Real-Time

API GW

TPP Pricing & Billing

Stro

ng

Au

th.

Reg

ula

tory

Au

th.

Co

nse

nt

Batch

Ente

rpri

se S

erv

ice

Bu

s

PSD2Op.

Data Store

Real-t.

Serv

ice

Lay

er

Outbound Customer

Experience

cust

om

ers

DBEE

OSB ICS

JCS

CCS

ACC

DBCS

GGGG

DBECS

DBIMDBEE

WLS

IDCS

APIPCS

ODI ODI

IBS

MCS CXCS

DBIM

OBDX

APIPCS

Third Party Developers

Blockchain

On Premise Cloud


Functionality and Technology Components Mapping

Functionality Cloud Components On-premise Components

PSD2Mobile/NetBankAI salesChatbotBlockchain

OBDX – Oracle Banking Digital ExperienceOSBCXCS – Customer Experience CloudSuiteMCS – Mobile Cloud ServiceIBS – Intelligent Bot ServiceBLCS- Blockchain ServiceAPIPCS – API Platform Cloud ServiceIDCS – Identity Cloud ServiceICS – Integration Cloud ServiceJCS – Java Cloud ServiceCCS – Container Cloud ServiceACC – Application Container Cloud ServiceDBCS – Database Cloud Service + extremepeformance in memory

DBIM – Database in MemoryOSB - Oracle Service BusGG - GoldenGateWLS – WebLogic ServerODI – Oracle Data IntegratorDBEE – Database Enterprise Edition


APIs Dataservice by Database CS Real Time Data Store

Corporate Segmens

Access and approval rights,Set Approval Workflows, LimitsCash Pooling Subsidiary accounts

Retail ServicingCustomer profile

Current customer offersCustomer life cycle eventsProduct lifecycle eventsTerms and conditionsApplicable fees

Customer profile dataOnboarding dataCustomer product list: savings, credit cards, deposits, loansRisk: credit history

Cards, Payments, InvestmentsAccount balance, orders, ST hist.Cards - Limits Credit cards - outstanding balance, credit limitInvestments: portfolio valuation, open positions, risk

Goal: consolidated real time service of customer information (PSD2+++)

Oracle Cloud

Cloud/Internet

On-Premise

MCSClient SDK

MAFJET

Custom APIsMobile Backend Connectors

Cloud Native Platform APIs - records/services

Oracle Mobile Cloud Service

REST APIs


Intelligent Chatbots: Key Components

Channel Configurator

DialogFlow

Execution

CustomComponents

in Dialog Flow

AI Engine

• Unified cross-channel chat interface between bots & humans

• Declarative bot builder UI for bot flow

• State machine that executes context driven workflows with scoped variables

• Active machine learning algorithms that identify relationships and extract insights from unstructured data

• SDK to consume backend API’s that satisfy human requests via the bot

Custom


Key Features Simplified: Web based, Point & Click integration experience

Highly Visible: Rich monitoring & error management

Lifecycle : Support both on-premise, cloud lifecycle tools

Highly Available: Data Guard, RAC Cluster

Managed: Oracle Backs Up, Patches, Upgrades

Fully portable: On-premise to Cloud

Benefits Pre-integrated SaaS, PaaS Auto-Association

Integration Pre-builts: Customize, Activate

Rapid Mapping using Recommendations

Rich Connectivity with Cloud & On-premise Connectors

Secure On-premise integration using lightweight Agent

Rapid and fully automated provisioning

Oracle Integration Cloud Service


PSD2 Requirements and Solution MappingGeneral Requirements for Common and Secured Communication

Functionality Component

Strong Customer Authentication (SCA) OBDX (SCA rules, dynamic linking, soft/mobile token & One time password)IDCS (user id repository, integration of the bank and API channels, Issues and validates OAuth tokens, Manages and validates consent)3rd party: token generation (integration of the channels)

Consents and blacklists Consent: OBDX, APIP CSBlacklist: OBDX, APIP CS

Fraud Monitoring Transaction monitoring: on premise internal Fraud system

Traceability OBDX (API) + APICS

Format NextGenPSD2 (Berlin group) will be published on the 8 Feb 2018, - OBDX APIs will be compliant

Usage of certificate APIP CS

Testing facilities Sandbox Services: anonymized JSON data for the mock services in DBCS Opportunity: APIFortress – an API Testing & Monitoring solutionDesign + Library : APIP CS


IG4 Instant paymentDatabase infrastructure

EXA Cloud ServiceEXA Cloud at Customer

20


Exadata Cloud: Choice of Agile Deployment Models

22

Core ExadataPlatform

In Customer Data Centers

Exadata Cloud at Customer (ExaCC)

In Oracle Public Cloud Data Centers

Exadata Public Cloud Service (ExaCS)

Cloud Automation

Flexible Subscription

Model

Oracle-Managed Exadata

Infrastructure

Cloud Security and Hardening

Software Defined

Networking


Exadata Cloud at Customer: Large Financial Institution

Non-Oracle Systems

Customer Prod Data Center

Data Guard & Control Plane

Traffic

Corporate mandate for a cloud-based IT strategy

Applications are too mission-critical to be deployed on generic H/W architecture

Focus on self-service agile provisioning of Database services

Standardized deployment models that can quickly scale for business spikes

Data too sensitive to leave private data centers

All data needs to be encrypted

Simple, predictable licensing modelMonitoring

ExaCCProd

ExaCC-DRCloud Control Plane

Non-Oracle Systems (DR)

Customer DR Data Center

200%

cap.

120%

cap.

DBMS layer

Database

2 nodes

Database

1 nodes

ExaCCTest/dev

200%

cap.

Database

2 nodes


Commercial Consumption Models for Exadata Cloud

• Oracle Database Enterprise Edition Extreme Performance Included

– All Oracle Database Enterprise Edition Extreme Performance Entitlements

– All Exadata Database Machine features

• Bring Your Own License (BYOL) – License entitlements customer brings to cloud

– License entitlements for the following Oracle Database features included • Transparent Data Encryption (TDE), Data Masking and Subsetting Pack

• Diagnostics Pack, Tuning Pack, Real Application Testing

– All Exadata Database Machine Features

– Significant advantage for BYOL to ExaCC versus AWS IaaS or AWS RDS

– One Oracle Processor License maps to 2 OCPUs

24


Commercial analysis – 66 OCPU

25

Oracle Cloud at Customer Subscription versus OnPrem


Gold – Comprehensive HA and Data Protection

MAA: Unplanned Outages and Planned Maintenance

Events Downtime Data Loss Potential

Database instance failure Seconds Zero

Recoverable server failure Seconds Zero

Data corruptions, database unable to restart, site failure Zero to minutesNear-zero if ASYNCZero if SYNC

Online file move, reorganization/redefinition, and patching Zero Zero

Hardware or operating system maintenance and database patches that cannot be done online but are qualified for RAC rolling install

Zero Zero

Database upgrades: patch sets, full database releases Seconds Zero

Platform migrations Seconds Zero

Application upgrades that modify database objects Hours to days Zero

Pla

nn

ed

Mai

nte

nan

ceU

np

lan

ned

Ou

tage

s

Copyright © 2015, Oracle and/or its affiliates. All rights reserved. |Copyright © 2017, Oracle and/or its affiliates. All rights reserved. 27

• Oracle is NOW offering several new operational modes to bring Oracle Cloud to even more customers

–Disconnected Mode (with or without specified security levels)

–Semi-connected Mode (with regional service bureaus)

–Connected/standard Mode (cloud ops staff operate from specified countries)

What’s New: Variety of Cloud Operations ModesMeeting the needs of high security deployments

Copyright © 2015, Oracle and/or its affiliates. All rights reserved. |Copyright © 2017, Oracle and/or its affiliates. All rights reserved.

Online Support System

Cloud Operations KnowledgeBase

On-Premise

Oracle Cloud at Customer: Disconnected Mode

28

Oracle Cloud Operations(at Customer premises)

air gap

Security Validation

Process

Customer

Network

Oracle

Network

Internet

PatchesPatching

Metering/Bursting

Metering/Bursting

Patching

Metering/Bursting

OCM/ExaCM Metering &

Bursting Data

• Customer requires OCM to be managed entirely on-premise (on-site by dedicated 24x7 resources, typically with specific levels of security clearance)

• No direct connection to Oracle from the Cloud at Customer deployment

• Controlled ability to move metering/troubleshooting data on/off site

• “Swivel Chair” approach used by dedicated on-site Cloud Operations team

Oracle Cloud Operations

Customer

Customer

Oracle


Online Support System

On-Premise

Oracle Cloud at Customer: Semi-Connected Mode

29

Oracle Cloud Operations

(at Customer premises)

air gap

Security Validation

Process

Customer

Network

Oracle

Network

PatchesPatching

Metering/Bursting

Metering/Bursting

Patching

Metering/Bursting

OCM/ExaCM Metering &

Bursting Data

Customer

Internet

Customer

Oracle

SSL

Support Gateway(Outbound Only)

TelemetryData

SSL TelemetryData

Remote Cloud Operations

(Monitoring)

InternetSSL Telemetry

Data

Local Service BureauCloud Ops Team Metropolitan Zone


Standard (Connected) Cloud Operations

30

Oracle CloudOps

Internet

VPN

SSL

VPN

SSL

Customer

Oracle AdvancedSupport Gateway

CustomerNetwork

SSLSNMPSSH

SSLSNMP

Customer

• Monitoring/Event Mgmt• Incident Mgmt• Problem Mgmt• Change Mgmt• Configuration Mgmt• Knowledge Base• Service Reporting

Service Mgmt Systems

Oracle• Managed remotely by shared

resources from global locations

• Bidirectional Internet connection


Documents

Digitálisbankolásvalósidőben az Oracle felhőalapú …konferenciak.advalorem.hu/uploads/files/Banki 04.10. Racz Zsolt... · Configurator Dialog Flow Execution ... Tuning Pack,