Page 99 - INTEK Banking Technologies E-Payment Suite
P. 99

innovative life











                     Security – applica on security







                                                                                        Terminals/ Networks/
                                                                                             Hosts
                             Firewall






                SEGMENT 1                                                   Firewall      Web applications


                          Application server    Internet Application Server
                            HA Cluster           HA Cluster                 Firewall
                                                                                           System users
                          Application server   Internet Application Server
                            (failover)             (failover)
                           HSM 1
                         HSM 2 (backup)
                                                                             Firewall
                                                                                              LDAP

                                                                        Oracle Transparent Data Encryption (TDE)
                                                                        is used to encrypt the following data:
                                      Firewall                          • PAN
                SEGMENT 2                                               • Cardholder name
                                                                        • Expiry date
                                                                        • Service code
                            Database Server
                                       HA Cluster  Database Server
                              (Failover)
                                                                        Oracle Database Vault is used to pro-
                                                                        actively safeguard application data stored in
                                                                        the database from being accessed by
                                                                        privileged database users
                                                                                     Ariana components
                                Oracle RMan
                                                                                     SSL\TLS encryption
                                      Firewall                                       DES\3DES\AES\RSA encryption
                 DataCenter
                                                                                    Oracle Network Encryption (OAS)
                                                                                        (or SSL over JDBC)
                                                                                     Reserved connections
                             Tape libriary /VTl  Disk Storage








                                                          99
   94   95   96   97   98   99   100   101   102   103   104