Security for Online Transaction Processing in a White Label Financial Switch

White label financial switches have introduced automatic banking machines (ABMs) in niche markets by taking advantage of cheap modern network and PC technology. However, the use of such technology in ABMs and white label switch data-centers makes these systems susceptible to the same attacks as a common office computer network. The white label market and component organizations are described briefly to set the business context, and the security threats to its network environment are cataloged. The focus is on online transaction processing including remote access, wired networks, and wireless networks. Standard industry security mechanisms help to provide protection for financial transactions, but do little to protect the network itself. Threat vectors, security measures, gaps and solutions are outlined for each component of online transaction processing, with particular reference to such systems in Canada. The conclusions point to a Defense-In-Depth architecture built on a step-by-step analysis of the threats and threat vectors in online ABM networking. Recommendations for ABM design, and future subjects for investigation are offered.