HOME

TheInfoList



Click Here for Items Related To - FinTS
OR:
FinTS on:   [Wikipedia]   [Google]   [Amazon]

FinTS (Financial Transaction Services), formerly known as HBCI (Home Banking Computer Interface), is a bank-independent protocol for online banking, developed and used by
German German(s) may refer to: * Germany (of or related to) **Germania (historical use) * Germans, citizens of Germany, people of German ancestry, or native speakers of the German language ** For citizens of Germany, see also German nationality law **Ger ...
banks. HBCI was originally designed by Germany's three banking "pillar" networks, namely the
Sparkassen-Finanzgruppe The ''Sparkassen-Finanzgruppe'' ("Savings Banks Financial Group") is a network of public banks that together form the largest financial services group in Germany and in all of Europe. Its name refers to local government-controlled savings banks t ...
,
German Cooperative Financial Group The German Cooperative Financial Group, german: Genossenschaftliche FinanzGruppe Volksbanken Raiffeisenbanken, sometimes referred to in English as "Volksbanken Raiffeisenbanken Cooperative Financial Network", is a major cooperative banking network ...
, and
Association of German Banks The Association of German Banks (german: Bundesverband deutscher Banken) is the association of private banks in Germany and a key lobby group for Germany's financial sector. In the traditional 3-pillar system of the German banking industry, this r ...
. The result of this effort was an open protocol specification, which is publicly available. The standardisation effort was necessary to replace the huge number of deprecated homemade software clients and servers (some of them still using BTX emulation). While IFX (Interactive Financial Exchange), OFX (Open Financial Exchange) and SET (Secure Electronic Transaction) are tailored for the North American market, HBCI is designed to meet the requirements of the European market. The FinTS-specification is publicly available on a website run by the ZKA (
Central Credit Committee The German Banking Industry Committee (GBIC) (german: Die Deutsche Kreditwirtschaft / ''DK''), known until 2011 as the Central Credit Committee (german: Zentraler Kreditausschuss / ''ZKA'') is an industry association of the German banking industry. ...
).


Features

* Support for online-banking using
PIN A pin is a device used for fastening objects or material together. Pin or PIN may also refer to: Computers and technology * Personal identification number (PIN), to access a secured system ** PIN pad, a PIN entry device * PIN, a former Dutch ...
/ TAN one time passwords. * Support for online-banking with
SWIFT Swift or SWIFT most commonly refers to: * SWIFT, an international organization facilitating transactions between banks ** SWIFT code * Swift (programming language) * Swift (bird), a family of birds It may also refer to: Organizations * SWIFT ...
. * DES and
RSA RSA may refer to: Organizations Academia and education * Rabbinical Seminary of America, a yeshiva in New York City *Regional Science Association International (formerly the Regional Science Association), a US-based learned society *Renaissance S ...
encryption and signatures. * Making use of
XML Extensible Markup Language (XML) is a markup language and file format for storing, transmitting, and reconstructing arbitrary data. It defines a set of rules for encoding documents in a format that is both human-readable and machine-readable. ...
and
SOAP Soap is a salt of a fatty acid used in a variety of cleansing and lubricating products. In a domestic setting, soaps are surfactants usually used for washing, bathing, and other types of housekeeping. In industrial settings, soaps are used ...
for data-exchange, encryption and signatures. * Implemented on top of
HTTP The Hypertext Transfer Protocol (HTTP) is an application layer protocol in the Internet protocol suite model for distributed, collaborative, hypermedia information systems. HTTP is the foundation of data communication for the World Wide Web, ...
,
HTTPS Hypertext Transfer Protocol Secure (HTTPS) is an extension of the Hypertext Transfer Protocol (HTTP). It is used for secure communication over a computer network, and is widely used on the Internet. In HTTPS, the communication protocol is e ...
and
SMTP The Simple Mail Transfer Protocol (SMTP) is an Internet standard communication protocol for electronic mail transmission. Mail servers and other message transfer agents use SMTP to send and receive mail messages. User-level email clients typic ...
as communication layer. * Multibanking: The software clients are designed to support accounts on multiple banking companies. * Platform Independence: The specification allows software development for various types of clients. * Storage of the encryption keys on an external physical device (smart card) for improved security. * Possibility to use so called "Secoder" smart card readers to allow the user to cross check the transaction data on a secure device before signing it to uncover manipulations caused by
malware Malware (a portmanteau for ''malicious software'') is any software intentionally designed to cause disruption to a computer, server, client, or computer network, leak private information, gain unauthorized access to information or systems, de ...
. To use Secoder, the bank as well as the home banking software have to support the Secoder protocol extension of FinTS.ZKA: Spezifikation FinTS 3.0 Alternative ZKA Sicherheitsverfahren
(PDF; 1,2 MB) HBCI has been superseded by its successor FinTS, and as of 2011, 2000 financial institutions in Germany are supporting FinTS.


Versions


HBCI 2.2 PIN/TAN

HBCI 2.2 PIN/TAN (or HBCI+) is an extension to HBCI that added a security method based on
PIN A pin is a device used for fastening objects or material together. Pin or PIN may also refer to: Computers and technology * Personal identification number (PIN), to access a secured system ** PIN pad, a PIN entry device * PIN, a former Dutch ...
s and TANs, which had already been in use with BTX and web banking.


FinTS 3.0

For version 3.0, which formally introduced the PIN/TAN method, the specification was renamed to FinTS, whereas the original DSA- and RSA-based security method retained the name HBCI.


FinTS 4.0

In version 4.0, the basic message syntax was switched over to
XML Extensible Markup Language (XML) is a markup language and file format for storing, transmitting, and reconstructing arbitrary data. It defines a set of rules for encoding documents in a format that is both human-readable and machine-readable. ...
. Further, the number of roundtrips necessary was reduced, allowing asynchronous communication (e.g. via
SMTP The Simple Mail Transfer Protocol (SMTP) is an Internet standard communication protocol for electronic mail transmission. Mail servers and other message transfer agents use SMTP to send and receive mail messages. User-level email clients typic ...
) for simple transaction dialogues.


References


External links


hbci-zka.de

fints.de
- Documentation and protocol information by the ZKA

- FinTS version 4.1 (including link to SEPA adaptions to FinTS)

- FinTS version 4.0 (archived)
aquamaniac.de/aqbanking/
- AqHBCI / OpenHBCI2 free software project
www.pecuniabanking.de
- Pecunia, Online Banking on the Mac, GPL Online banking Banking technology Technical communication Financial routing standards Standards of Germany {{Germany-stub