Wipro Technologies - e-Business Case Studies, e-Business Solutions, e-Business Overview, e-Business Whitepapers

Search

e-Business Home

Practices

Enterprise Architecture Consulting

Security Services

Web Services

Portals & Content Management

Application Integration

Business Intelligence and Data Warehousing

Case Studies

e-BUSINESS

Case Study

Application security framework for a leading International Financial Services Company

The Customer

The customer is a leading international Financial Services Company with more than 13 million customers and some 20,000 employees worldwide. Its Insurance Operations provide a range of financial products and services including annuities, corporate and individual pensions’ with profit bonds and investment products to more than seven million customers. The customer has a market capitalization of around $27.2 billion.

The customer company was undergoing a business process re-engineering in transforming the customer services. They therefore wanted a scaleable application security framework that would be capable of integrating with applications via the Middleware Enablement Framework.

The Challenge

As part of the program, the customer wanted to define a security framework for Single Sign On, Authentication, effective Access Control and Audit mechanism. They also wanted to provide a comprehensive security framework for the call center applications that were being developed. However, the customer identified the following key areas to achieve this goal,

	Define a security framework with controls to the backend legacy systems
	Define a security framework for Single Sign On and effective access control using Enterprise Directory
	Enable an audit mechanism that is legally compliant with Financial Services Authority
	Define solution architecture to extend to further applications that are bought into the fold of the CST program
	Provide a security framework that is compliant with the Data Protection Acts, eCommerce directives and the IT Security Policies defined in the organization

The key challenges faced by wipro during the project included,

	To provide a security framework that would be easily pluggable to the strategic applications that were being planned.
	To define a Secure Administration Model to manage user profiles seamlessly in extranet and intranet directories
	To provide an application security framework that is compliant with the needs of the business
	To define a solution architecture that would extend to future applications that would be available to independent financial advisors(IFA’s) and B2B Portals

The Solution

Wipro’s flexible and scalable architecture facilitates easy integration with existing applications and infrastructure components, preserving investment

Wipro conducted interviews and workshops with the customer’s management and users to study the security needs of the business and identify issues existing in the security infrastructure. Wipro analyzed the business applications to be integrated with single sign-on mechanism and identified the level of authentication and access to be assigned to the user. After gathering customer requirements, Wipro undertook a consulting exercise and came up with a prototype of integrating security via the middleware framework. On successful proof of concept, the customer gave wipro the responsibility of architecting and implementing the security model with the middleware enablement framework.

Wipro proposed and implemented a comprehensive security framework that secures access to applications/components through middleware enablement framework by,

	Providing Single Sign On experience to users accessing web based J2EE applications through the middleware enablement framework
	Providing a common generic authorization model (Role based Access Control, Fine-grained Access Control) for users to utilize the core business components of the MEP Framework
	Providing single point Administration that simplifies system and user management via enterprise directory
	Providing a common audit mechanism to audit user activity/transactions of applications initiating transactions from the MEP framework
	Providing a secure messaging mechanism that would ensure data confidentiality and integrity of messages to the backend contract engines
	Integrating extranet and intranet directories for user data management

Benefits to the customer

Wipro's scalable and expandable security framework complements the customer's existing environment by streamlining operations, enhancing security and productivity and delivering cost-effective access to services.

Scalability

Optimizes performance and scalability while simplifying the management of systems and applications resulting in increased efficiency

Seamless Access

Secure navigation across applications and components through Single Sign On creates positive end user experience, increasing security while decreasing support costs.

Cost Savings

	The customer benefits by about 30% on application deployment, development and support with Wipro’s offshore model in the next phase
	Simplifies management, reduces administration burden and lowers costs

Easy Integration

	Inclusion of new applications to the security framework with ease and minimum effort
	Highly secure deployment for maximum protection of valuable data and applications


	Send us an email Request proposal for services Subscribe to our monthly newsletter

CASE STUDIES

	Secure Privacy solution for large Retailer
	A Biometrics based Authentication Server Development
	Security Penetration Testing
	IT due diligence of online brokerage firm for leading insurance firm
	More case studies

Privacy

Sitemap