17 August 2017
Find out more
« All videos

The humble bank account

19 June 2014 | 6796 views | 2

Mark Hartley, CIO, Clear2Pay, discusses why banks should be changing the function of the 'humble' bank account, banks' role within the crowded market of mobile wallets and the risks faced by banks not taking advantage of new opportunities.

Comments: (2)

A Finextra member
A Finextra member | 20 June, 2014, 12:46

I agree with Mark that the perceived threat to banks by possible legislation that will give to licenced third-party providers access to bank accounts/systems for the purpose of financial product innovation, should rather be perceived as an opportunity.

But we can’t underestimate the security challenges for banks trying to do so. Only a few banks have enabled external developers to create apps for their app store.  The few that have – such as Credit Agricole with its CAStore – seem to offer only access to sanitized data to developers.  Offering transactional capabilities, such as sending a payment, or accessing a bank account balance, raises all sorts of issues about ensuring security.  While banks can of course carefully review developer code to weed out malicious code, this is hardly a scalable activity and clearly not a core competence for banks.  At present therefore, banks that launch app stores either have to write lots of apps themselves or else risk disappointing customers with apps that are interesting but not very useful.

At Ixaris, we’re very keen on opening up payments to app developers as well as non-technical staff without compromising security.  We’re taking two approaches as follows.

The first one is a simple app building tool that enables non-technical staff to configure various transactional capabilities (such as issuing prepaid cards, methods for funding them, etc.) through a guided configuration that at the end results in a payment application. A default user interface is created that can then be customized using style sheets, etc. Initially we expect this will be used by the bank’s own staff. But eventually we hope it will be their customers.

The second – which complements and extends the app builder concept - is Payments Mark-up Language (PayML). PayML extends HTML5 with a set of tags that enables developers to write sophisticated multi-device apps using their usual web dev tools.  The PayML tags enable them to create placeholders in their apps for payment sensitive data such as “the user’s bank account balance” or “data field for the user to enter their credit card number”.  Such HTML apps can then be submitted to the bank, scrubbed automatically to remove potentially harmful code and then run in the bank’s secure environment to provide the app functionality.  When a user subscribing to the app is logged in to the bank’s secure environment, the tags can be resolved to the user’s actual bank account balance, or to the secure entry of credit card details.  Since the developer has no access to the bank’s secure environment, and cannot pass actual code into it, there is no way that secure information can leak out to unauthorized parties while the app is running.

Both of these approaches could hugely reduce the time and cost it takes banks to create and deploy payment products, as well as to open their systems to third-parties without compromising security.

Gerry.cavander@ixaris.com

Be the first to give this comment the thumbs up 0 thumb ups! (Log in to thumb up)
Jim Wells
Jim Wells - Wellspring Consulting International - Fort Lauderdale | 22 June, 2014, 21:42

Mr. Hartley is absolutely spot on about the need for consumers to store "value" of many types in a safe repository and this represents an excellent opportunity for banks.  Sadly, over the last 5 years, banks , especially the mega-banks, have so severely damaged their reputation as trusted financial intermediaries, that it would be the rare consumer who would entrust this data to these casino-like organizations masquerading as government-insured financial institutions.    

Be the first to give this comment the thumbs up 0 thumb ups! (Log in to thumb up)
Comment on this story (membership required)
Log in to receive notifications when someone posts a comment

Related blogs

Create a blog about this story (membership required)
visit www.response.ncr.comdownload the paper nowvisit www.worldpaymentsreport.com

Top topics

Most viewed Most shared
Coinbase raises $100mCoinbase raises $100m
10256 views comments | 14 tweets | 14 linkedin
DBS Bank launches online car selling marketplaceDBS Bank launches online car selling marke...
9608 views comments | 13 tweets | 11 linkedin
China preps central clearing house for mobile payments providersChina preps central clearing house for mob...
9449 views comments | 8 tweets | 15 linkedin
HSBC automates documentary trade processing with IBMHSBC automates documentary trade processin...
8441 views comments | 6 tweets | 21 linkedin
Monzo appoints Curve co-founder Foster-Carter COOMonzo appoints Curve co-founder Foster-Car...
7920 views comments | 1 tweets | 2 linkedin