Finance Forum

The world of online business is poised to experience significant growth over the next several years. Put that alongside the ever-increasing sophistication and organization of fraudsters, and organizations are faced with the daunting task of not only translating their businesses to the online world, but doing so in a way that does not put them or users at risk. Drawing on lessons from the past, such as those hard learned in the Anti-Money Laundering (AML) arena, it will be critical that...

Most financial institutions nowadays have sophisticated risk management tools in place, maybe even profiling traders and their habits, searching email traffic for keywords which might be worth checking for fraudulent activities, and much more. But what sense would all that make, if authorizations and priviliges are not provisioned or, more important, de-provisioned in time, and if access to internal applications is not secured with strong authentication and even biometric identification? If...

What is necessary to track down manipulations to (financial) applications? How can regulatory compliance be audited and monitored in a cost-sensitive yet effective way? Dr. Boehmer has worked on a model for automated monitoring of the fulfillment of legal, institutional, and organizational requirements, which he calls "compliance analysis". In contrast to classic methods used for safeguarding corporate networks, which can primarily be described using first order logic calculus,...

The ever-increasing complexity of regulatory frameworks require risks from internal fraud, data manipulation and theft of intellectual property to be managed, measured and quantified, thus pushing identity management towards governance, risk management and compliance (GRC). Currently, there is a paradigm shift visible in the management of identity risks. Traditional user provisioning solutions are dealing proactively with enforcing policies for access rights. However, the implementation of...