1.4. Security

High level of security

The services available through ExtraNet operate at a very high level of security.

Given the protective measures in place, the risk of a cyberattack is, from a technical point of view, minimal.

The aim is to ensure the protection of customer data.

Technical measures

The security technology used to protect the e-business platform is in line with the current standard and is constantly being updated. The following measures are taken to guarantee security.

Up-to-date and reliable encryption technology (HTTPS) is used for transmitting data during the file transfer process, thereby ensuring the confidentiality and integrity (authenticity) of data. A server certificate also attests that the server is actually a Deutsche Bundesbank server.
Individual users must log in with their user ID and password before they can use ExtraNet services, thereby ensuring that no unauthorised person has access to ExtraNet.
Communication via the Bundesbank’s network is analysed and protected through IDS systems and firewalls.
ExtraNet processes are protected by a web application firewall.
Regular checks are made to ensure that the security measures are state of the art.

Organisational measures

In addition, access to ExtraNet during file transfer as well as access to business unit applications are protected through organisational measures.

Access to ExtraNet is only possible if the appropriate authorisation has been given by the business unit. Provided that the access credentials (user ID/password) are used carefully by the customers, this ensures that no unauthorised party has access to ExtraNet.
The infrastructure is monitored by experienced ExtraNet operating staff.
The organisational framework is subject to regular checks in order to guarantee the highest level of security.

Authorisation by the business unit

It is the task of the relevant business unit to give ExtraNet authorisation to:

individual customers (e.g. a bank or firm);
individual users upon registration.