File Transfer Middleware for a City Commercial Bank
Many application systems at this city commercial bank rely on file-based batch data exchange across systems. The current approach primarily involves invoking FTP tools through application programs, with operations managed via scripts and custom code. While FTP is simple and adequate for small-scale scenarios, it presents significant challenges in large-scale deployments involving multiple critical business systems—such as performance bottlenecks, low security, and poor manageability.
The File Transfer Platform is designed as a foundational component of the bank’s IT architecture, aiming to provide a standardized and consistent infrastructure for file-based communication across numerous systems. The goal is to establish a unified platform framework that regulates transfer channels, interaction methods, data standards, processing patterns, and management models—effectively addressing issues of data consistency, integrity, security, and governance in inter-system interactions.
From a deployment perspective, the bank's IT systems are distributed across office networks, production networks, and DMZ zones, with some systems also interacting with external internet-based partners or merchants. The file exchange scenarios cover:
Batch file transfers between systems,
Real-time file exchanges during transactions, and
Manual file uploads/downloads by internet-facing users.
Therefore, the platform architecture must accommodate various interaction models and stringent security requirements, while supporting centralized governance across the entire infrastructure.
The File Transfer Platform facilitates both batch and real-time file transmission between application systems. Compared to traditional FTP tools, it offers enhanced efficiency, improved security, and visualized management capabilities.
It also enables secure file interactions between internet-facing partners/merchants and the bank’s credit card systems by replacing legacy HTTP/FTP transfers with a new WTP (Web Transfer Protocol) approach. As part of the solution, external-facing systems (e.g., third-party merchant systems) were moved from the DMZ zone into the production network to enhance security. This integration ensures seamless coordination between business page operations and file transfers, thereby improving system usability.
Additionally, a centralized monitoring and management center was established, providing unified control over all system nodes across office, production, and DMZ networks. The platform also incorporates access authentication and authorization management for external users and systems (e.g., merchants and partners), delivering a truly platform-based management capability.
The platform has now been successfully deployed, fulfilling the bank’s file transmission and management needs across production and DMZ systems. Its support has expanded to include systems in office and external networks, ultimately achieving full network domain coverage. This milestone marks a key step toward the bank’s vision of standardized, platform-based file transmission operations.