ENSURING THE SECURITY OF FINANCIAL – SERVICES USING TECHNOLOGY DIGITAL FINGERPRINT DEVICES
This Standard establishes recommendations, the implementation of which is aimed at
provision by organizations of the banking system of the Russian Federation and other areas of the financial market of the Russian Federation with control of user access identifiers
devices by the method of generating and processing digital fingerprints of devices in the remote provision of banking and financial services to users.
The digital fingerprint of the device is formed using methods that collect information about the software and hardware configuration of the user device to identify the device, in order to:
• implementation of measures to counter the implementation of money transfers
funds without the consent of the client, including for the investigation of information security incidents;
• identification of chains of related transactions for the transfer of funds made
without the consent of the client;
• identifying devices that are repeatedly involved in the implementation of computer
attacks/incidents, including network attacks;
• use as an authentication factor.
