銀行徵信流程之探討─以C銀行法人金融業務為例 / Credit verification process of corporate finance department in banks—take Bank C as an example

彭雅蘭, Peng, Ya Lan

Unknown Date

金融產業內的競爭愈發激烈，新金融商品雖持續推出，但競爭者間於產品本身的同質性也逐漸趨近，此時對於客戶而言，差異化的服務細節即成為廠商競爭優勢形成的重要關鍵。 提升銀行服務品質的重要環節之一即來自於其內部作業流程上的精進，故之於法人金融業務來說，若能在產品包裝本身之外，透過徵信流程品質的提升，以兼顧其徵信作業的正確性與效率，可達到快速回應客戶需求的能力要求，創造更精緻的差異化，並強化顧客滿意度。 個案公司為國內銀行業主要廠商，其組織規模龐大、各部門分工精細，且對於資訊系統的倚賴度頗深，使徵信流程上難免出現作業繁複拖沓之問題；此外，個案公司法人金融（即企業金融）事業群採徵授信合一制，徵信作業由業務單位發起，輔以眾多支援單位的協同合作，致流程係為一連串人為決策過程所構成，故徵信作業主要權責人員素質的培養亦為影響流程品質的重要因素。 本研究運用Tsaih and Lin（2006）所發展之PWIO（Process-Wide Information Organism）分析方法論，來描述與瞭解個案公司法人金融事業群徵信流程，透過實作表的展開以分析流程，並提出相對應之績效衡量指標與改善建議，作為未來個案公司徵信流程改善之參考，期能因此增進個案公司的徵信流程正確性與效率，進而強化其競爭能力，塑造組織長遠的發展優勢。 / Competition among banks becomes intensive nowadays. While new financial products launched, less differences could be found in products from bank to bank; therefore, the differentiation of detail-oriented services becomes a key factor for keeping competitiveness in the banking industry. One of the main elements for improving the quality of bank services is the amelioration of internal process. As for the corporate finance department in banks, more than product design itself, making credit verification process better, raising operating validity and efficiency would definitely reach their goals for quick response, and also enhance customer satisfaction. The case bank is one of the leading companies in the domestic banking industry. The scale of organization is huge, the divisions of department are meticulous, and the operation process is deeply relied on the information systems. Under such circumstances, the credit verification process of its corporate finance department has become minute and complicated. Furthermore, the business side takes responsibility for the credit verification process. To execute the process, the business side needs supports from other related departments and does a series of decision making based on personal experiences, which means that it is also an influential factor to train the primary personnel well in the credit verification process flow. This study, based on an application of the Process-Wide Information Organism approach (Tsaih and Lin. 2006), describes and interprets the credit verification process of corporate finance department of the bank. For improving the validity and efficiency of the process, this study intends to set targets and evaluation indicators toward the process flow, and provides suggestions at the same time to enhance the long-term competitive advantages of the bank.

PWIO分析方法論

銀行業

徵信流程

PWIO

bank industries

credit verification process

Secure electronic tendering

Du, Rong

January 2007

Tendering is a method for entering into a sales contract. Numerous electronic tendering systems have been established with the intent of improving the efficiency of the tendering process. Although providing adequate security services is a desired feature in an e-tendering system, current e-tendering systems are usually designed with little consideration of security and legal compliance. This research focuses on designing secure protocols for e-tendering systems. It involves developing methodologies for establishing security requirements, constructing security protocols and using formal methods in protocol security verification. The implication is that it may prove suitable for developing secure protocols in other electronic business domains. In depth investigations are conducted into a range of issues in relation to establishing generic security requirements for e-tendering systems. The outcomes are presented in a form of basic and advanced security requirements for e-tendering process. This analysis shows that advanced security services are required to secure e-tender negotiation integrity and the submission process. Two generic issues discovered in the course of this research, functional difference and functional limitations, are fundamental in constructing secure protocols for tender negotiation and submission processes. Functional difference identification derives advanced security requirements. Functional limitation assessment defines how the logic of generic security mechanisms should be constructed. These principles form a proactive analysis applied prior to the construction of security protocols. Security protocols have been successfully constructed using generic cryptographic security mechanisms. These protocols are secure e-tender negotiation integrity protocol suite, and secure e-tender submission protocols. Their security has been verified progressively during the design. Verification results show that protocols are secure against common threat scenarios. The primary contribution of this stage are the procedures developed for the complex e-business protocol analysis using formal methods. The research shows that proactive analysis has made this formal security verification possible and practical for complex protocols. These primary outcomes have raised awareness of security issues in e-tendering. The security solutions proposed in the protocol format are the first in e-tendering with verifiable security against common threat scenarios, and which are also practical for implementation. The procedures developed for securing the e-tendering process are generic and can be applied to other business domains. The study has made improvements in: establishing adequate security for a business process; applying proactive analysis prior to secure protocol construction; and verifying security of complex e-business protocols using tool aided formal methods.

e-tendering

e-procurement

e-auction

e-commerce

e-business

business process

e-tender negotiation

e-tender submission

security

security requirements

secure protocol

security functions

integrity

confidentiality

threat

threat scenario

cryptology

cryptography

generic securitymechanism

cryptographic hash function

digital signature

commitment scheme

identity based encryption

formal method

shvt

model checking

threat modeling

verification elements

verification process