swift

From a Blockchain based to a Blockchain inspired world, SWIFT could deliver verdict at Sibos

test-hand-chains

Image Source

This time last year, the dust hadn’t settled on the Blockchain hype, and several key players within Fintech and Financial Services were quite upbeat about the possibilities. However, as results of PoCs from various consortiums, central banks and payment providers emerged, the results were mixed. Daily Fintech covered an article on R3’s miseries towards the end of last year when Goldman Sachs left the consortium.

Since then, R3 publicly moved away from Blockchain, into a Blockchain inspired world using an open source distributed ledger named Corda. The R3 consortium lost three major banks towards the end of last year. This is vastly attributed to the fact that they chose to move away from a pure Blockchain implementation to a Distributed Ledger implementation for Corda.

The three banks Goldman Sachs, Santander and JP Morgan left the consortium and invested in Axoni that was a pure Blockchain firm. It got worse when R3 blogged that they were not a Blockchain firm, and had always been a distributed ledger company and got trolled on social media for that.

This was shortly followed by the news that SWIFT had launched its inter-bank payments platform that it believed would be the future of its cross border payments platform. The platform was called GPI (Global Payments Innovation), and had a founding consortium of 12 global banks. The GPI, at that time was based out of traditional technologies and not Blockchain. However, earlier this month, SWIFT announced that GPI was being beta tested on Blockchain with 22 new banks validating the system. Verdict on this PoC is going to be at Sibos later this year.

Swift GPI

Image Source

Apart from this, the Bank of England (BoE) haven’t delivered a conclusive verdict on the PoC with Ripple for Cross border payments. The detailed report on the PoC was released earlier this month. The key message was:

” Cross-border payments when applied to wholesale markets present different challenges than when compared with retail and corporate transactions, which the Ripple product is designed to handle. The availability of liquidity is one such challenge, and the PoC allowed the Bank and Ripple to begin exploring these questions. “

In other words “Ripple’s solution wasn’t fit for purpose”, although Ripple chose to see it differently.  A few days later, Ripple announced that a pure Blockchain based approach was not scalable for banks and advocated a “Hybrid approach”.

Wearing my technology hat on, I see some fundamental lessons here, and I may be repeating what has been so often mentioned.

  • Find technologies that can solve your problems – it may not have to be Blockchain.
  • Do not interchangeably use Decentralised Ledgers and Blockchains. You can photocopy on a Canon machine too (not just on Xerox).
  • Innovation doesn’t always have to be on sexy technology. SQL Server and Oracle can do the job too.
  • Simplicity is often overlooked and massively underrated.

I believe that SWIFT’s announcement of the results of their Blockchain PoC at Sibos could provide a decisive direction for Blockchain in Financial Services/Payments. And it might well be “Let’s Move On”.

Arunkumar Krishnakumar is a Fintech thought leader and an investor. 

Get fresh daily insights from an amazing team of Fintech thought leaders around the world. Ride the Fintech wave by reading us daily in your email.

 

Ripple may become real competition for SWIFT in cross border payments

Best Internet Concept of global business from concepts series

ID:38626297

Image source.

Next week, 8,000 bankers and their vendors fly into Geneva for 4 days of talking about FinTech. Last year I had to fly to Singapore. This year, I can just hop on a train from Bern (sayonara jet lag).

Last year Emergent Fintech started to move onto the main stage at SIBOS and this year it really is center stage in a way that resonates with the people who come to SIBOS; there is less talk about disruptive business models replacing incumbent banks and more about how disruptive technology can help Banks make a quantum leap in processing efficiency.

However one Emergent Fintech venture that is active at SIBOS could give SWIFT (which owns SIBOS) some cause for agita. Ripple is emerging as a real contender in cross border payments, which is a business that SWIFT has dominated for decades.

Ripple Basics and Recent Momentum

To quote from Ripple information on SIBOS (Stand F60):

“As bank-grade distributed financial technology, Ripple delivers instant, certain, and low-cost settlement for all banks via a global network of banks and market makers.

 Ripple offers a real-time cross currency settlement solution and a FX market making solution, both available for license. These solutions enable you to settle cross-currency payments efficiently, by connecting your bank directly to other banks around the globe for direct bank-to-bank settlement.”

Ripple recently closed a $55m Series B and in today’s market, a Series B is a good proxy for momentum. The investors are mainly banks, which makes sense as they will be the users.

More importantly, they are making the first live payments on the network, talking about transactions completing in 20 seconds.

The recent problems with Ethereum play into Ripple’s hands. For a long time, many people said that Ripple might be easy to implement but that it was a commercially controlled currency. The Ethereum problems show that all new digital currencies have their issues.

Visa has also just thrown in its hat into the cross border SWIFT alternatives.

The cybersecurity challenges that SWIFT suffered earlier this year must be making banks more willing to look seriously at alternatives.

Whether cross border payments use Ripple, Ethereum or Bitcoin Sidechains remains to be seen, but it seems clear that we can expect cross border payments completed within seconds in the not too distant future. It is pretty clear where the puck is headed.

SWIFT’s own Blockchain initiative 

SWIFT announced they were looking at Blockchain almost a year ago. Since then there has not been a lot of news. SWIFT can certainly buy whoever gets traction, but will face a cannibalization challenge as new entrants will be cheaper as well as faster. Cheaper payments will increase volumes so I envisage a future where SWIFT still dominates cross border payments but using Blockchain technology, with lower prices and increased volumes.

The back office guys are getting ready

In my core banking days, the SWIFT module was critical. It still is. However we can see the vendors, consultants and oursourcers getting ready for payments via Blockchain. This announcement by Ripple, Deloitte and Temenos is an example of an industry positioning around a possible new value chain.

Daily Fintech Advisers provides strategic consulting to organizations with business and investment interests in Fintech & operates the Fintech Genome P2P Knowledge platform.

The SWIFT hacks may accelerate the transition to Blockchain based cross border payments

300px-SWIFT

It has been an interesting news cycle in Fintech. First we had Lending Marketplace Meltdown Week. The takeaway: “all this new fangled stuff is messed up and its time to go back to the tried and the true”. Then we had the news that SWIFT, the venerable cross border payment system got hacked again, for the second time in weeks. The takeaway: “the old tried and true is broken, its time to accelerate plans to bring in the new fangled stuff we have been brewing in our labs”.

Our mantra is “once means nothing, twice is coincidence and three times is a trend”. So the second SWIFT hack prompted a deeper look into what went wrong and to assess the likely second order impact.

Reactions from experts

First, here is the official SWIFT security announcement on 13 May after the second attack.

Daily Fintech asked some experts in FX and cross border payments for their reactions.

Alan Scott, a serial entrepreneur with deep experience of FX, cross border payments and blockchain technology focussed on the inherent weaknesses of closed systems:

“SWIFT derives most of its security from being a closed system operated by and for trusted parties.  Block chain as originally envisioned is an open system operated by trust less parties.  This hack really demonstrates the weakness of the first system, once in the hacker is protected by the system as by definition everyone in the system is trusted.  Once discovered, the owners of the system have a problem larger than the financial impact of the hack, that is do they inform the world that their system of trust has been broken?  Or can they just quietly fix the problem and inform only those on a needs to know basis?  In an open system system like block chain attempted hacks are visible, defences can be built and the issue of trust is owned by the entire community (distributed versus central).  In this way the technology evolves in a more organic manner, adapting when and where it needs to.  This ability to evolve is its competitive strength and why it will over time in my opinion prove to be superior.”

Howard Tolman, a serial entrepreneur with deep experience of FX, cross border payments and security technology focussed on the difficulty of bolting stable doors after the horse has gone:

“Any dangerous malicious attack on a major financial institution will not only attract a lot of attention but will also get people running up and down trying to find immediate solutions which quite frequently are just not attainable. Swift probably knew about the fact that there was a potential problem through Application Security Testing either static, dynamic or interactive and network scanning applications would mean that they were also probably aware that they had applications running that had been updated to remove security flaws. The problem that large integrated organisations have is that installing a patch on a production application might in some cases do more commercial damage in the short term than the results of hacking. I would say that large numbers of institutions have reports on their desks saying that they have massive vulnerabilities but they just can’t solve them quickly for various reasons. So they hope for lady luck to help them out. 

In the Java space the only real way to solve things quickly is to eliminate the problem at the virtualisation layer through implementation at the JVM. This means that the application itself does not have to be changed but the problem from a practical standpoint is removed. This is the concept of RASP. 

Of the cuff I would say that the real big problems come about by systematic malicious attacks over a long period of time without discovery. Blockchain type technology has as its core complete transparency which almost by definition would mean malicious  attacks would be recognised promptly. I  am not an expert on specific security features in blockchain but what I describe in the previous sentence is certainly important. There seems to be tremendous momentum for those organisations with products that require distribution  of transactional data to multiple parties towards Blockchain type applications. The SWIFT hacking can only exacerbate that migration process.”

Basic Phishing Does Work

In my spam filter I recently an email telling me “We have sent the payment to your account as instructed by our customer. Kindly check the attached Swift copy of your confirmation.” Clearly some people do fall for this. Hackers only need one open door.

The weakest link in a chain

Hackers got hold of access credentials to send messages on SWIFT. As of publish date, it is not publicly known whether this was via internal collusion or via a phishing attack. The SWIFT statement has something about a PDF reader but that is the only clue. The earlier posted guidelines issued by SWIFT show the kind of best practices that consumers are told to do in order to avoid getting hacked. One might assume that banks operate to higher standards. The problem is that while that is true for 99.99% of banks, hackers only need to find one door to enter and then, as Alan puts it, “once in the hacker is protected by the system as by definition everyone in the system is trusted.”

As SWIFT Gets Bigger, Blockchain Maybe the answer

SWIFT is already far and away the biggest global payment system. Any bank that wants to send/receive payments internationally is a member. Corporates are also members. With great skill, one can build very large enterprise scale systems. SWIFT is an example. It is very, very big and has mostly worked very well. Now we are in an era when we need to build on an even bigger scale to allow more people to transact cross border and do it faster and at less cost. The most resilient massive system is the Internet – a truly decentralised system. Decentralized scales better than centralised. And a decentralised Blockchain based system can offer real time payments. SWIFT already has a Blockchain initiative. SWIFT has the perfect corporate structure to implement a Blockchain based cross border payment system on a global basis for banks because it is a cooperative owned by the member banks. SWIFT has the trust of Banks and an annual gathering of the tribes at SIBOS where personal relationships are renewed. If anybody can implement Blockchain based global payments on a mass scale it is SWIFT. We suspect that the SWIFT Blockchain team won’t lack for budget after these recent hacks.

Permissioned or Permissionless – the inclusion question

SWIFT can replace the 1970s based system with a 21st century Blockchain system. That is the easy bit. It is like a core banking system overhaul for a massive global bank. It takes a long time and costs a lot of money and requires a good team, but with all those ingredients, it is a very achievable. That SWIFT Blockchain upgrade can be done with a permissioned Blockchain system for the existing approx 8,000 current members of SWIFT. It would be much faster and much lower cost. Problem solved? Not entirely. This still puts Banks as the intermediaries to do cross border payments. A truly inclusive peer to peer network would be permissionless – everybody can transact cross border directly. This could be done in such a way that Banks are “in the loop” to offer loans and other value added services. This would be a bolder move by SWIFT. It will be interesting to see what they do.

Daily Fintech Advisers provide strategic consulting to organizations with business and investment interests in Fintech. Bernard Lunn is a Fintech thought-leader.