Reducing the risk of wholesale payments fraud related to endpoint security: a toolkit

Version 1, October 2019

CPMI Papers  |  No 188  | 
22 October 2019

In May 2018, the CPMI published a strategy to encourage and help focus industry efforts to reduce the risk of wholesale payments fraud related to endpoint security.

Operationalisation of the strategy depends on operators, participants and other stakeholders engaging and taking ownership of developing and carrying out an action plan for their jurisdictions. Each CPMI member central bank, and the CPMI as a whole, is committed to making the strategy operational. Likewise, Governors of the BIS Global Economy Meeting expressed their support and commitment to putting the strategy into practice within their institutions and jurisdictions.

The CPMI has encouraged and monitored progress among its members. To do this, a monitoring framework has been developed, which includes more detail on the strategy's intended outcomes and examples of practices that can help meet these outcomes (and those that do not). In addition, an initial set of industry emerging practices to achieve the intended outcomes has been developed to better explain "what good looks like".

To facilitate broader sharing of experiences and coordination of efforts, the CPMI has made these two documents available, with other useful materials - in a toolkit for operationalisation, which includes:

  • background materials providing an overview of the strategy and guidance on operationalising it
  • details of the intended outcomes and emerging practices, to provide examples of what good looks like
  • a monitoring template, to benchmark a system's progress

The toolkit is a set of "living documents". As jurisdictions progress in operationalising the strategy and develop additional emerging practices, further versions will be released.