Cogon
YOUR SUPPLIER FOR INNOVATIVE AND ERP‑INDEPENDENT
FINANCE SOLUTIONS
PERFECTION IN DETAIL.

Comparison EBICS and previous EDI standard BCS-FTAM

Technical overview

Topic BCS-FTAM EBICS
Security

Customer needs to give one signature:

  • FTAM password
  • Signature only upon authorisation
  • ZKA encryption (only optional)

Two different signatures:

  • Authentication signatures
  • Order signatures, electronic signature (ES)
    1. Authentication signature
    2. Signature for each submission (either authorization or transport only)
    3. Double encryption: mandatory ZKA encryption and TLS (SSL) encryption
Infrastructure/costs Costs for ISDN main connection (support, hardware) Use (existing) Internet connection, costs depend on provider
Bandwidth of transmission/data volume 64 k max. for ISDN (without channel bundling) Can be increased, fast internet connections can be used, ZIP compression is mandatory (decreases data volume, thus increases speed which in turn saves costs )
Communication method FTAM file transfer, OSI standard via X.25 or ISDN HTTP(S), TCP/IP, IP networks (especially Internet, but LAN possible as well)
Data model Customer, participant, account Same way as "DFÜ with customer" with enhanced attributes, e.g., for the distributed electronic signature (VEU).
Login FTAM password Is replaced with authentication signature. Additionally TLS (SSL) server authentication (performed automatically in the background).
Sending of files = Customer to bank With request types Identical. However, each file that is sent needs to be signed: either with electronic signature (authorisation) or transport only (transport signature). New signature classes control this: Each participant has a certain signature class, new is the class for transport only ("T").
Electronic Signature Cryptographic procedure according to DFÜ agreement (RSA procedure) Same way, but basis is A004. Older signature versions are not supported.
Encryption Encryption of request data via ZKA encryption; optional. ZKA encryption of request data is required; in addition required encryption of entire data flow (incl. tax data) with TLS (SSL).
INI letter Initial initialization of participant at bank system Same way as "DFÜ with customer"
Log FTAM proprietary XML interface
Storage medium for signature Standard does not make requirements, common media are chip card or disk Same way as before