Financial institutions are increasingly partnering with technology firms to leverage application program interfaces (APIs) to drive digital transformation initiatives that accelerate client acquisition and retention through “Positive Customer Experiences”. WSO2, in partnership with Exzatech Consulting & Services, developed a slew of applications for Karnataka Bank in Bengaluru, India, that helped transform multiple core banking processes, such as customer onboarding, account servicing, and rapid loan request fulfillment. The solution, which is powered by WSO2’s API management and enterprise integration technologies, seamlessly bridges systems while paving the digital path to a connected financial ecosystem. This deck covers: - Technical challenges faced and how they were addressed - Subsequent growth strategy - Future expansion plans It also covers some of the many benefits such as: - Reduced operating costs by using open-source technology solutions - Enhanced customer trust built through multi-channel communication - Shortened delivery time for client services - Improved compliance and reduced risk exposure Watch the webinar on-demand here: https://wso2.com/library/webinars/digital-transformation-for-karnataka-bank-through-api-led-integration/

1. Digital Transformation for Karnataka Bank Through
API led Integration
Rohitha Liyanagama
Director -Solutions Architecture , WSO2
Uttam Kumar
Chief Technology Officer, Exzatech

2. Agenda
1. Introduction of Karnataka Bank
2. The Need
3. Digital Transformation Framework
4. Primary Goals
5. Challenges - Business & Technical
6. Solution architecture
7. Introduction to WSO2 API manager
8. How Expectation cover from API manager
9. Current Deployment Architecture and Scalability Options
10. Roadmap - A look into the future
11. Introduction to WSO2 Enterprise Integrator
12. Key Benefits for the Bank

3. Introduction to Karnataka Bank

4. The Need

5. Digital Transformation Framework
● Customer Experience Design
The initiative mandated the bank to transform from a traditional "you come to us / stand in the
queue at bank" approach to a "we'll come to you" stance. This turned the traditional thinking
on its head.
● TAT Optimization
Optimizing the "Turn Around Time" (TAT) for repeated regular business spanning: loan
application processing, account opening and a host of others.
● Error Reduction
The onus was squarely on "reducing human error" by integrating automation into processes.

6. Primary Goals
Automation of common &
repetitive tasks.

7. Challenges - Business & Technical

8. Current Solution architecture

9. Introduction to
WSO2 API Manager
An open source approach for full API lifecycle management,
policy enforcement and monetization . Allows extensibility
and customization, ensures freedom from lock-in.
Components
● API Publisher
● API Gateway / Microgateway
● API Store / developer portal
● Key Manager
● Traffic Manager
● Analytics
9

10. Componentized
The API
Marketplace
API Analytics
& Alerts
Backoffice
Application
API Runtime
API Key
Management
API Throttling &
Traffic Management

11. Expectation from an API Management Solution
● Designing and publishing APIs
● API security and rate limiting
● Platform for discovering, searching and consuming APIs
● API governance and lifecycle management
● API analytics.

12. Creating an API
Designing and publishing APIs

13. Creating APIs
Start with an existing
endpoint/contract or design
and prototype a new API
Exposing SOAP services
(convert to REST or as a
passthrough)
Exposing streaming APIs
(Websocket endpoints)

14. Creating APIs
API Design - Over the wizard & with swagger

15. Managed or prototyped
Point to a production backend or prototype at the gateway

16. API security and rate limiting
Allow verified, permitted and controlled access into your assets - API Gateways.

17. API Security
● Transport Level security
○ Http
○ Https
○ Mutual SSL
● Application Level security
○ OAuth2
○ Basic Authentication
○ API Key
● Authorization
○ OAuth 2.0 Scopes
● BackEnd Security
○ Basic Auth
○ Digest Auth
○ Mutual TLS

18. Rate Limiting: Back-End
Prevent Total Service Outage at Peaks
Back-End Server Maintenance
Gateway Services and Data

19. Rate Limiting: Front End
Enforce SLA’s on API Access
Fair usage of APIs
Burst Control
Monetize API usage
People Apps Gateway

20. API Dev Portal
Platform for discovering, searching and consuming APIs.

21. Introducing the Developer Portal

22. Client Application
Encapsulate the client application
Associates OAuth2 keys
Support different integration patterns
for application security through
OAuth grant types
Supports JWT

23. API Governance and Lifecycle
Management
Formalizing the evolution of APIs and assurance of standards and practices.

24. API Lifecycle Management
● Manage stages of an API
● Create a new version from an
existing API
● Audit changes to lifecycle states
● Support for custom lifecycles

25. API Analytics
Observing and reacting to abnormalities and trends
Optimizing the value chain of APIs by specializing and scaling

26. API Analytics
Event Store
APPLICATION
Backend
API Analytics
Analytics
Dashboards
Realtime Alerts
Admin
Summarized Statistics
API Gateway

27. Analytics: Statistical Analysis
● API Usage
● Geo-location Based Access
● Stats on Applications for
application owners
(subscribers)
● Stats on subscriptions

28. Analytics: Operational
API Latency Distribution
Alerting on Abnormalities
API Health

29. Deployment Architecture
Current and scalability future need

30. Current Deployment Architecture
● Simple all-in-one deployment with analytics
● Dual node deployment for HA

31. Scalability Options

32. Karnataka Bank Roadmap
A look into the future

33. Roadmap - A look into the future

34. Proposed Solution architecture

35. WSO2 Enterprise Integrator

36. Introduction to WSO2 Enterprise Integrator
● An open-source, cloud-native, distributed, hybrid integration platform for
integrating APIs and data using microservices, cloud-native or
centralized ESB style architectures.

37. Low-code Integration with Micro Integrator

38. Data Mapping
● Visual Data Mapping
experience
● Capability to
try-out mapping in the
development time

39. First class support for Docker and Kubernetes

40. Data Integration
● Expose any source of data as web services or REST resources
● Transactional data access
Application 𝜸
Application ẟ
Application N
Application α
Application β
Internal / external data in many
forms.
(i.e. databases, spreadsheets)
Dats Service
WSO2 EI

41. Key Benefits for the Bank

42. Next Steps
WSO2 API manager
https://wso2.com/api-management/
( Link to Documentation https://apim.docs.wso2.com/en/latest )
WSO2 API manager micro gateway
https://wso2.com/api-management/api-microgateway/
( Link to Documentation https://docs.wso2.com/display/MG310 )
WSO2 Micro Integrator
https://wso2.com/integration/micro-integrator/
( Link to Documentation https://ei.docs.wso2.com/en/latest/micro-integrator/overview/introduction/ )
______________________________________________________________________________________________________________________________________________
Mr. Ritesh Shah
riteshshah@exzatechconsulting.com
+91-9810024603
Exzatech Consulting And Services Private Limited, Bengaluru, India
https://www.exzatechconsulting.com
Contact
( For services such as architecture reviews,
product evaluation, subscription,
implementation, troubleshooting ).

43. THANK YOU
wso2.com