finos/compliant-financial-infrastructure finos/compliant-financial-infrastructure

  • Stars
    star
    128
  • Rank 281,044 (Top 6 %)
  • Language
  • License
    Apache License 2.0
  • Created over 5 years ago
  • Updated 3 months ago
Twitter logo Share LinkedIn logo Share Facebook logo Share
finos/compliant-financial-infrastructure
github

finos

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

Compliant Financial Infrastructure accelerates the development, deployment and adoption of cloud services in a way that adheres to common security and regulatory controls.

FINOS - Incubating CII Best Practices

Compliant Financial Infrastructure

Compliant Financial Infrastructure (CFI) is a project that exists to accelerate the development, deployment and adoption of services provided for infrastructure in a way that meets common regulatory and internal security controls.

Through our three working groups, we provide:

  • Opinionated compliance documentation provided by our service approval accelerators
  • Vetted infrastructure as code that is ready to import to your internal registry
  • CI/CD-friendly runtime validation tests to ensure your deployed resources are compliant

Policy Working Group

This WG exists to define and document best practice and process for implementing compliant infrastructure, while streamlining the process for contributions from financial institutions in a frictionless manner.

Compliance may mean something different from one institution to the next. The goal of CFI is not to create a single solution that all firms must adhere to, instead our goal is to streamline adoption and free up security teams to focus on non-redundant activities.

Detailed documentation in the form of Service Approval Accelerators (SAAs) live within this main CFI repository.

High level objectives

  1. Maintain a knowledge base of up-to-date compliance requirements from member financial institutions (Inputs)
  2. Document how to achieve compliance for different infrastructure resources from a financial perspective (Outputs)

Approach

  • Document opinionated configurations, mitigations, and decisions to accelerate compliance for infrastructure services in SAAs.
  • Ensure all SAAs are informed by industry-wide experience/feedback
  • Ensure CFI communication methods (both inputs and outputs) are streamlined to best serve our community and users

A template Service Approval Accelerator is maintained here.

Contributions

Reproducible Infrastructure Working Group

This WG exists to develop, maintain, and document easily consumable infrastructure as code (IaC) which can be used as a base for deploying systems in highly-regulated environments.

Detailed documentation regarding the process for developing and delivering IaC can be found here.

High level objectives

  1. Create and maintain IaC to deploy services that meet policies as defined by the Policy Working Group

Approach

  • Review Service Accelerators and work with the Policy Working Group to agree on each approach to codify policies
  • Build and maintain the IaC to meet requirements set out in the SAA
    • Where this is not possible then any policy gaps will be documented

Contributions

Runtime Validation Working Group

This WG exists to maintain a suite of tools that may be used to validate that deployed infrastructure is compliant with the documentation provided by the Policy Working Group, and provide actionable information for users who are working toward compliance.

Detailed documentation regarding the process for developing and delivering runtime validation test packs can be found here.

High level objectives

  1. Maintain tests matching each SAA to validate the compliance of any deployed resource
  2. Maintain test harness to streamline approach across all services

Approach

  • Execute tests that match the accelerators provided by the Policy WG (no more, no less)
  • Ensure harnes is easily configurable & can be used for diverse validation purposes
  • Maintain smooth logging functionality for validation and development purposes
  • Ensure common human-readable output format for all test packs

Contributions

Join the Community!

For more information about how to engage with the rest of the community and contribute to the project, view the documentation and links here.

Please feel free to request changes via GitHub Issues.

Everyone is encouraged to join our public community meetings found on the FINOS community calendar, and join us on Slack.

Thank you to our contributors!

License

Distributed under the Apache License, Version 2.0.

SPDX-License-Identifier: Apache-2.0

Security Concerns

If you have any security concerns related to this project, please create an issue on this repository or create an issue on the repository associated with your concern.

More Repositories

1

perspective

A data visualization and analytics component, especially well-suited for large and/or streaming datasets.
C++
8,439
star
2

legend

The Legend project
HTML
856
star
3

jupyterlab_templates

Support for jupyter notebook templates in jupyterlab
Python
395
star
4

regular-table

A regular <table> library, for async and virtual data models.
JavaScript
349
star
5

plexus-interop

Plexus Interop open source project hosted by the Fintech Open Source Foundation
C#
253
star
6

FDC3

An open standard for the financial desktop.
HTML
193
star
7

waltz

Enterprise Information Service
Java
178
star
8

OpenMAMA

OpenMAMA is an open source project that provides a high performance middleware agnostic messaging API that interfaces with a variety of proprietary and open source message oriented middleware systems.
C++
144
star
9

datahelix

The DataHelix generator allows you to quickly create data, based on a JSON profile that defines fields and the relationships between them, for the purpose of testing and validation
Java
141
star
10

morphir

A universal language for business and technology
Elm
140
star
11

OSLC-handbook

A data store and handbook of practical information about complying with the most common open source licenses.
HTML
127
star
12

common-domain-model

The CDM is a model for financial products, trades in those products, and the lifecycle events of those trades. It is an open source standard that aligns data, systems and processes and is available as code in multiple languages for easy implementation across technologies.
Java
121
star
13

TimeBase-CE

High performance time series database
Java
110
star
14

ipyregulartable

High performance, editable, stylable datagrids in jupyter and jupyterlab
JavaScript
109
star
15

git-proxy

Deploy custom push protections and policies on top of Git
JavaScript
94
star
16

legend-studio

Legend Studio
TypeScript
87
star
17

datahub

DataHub - Synthetic data library
Python
80
star
18

SymphonyElectron

A desktop client for the Symphony Collaboration Platform built using Electron
TypeScript
80
star
19

legend-engine

Legend Engine module
Java
79
star
20

legend-pure

Legend Pure module
Java
66
star
21

community

FINOS Community, Project and SIG wide collaboration space
JavaScript
63
star
22

spring-bot

Spring Boot + Java Integration for Symphony/Teams Chat Platform Bots and Apps
Java
59
star
23

devops-automation

Provide a continuous compliance and assurance approach to DevOps that mutually benefits banks, auditors and regulators whilst accelerating DevOps adoption in engineering and fintech IT departments.
JavaScript
58
star
24

htc-grid

Python
55
star
25

SymphonyMediaBridge

The Symphony Media Bridge (SMB) is a media server application that handles audio, video and screen sharing media streams in an RTC conference system.
C++
55
star
26

CatchIT

Source code secret scanner
Python
51
star
27

open-developer-platform

Delivering open source software development best practices while enforcing security and legal compliance for the financial services industry .
Shell
50
star
28

traderX

TypeScript
48
star
29

openfin-react-hooks

A collection of React Hooks built on top of the Openfin API - from Scott Logic
TypeScript
48
star
30

cla-bot

cla-bot is a GitHub bot for automation of Contributor Licence Agreements (CLAs).
JavaScript
45
star
31

morphir-elm

Tools to work with the Morphir IR in Elm.
Elm
44
star
32

kdb

kdb+ Working Group from FINOS Data Technologies program
q
43
star
33

architecture-as-code

"Architecture as Code" (AasC) aims to devise and manage software architecture via a machine readable and version-controlled codebase, fostering a robust understanding, efficient development, and seamless maintenance of complex software architectures
TypeScript
43
star
34

tracdap

A next-generation data and analytics platform for use in highly regulated environments
Java
40
star
35

vuu

Vuu - an open source view server and html 5 based UI system
TypeScript
40
star
36

a11y-theme-builder

DesignOps toolchain theme builder for accessibility inclusion using Atomic Design.
TypeScript
40
star
37

financial-objects

FINOS Financial Objects Program Documentation
JavaScript
39
star
38

legend-sdlc

Legend SDLC module
Java
39
star
39

open-source-readiness

Accelerate financial services firmsโ€™ journeys toward open source readiness, by advancing the readiness of participantsโ€™ firms and informing guidance for the broader industry in the form of white papers, presentations, and blog posts.
JavaScript
35
star
40

FDC3-Sail

Open implementation of the FDC3 standard using Electron and an integrated App Directory.
TypeScript
34
star
41

open-regtech-sig

The FINOS Regulation Innovation Special Interest Group (SIG) is a community of people interested in creating open source solutions for regulatory and compliance issues in financial services.
32
star
42

symphony-bdk-python

Symphony Python Bot Development Kit (BDK)
Python
31
star
43

greenkey-asrtoolkit

A collection of useful tools for handling speech recognition data
Python
30
star
44

finos-landscape

FINOS Project Landscape
Shell
29
star
45

software-project-blueprint

Project blueprint for Fintech Open Source Foundation hosted projects.
JavaScript
28
star
46

morphir-examples

Elm
27
star
47

InnerSource

The FINOS InnerSource SIG is a community of people implementing, or interested in implementing, InnerSource within their financial services organization.
JavaScript
27
star
48

common-cloud-controls

FINOS Common Cloud Controls
Gherkin
26
star
49

secref-data

Security Reference Data project
JavaScript
25
star
50

rune-dsl

The project containing the Rune DSL grammar and default code generators
Java
25
star
51

voice-metadata-standard

This is a project from FINOS Voice program to define a standard for call metadata.
25
star
52

JCurl

JSON-aware curl (1) in Java
Java
24
star
53

symphony-bdk-java

The Symphony BDK (Bot Developer Kit) for Java helps you to create production-grade Chat Bots and Extension Applications on top of the Symphony REST APIs.
Java
23
star
54

zenith

Create a space where expertise can be identified and implemented to help the fintech ecosystem understand and adopt new technologies through the exploration and creation of common understanding.
HTML
22
star
55

fdc3-desktop-agent

Chrome Extension implementation of an FDC3 Desktop Agent
TypeScript
22
star
56

ai-readiness

Our goal is to mutually develop a governance framework that manages the on-boarding, development of, and running AI-based solutions within financial services organisations - allowing us all to unlock the potential of this disruptive technology in a safe, trustworthy and compliant way.
21
star
57

morphir-jvm

Tools to work with the Morphir IR on/using the JVM.
Scala
21
star
58

legend-shared

Legend Shared module
Java
21
star
59

glue

Glue is an enterprise data model for the buy side, tailored for Wealth and Asset Managers and covering key entities such as Party, Business Relationship, Investment Strategy, Instruments, Portfolios and more.
JavaScript
21
star
60

symphony-api-spec

Swagger definitions for Symphony LLC public REST API
Shell
19
star
61

exodus

Migration tools for Tabular Data to Oracle JSON/Tabular Data
Scheme
18
star
62

greenkey-discovery-sdk

Speed up business workflows through custom 'voice skills' and text (NLP) interpreters
Python
14
star
63

DEI-SIG

JavaScript
13
star
64

reference-foss-policy

Reference FOSS Policy for Financial Services Institutions
13
star
65

morphir-scala

Scala
12
star
66

branding

FINOS (Fintech Open Source Foundation) official branding resources
12
star
67

FDC3-conformance-framework

A framework for testing whether desktop containers implement the FDC3 standard
TypeScript
12
star
68

metadata-tool

A command line tool for performing various tasks with Fintech Open Source Foundation (FINOS) metadata.
Clojure
12
star
69

morphir-dotnet

F#
12
star
70

finos.github.io

The source for the FINOS Project catalog
JavaScript
11
star
71

secure-electron-adapter

JavaScript
11
star
72

open-reg-tech-us-lcr

Open Reg Tech: US LCR
Elm
11
star
73

messageml-utils

MessageML is a markup language used by the Symphony Agent API for representing messages, including formatting (bold, italic, numbered and unnumbered lists etc.) and entity data representing structured objects.
Java
11
star
74

generator-symphony

Yeoman based generator for Symphony Bots and Applications
JavaScript
10
star
75

fdc3-dotnet

.NET Standard FDC3 declarations to implement concrete FDC3 compatible .NET desktop agents
C#
10
star
76

bot-github-chatops

A Symphony bot that uses ChatOps techniques to allow a firm employee to interact in a compliant manner with GitHub issues and PRs
Clojure
10
star
77

code-scanning

How to protect FINOS hosted projects from security threats and license compliance issues
Python
8
star
78

legend-community-delta

Combining best of open data standards with open source technologies
Jupyter Notebook
8
star
79

legend-depot

Legend Depot component
Java
8
star
80

openfin-python-adapter

Hadouken python language adapter.
Python
7
star
81

calendar

FINOS Calendar
JavaScript
7
star
82

finos-parent-pom

A Maven Parent POM that provide common build and release features using the Symphony Software Foundation Infrastructure
7
star
83

backplane

FDC3 Desktop Agent Bridge
C#
6
star
84

osr-checklists

Checklists for key components and processes of open source programs
6
star
85

morphir-service

HTML
5
star
86

SwiftSearch

SwiftSearch is a plugin for SymphonyElectron
TypeScript
5
star
87

technical-oversight-committee

๐Ÿ“‹ FINOS Technical Oversight Committee
5
star
88

ScreenSnippet

Screen snippet utility for Windows.
C#
4
star
89

OpenMAMA-testdata

OpenMAMA Test Data
Batchfile
4
star
90

pylegend

pylegend
Python
4
star
91

certificate-toolbox

A collection of command-line tools to generate PKI Signing Certificates and X.509 Identity Certificates
Shell
4
star
92

cdm-object-builder

Object Builder
TypeScript
4
star
93

FDC3-Archive

3
star
94

curref-data

3
star
95

greenkey-intercom-sdk

Voice-enable your front-end apps with instant intercoms
JavaScript
3
star
96

symphony-wdk

Symphony Workflow Developer Kit (WDK), a bot capable of running workflows
Java
3
star
97

a11y-theme-builder-sdk

Collection of atomic design services for computing WCAG compliant code artifacts.
TypeScript
3
star
98

sea-quick-start

Quick start demo project for the Secure Electron Adapter
JavaScript
3
star
99

rune-common

Java
3
star
100

legend-juju-bundle

Juju bundle for all the FINOS Legend Charmed K8s Operators
Python
2
star