सूचना प्रविधि (IT) — Paper I, Section D | NRB Banking IT IT नीति IT Guidelines 4.1 OS Operating System 4.2 Database DBMS / SQL 4.3 Internet/Network TCP/IP, Protocols 4.4 NRB IT Code Cyber Security 4.5 ★ Core Banking System (CBS) Architecture Internet Banking Mobile Banking ATM/POS Branch Teller SWIFT/RTGS CBS Core (Temenos T24 / Finacle / Pumori)

💻 4.1 IT नीति तथा दिशानिर्देश (IT Policy and Guidelines)

नीति/ऐन विवरण वर्ष
Electronic Transaction Act (ETA) इलेक्ट्रोनिक कारोबारको कानूनी आधार — Digital Signature, Cyber Crime २०६३
National IT Policy नेपाल सरकारको IT विकास नीति २०७२
Digital Nepal Framework Digital transformation — 8 sectors २०७६
NRB IT Security Guidelines BFI को IT Security र CBS Standards २०७९ (updated)
NRB Payment System Directives Digital Payment, QR Code, Mobile Banking नियमन Ongoing
CIRT (Cyber Incident Response Team) Nepal को Cyber Security निकाय MoCIT अन्तर्गत

🖥️ 4.2 Operating System (OS)

परिभाषा: OS भनेको Computer Hardware र Software बीचको मध्यस्थकर्ता — User र Hardware को Interface।

OS प्रकार उदाहरण बैंकिङमा प्रयोग
Windows Server Windows Server 2019/2022 Branch Server, Domain Controller
Linux/Unix Red Hat, CentOS, Ubuntu CBS Core Servers (Security + Stability)
Android/iOS Mobile OS Mobile Banking App
Real-time OS (RTOS) Embedded Systems ATM Controller

OS Functions: Process Management | Memory Management | File System | I/O Management | Security | Networking

🗄️ 4.3 Database Management System (DBMS)

परिभाषा: DBMS भनेको Data लाई organized तरिकाले store, retrieve र manage गर्ने software system।

अवधारणा विवरण
RDBMS Relational DBMS — Tables, SQL; Oracle, MySQL, PostgreSQL
SQL Structured Query Language — SELECT, INSERT, UPDATE, DELETE, CREATE
ACID Properties Atomicity, Consistency, Isolation, Durability — Transaction integrity
Normalization Data redundancy कम गर्न — 1NF, 2NF, 3NF
Primary Key Unique identifier for each record (Account Number, Customer ID)
Foreign Key Table बीचको relationship (Account → Customer)
Backup & Recovery NRB: BFI ले Daily Backup + Offsite Storage अनिवार्य
💡 बैंकिङमा DBMS: CBS को Core Database Oracle/PostgreSQL मा। Customer KYC, Account Transactions, Loan Data सबै RDBMS मा। ACID properties नभएको DBMS banking मा चल्दैन।

🌐 4.4 Internet र Network

अवधारणा विवरण
OSI Model 7 Layers: Physical, Data Link, Network, Transport, Session, Presentation, Application
TCP/IP 4 Layers: Network Access, Internet, Transport, Application — Internet को आधार
IP Address IPv4 (32-bit, 192.168.x.x) | IPv6 (128-bit) — Network Identity
SSL/TLS Secure Socket Layer / Transport Layer Security — Internet Banking को Security आधार
VPN Virtual Private Network — Encrypted connection; Bank Branch connectivity
MPLS Multi-Protocol Label Switching — Bank Branch Leased Line Network
Firewall Network traffic filter — Banking IT Security
HTTPS HTTP + SSL — Internet Banking URL must be HTTPS

🔒 4.5 NRB IT Policy र Cyber Security ★

NRB ले BFI हरूलाई निम्न IT Security Guidelines अनिवार्य गरेको छ:

विषय NRB Requirement
IT Security Policy Board Approved IT Security Policy अनिवार्य
BCP/DRP Business Continuity Plan + Disaster Recovery Plan — NRB ले inspect गर्छ
DR Site Primary Site बाट ≥50 km टाढा Disaster Recovery Site
CBS Certification NRB बाट CBS (Core Banking Solution) Approval अनिवार्य
Penetration Testing वार्षिक IT Security Audit + Pen Testing
Incident Reporting Cyber Incident भएको २४ घण्टाभित्र NRB लाई सूचित गर्नुपर्छ
2FA/MFA Internet/Mobile Banking मा Two-Factor Authentication अनिवार्य
Data Localization Customer Data Nepal भित्रै Store गर्नुपर्छ
⚠️ Cyber Threats: Phishing, Ransomware, DDoS, Social Engineering — NRB ले BFI लाई Cyber Awareness Programme गर्न भनेको छ। Electronic Transaction Act 2063 अन्तर्गत Cyber Crime को सजाय।
Payment System NRB Oversight
RTGS (Real Time Gross Settlement) NRB ले operate — ठूलो amount interbank settlement
CDS (Cheque Clearing) NRB supervised — NCHL मार्फत
NCHL (Nepal Clearing House) Interbank ACH/EFT/ConnectIPS
FonePay Mobile Payment QR — NEPALPAY
eSewa/Khalti PSO (Payment Service Operator) — NRB licensed

✍️ ५ अंक — “NRB ले बैंकहरूको IT सुरक्षामा कस्ता निर्देशन दिएको छ?”

  1. Board Approved IT Security Policy + CISO नियुक्ति अनिवार्य
  2. DR Site स्थापना — BCP/DRP तयार र वार्षिक Test
  3. CBS को NRB Certification + वार्षिक Penetration Testing
  4. Internet/Mobile Banking मा 2FA अनिवार्य; HTTPS only
  5. Cyber Incident Report 24 hrs भित्र NRB लाई; Customer Data Nepal भित्र

✍️ १० अंक — “Core Banking System (CBS) भनेको के हो? बैंकिङमा यसको महत्त्व वर्णन गर्नुस्”

  1. परिभाषा: CBS = बैंकका सम्पूर्ण शाखाहरूलाई Centralized Database मार्फत Real-time एकीकृत गर्ने Banking Software
  2. Architecture: Central Server + MPLS/VPN Branch Network + Multiple Front-end Channels
  3. नेपालमा: Temenos T24, Finacle, Pumori CBS — NRB Approved
  4. सुविधाहरू: Any Branch Banking, 24×7 Service, ABBS, Mobile/Internet Banking Integration
  5. DBMS: Oracle/PostgreSQL — ACID Transactions, Daily Backup
  6. Channel Integration: RTGS, SWIFT, ATM, POS, Mobile Banking, Internet Banking
  7. Security: Role-based Access, Audit Trail, Encryption, 2FA
  8. NRB Requirement: CBS बिना BFI License मिल्दैन; NRB CBS Certification अनिवार्य
  9. Digital Banking: CBS नै बैंकको Digital Transformation को आधार
  10. निष्कर्ष: CBS ले Customer Experience सुधार्छ, Operational Risk घटाउँछ र NRB Reporting Automated हुन्छ
🔑 IT Acronyms:
CBS = Core Banking Solution | RTGS = Real Time Gross Settlement
NCHL = Nepal Clearing House Ltd | BCP = Business Continuity Plan
DRP = Disaster Recovery Plan | ACID = Atomicity Consistency Isolation Durability
ETA = Electronic Transaction Act 2063 | 2FA = Two Factor Authentication
CISO = Chief Information Security Officer | PSO = Payment Service Operator
💡 सम्भावित प्रश्न: “CBS को महत्त्व” | “NRB IT Security Guidelines” | “DBMS को ACID Properties” | “BCP/DRP भनेको के हो?” | “Digital Banking मा NRB को भूमिका” | “Electronic Transaction Act”