第1页共39页编号:时间:2021年x月x日书山有路勤为径,学海无涯苦作舟页码:第1页共39页银联卡业务运作规章第五卷风险控制与安全管理二○○五年十二月第2页共39页第1页共39页编号:时间:2021年x月x日书山有路勤为径,学海无涯苦作舟页码:第2页共39页目录序........................................................................307第一章成员机构风险管理的基本要求..........................................3081风险评价及分级管理...................................................3081.1风险评价的适用情况..............................................3081.2风险评价的内容..................................................3081.3风险等级的运用..................................................3091.4风险控制措施....................................................3092成员机构内部风险管理.................................................3092.1人员及岗位设置要求..............................................3092.2建立银行卡交易风险监控体系......................................3093账户信息与交易数据安全管理..........................................3103.1权利与义务......................................................3103.2安全管理体制....................................................3103.3访问控制........................................................3103.4数据的保护、使用和销毁..........................................3103.5数据保存与传输..................................................3103.6事故处理........................................................3103.7对第三方服务机构和特约商户的数据安全管理........................3113.8赔偿及处罚......................................................3114磁条卡密钥生命周期安全管理...........................................3114.1基本要求........................................................3114.2密钥生命周期安全管理规定........................................3115磁条卡的卡片验证码(CVN)校验........................................3125.1对发卡行的要求..................................................3135.2对收单机构的要求................................................3136反洗钱要求...........................................................3137调查................................................................3137.1调查............................................................3137.2调查对象........................................................3137.3调查方式........................................................3148处罚................................................................314第二章发卡机构的风险管理..................................................3151银联卡安全管理的基本要求.............................................3151.1发卡中心的物理安全.............................................3151.2订单管理........................................................3151.3安全生产........................................................3151.4安全运输........................................................3151.5接收与保管......................................................3161.6卡片个人化的安全管理............................................3161.7发行............................................................3161.8销毁............................................................3172《领用合约》必备的风险条款...........................................3173个人密码(PIN)的管理................................................3174卡片挂失管理.......................