The work undertaken by the KDPW Group in this area is aimed at continuously improving the security of the IT systems used in the services provided to you in response to new risks to cyber security. In this regard, secure connections between IT systems in the A2A model are particularly relevant, both for the communication and in the context of ensuring the continuity of services.
At the same time, we are standardising A2A communication functions across all services provided by the KDPW Group. As part of the planned changes, we will modernise the issuing and use of electronic certificates used for authentication in MQ-based communication systems.
Furthermore, the certificates will no longer be personal, their construction will be standardised (in particular by introducing uniform cryptographic algorithms), as will their secured storage, and the use of certificates will be uniform across all KDPW Group services.
The process of applying for a certificate will be handled by a dedicated application within the Services Portal online.kdpw.pl based on a private key generated directly by the applicant.
Moreover, uniform rules will be introduced as regards segregation of services within A2A communication, unification of names in queue configuration, and management of access to test environments.
The changes will be implemented in two steps:
- In the first step, the changes covered the A2A communication of the EMIR TR, SFTR TR, ARM (excluding SWI communications), and LEI services – implementation of these changes took place on May 2023.
- Stage two of the project will include an upgrade in the area of SWI communication, i.e., in the area concerning services for KDPW’s direct participants (including ARM and Compensation Scheme services) and KDPW_CCP clearing members.
As part of the changes, in addition to the transfer of the model introduced in stage one of the project to the SWI services area, authentication for MQ communication in KDPW and KDPW_CCP will be separated at the KDPW Group level. This means that you will need to request a separate certificate to establish A2A communication with KDPW_CCP. We will also change the ESDK protocol by waiving verification of the digital signature of transmitted messages. The whole process will involve changes that move away from the current model of bilateral agreements and the SWI Rules.
The changes are planned to be rolled out in late 2024.
February 7, 2024: Modifications to IT systems in the area of A2A communication
(pdf 224,90 KB)
Download file
Configuration specification for MQ A2A connections
Attachment No. 1 to the letter of February 7, 2024.
(pdf 239,85 KB)
Download file
Description of the ESDK protocol used for A2A communication
Attachment No. 2 to the letter of February 7, 2024.
(pdf 210,41 KB)
Download file
Instructions for downloading the A2A certificates used for connecting to the KDPW and KDPW_CCP services
Attachment No. 3 to the letter of February 7, 2024.
(pdf 173,82 KB)
Download file
Using OpenSSL to obtain a certificate for A2A communication
Attachment No. 4 to the letter of February 7, 2024.
(pdf 290,57 KB)
Download file
May 8, 2023 - Amendments to KDPW regulations in connection with the implementation of IT system changes in A2A communication
Attachments:
1/ Specification of MQ configuration in A2A communication
2/ Instructions for downloading A2A certificates
3/ Description of the implementation of changes in A2A communication
4/ Using OpenSSL to obtain a certificate for A2A communication
contain information protected by KDPW and have been made available only to the addressees of the letter.
1/ Specification of MQ configuration in A2A communication
2/ Instructions for downloading A2A certificates
3/ Description of the implementation of changes in A2A communication
4/ Using OpenSSL to obtain a certificate for A2A communication
contain information protected by KDPW and have been made available only to the addressees of the letter.
(pdf 126,89 KB)
Download file
March 20, 2023 - Changes to IT systems in the area of A2A communication
Annex: Specification of the planned changes for the modernisation of A2A communication
(pdf 219,03 KB)
Download file