ARCHITECTURAL AUDIT OF HIGH-LOAD FINTECH SYSTEMS: ASSESSMENT METHODOLOGIES, COMMON VULNERABILITIES, AND REFACTORING RECOMMENDATIONS

Aleksandr Kovalenko

Abstract


This article examines the approach to architectural auditing of high-load FinTech systems, taking into account the specifics of their operation under increased load and compliance with regulatory standards. The main methods of architectural assessment are studied, including expert-based and metric-oriented approaches, as well as the application of hybrid strategies that combine quantitative analysis with simulation testing. A range of typical architectural vulnerabilities is explored, such as excessive component coupling, lack of isolation for critical services, insufficient scalability readiness, and inadequate protection against failures and attacks. Recommendations for architectural refactoring are provided, aimed at enhancing system resilience and security in the long term.

 

JEL: G21, L86, C80


Keywords


architectural audit, FinTech systems, high load, vulnerabilities, fault tolerance, architectural design, refactoring, microservices

Full Text:

PDF

References


Olaiya OP, Adesoga TO, Ojo A, Olagunju OD, Ajayi OO, Adebayo YO, 2024. Cybersecurity strategies in fintech: safeguarding financial data and assets. GSC Advanced Research and Reviews 20(1): 50–56. https://doi.org/10.30574/gscarr.2024.20.1.0241

Roszkowska P, 2021. Fintech in financial reporting and audit for fraud prevention and safeguarding equity investments. Journal of Accounting & Organizational Change 17(2): 164–196. https://doi.org/10.1108/jaoc-09-2019-0098

ArchUnit, 2025. ArchUnit User Guide. https://www.archunit.org/userguide/html/000_Index.html. Accessed 14 May 2025

Dashuber V, Philippsen M, Weigend J, 2021. A Layered Software City for Dependency Visualization. VISIGRAPP (3: IVAPP): 15–26. doi: 10.5220/0010180200150026. Retrieved from https://www.scitepress.org/Papers/2021/101802/101802.pdf

Topalidi A, 2025. Exploring architectural patterns for modular web applications: the Rails Engines approach to business logic isolation. Cold Science 13: 18–26. Retrieved from https://www.researchgate.net/publication/393987232_EXPLORING_ARCHITECTURAL_PATTERNS_FOR_MODULAR_WEB_APPLICATIONS_THE_RAILS_ENGINES_APPROACH_TO_BUSINESS_LOGIC_ISOLATION

Bolgov S, 2025. Optimizing microservices architecture performance in fintech projects. Bulletin of the Voronezh Institute of High Technologies 19(1). https://vestnikvivt.ru/ru/journal/pdf?id=1401. Accessed 14 May 2025

Conrad A, Utzmann P, Klettke M, Störl U, 2022. Metamodels to support database migration between heterogeneous data stores. In Proceedings of the 25th International Conference on Model Driven Engineering Languages and Systems: Companion Proceedings: 546–551. Retrieved from https://dl.acm.org/doi/10.1145/3550356.3561574

Zulkarneev I, Basalay KA, 2024. JSON Web Tokens Lifecycle-Based Threat Classification. 2024 IEEE 25th International Conference of Young Professionals in Electron Devices and Materials (EDM): 1920–1924. http://dx.doi.org/10.1109/EDM61683.2024.10615042

NIST, 2020. Zero Trust Architecture. NIST Special Publication 800-207. p. 59. Retrieved from https://nvlpubs.nist.gov/nistpubs/specialpublications/NIST.SP.800-207.pdf

Seryan GN, Adamyan AV, 2025. Transformation of corporate financial strategies in the era of digital ecosystems. Professional Bulletin: Economics and Management 1/2025: 10–16. Retrieved from https://cyberleninka.ru/article/n/transformation-of-corporate-financial-strategies-in-the-era-of-digital-ecosystems




DOI: http://dx.doi.org/10.46827/ejefr.v9i3.2005

Refbacks

  • There are currently no refbacks.


Copyright (c) 2025 Aleksandr Kovalenko

Creative Commons License
This work is licensed under a Creative Commons Attribution 4.0 International License.

The research works published in this journal are free to be accessed. They can be shared (copied and redistributed in any medium or format) and\or adapted (remixed, transformed, and built upon the material for any purpose, commercially and\or not commercially) under the following terms: attribution (appropriate credit must be given indicating original authors, research work name and publication name mentioning if changes were made) and without adding additional restrictions (without restricting others from doing anything the actual license permits). Authors retain the full copyright of their published research works and cannot revoke these freedoms as long as the license terms are followed.

Copyright © 2016 - 2026. European Journal of Economic and Financial Research (ISSN 2501-9430) is a registered trademark of Open Access Publishing GroupAll rights reserved.

This journal is a serial publication uniquely identified by an International Standard Serial Number (ISSN) serial number certificate issued by Romanian National Library. All the research works are uniquely identified by a CrossRef DOI digital object identifier supplied by indexing and repository platforms. All the research works published on this journal are meeting the Open Access Publishing requirements and standards formulated by Budapest Open Access Initiative (2002), the Bethesda Statement on Open Access Publishing (2003) and  Berlin Declaration on Open Access to Knowledge in the Sciences and Humanities (2003) and can be freely accessed, shared, modified, distributed and used in educational, commercial and non-commercial purposes under a Creative Commons Attribution 4.0 International License. Copyrights of the published research works are retained by authors.