Browse > Article
http://dx.doi.org/10.17662/ksdim.2017.13.4.107

Banknote Open Platform Security Vulnerability Analysis and Security Measures  

Kim, Sanggeun (성결대학교 컴퓨터공학부)
Publication Information
Journal of Korea Society of Digital Industry and Information Management / v.13, no.4, 2017 , pp. 107-113 More about this Journal
Abstract
Open platform technology in the banking industry is anticipated to impact the market very positively together with the activation of Fin Tech services. The domestic environment of payment services has been rapidly changing into the mobiles and multiple new payment services have been introduced from a variety of vendors. However, the convenience of payment always causes worsening the security, and the accidents on the security have been continued to occur such as leakage of personal information, hacking and so on upon the expansion of the industry and the market size. This study aims to analyze the status of Fin Tech open platforms and various problems of the related standard technologies, and to suggest the possible solutions. Upon the analysis results, it was confirmed that multiple solutions were required to improve the main security protocols of open platforms and to process the security functions diversely. In conclusion, the results of this study will be helpful to determine the direction of the solution on the security issues in the open platform environment of the current industry.
Keywords
ActiveX; Open Platform; Mobile Apps; Non-ActiveX; Pin-Tech;
Citations & Related Records
Times Cited By KSCI : 1  (Citation Analysis)
연도 인용수 순위
1 한국금융연구원, "경제.금융 관련 주요 정책 및 시장 동향," 제25권, 제30호, 2016, p. 20.
2 https://www.open-platform.or.kr/apt/content/openplatform
3 https://developers.open-platform.or.kr/openapi/oauth
4 한국금융연구원, "핀테크서비스 보안 취약점 점검 항목," 금융보안원 핀테크보안팀, 2017.
5 맹영재, 신동오, 김성호, 양대헌, 이문규, "국내 인터넷뱅킹 계좌이체에 대한 MITB 취약점 분석," 한국인터넷진흥원, 제1권, 제2호, 2010, pp. 101-118.
6 이정현, "스마트 환경에서의 공인인증서 활용과 문제점," 한국인터넷진흥원, Internet & Security Focus, 2013.
7 미래창조과학부, "2016년 ICT 융합 신산업을 여는 규제개혁 사례집 - ICT 융합 신산업을 여는 규제개혁," 2016.
8 https://www.open-platform.or.kr/apt/content/openapi
9 금융위원회, "전자금융감독규정," 2015-18호, 2015.
10 http://www.cvedetails.com/product/15556/Apple-Iphone-Os.html? vendor_id=49
11 박재석, 김민진, 황병일, "핀테크의 발전 배경과 주요 동향," 한국통신학회지, 제33권, 제2호, 2016, pp. 52-58.
12 장상수, "핀테크(Fintech)가 정보보호산업에 미치는 영향에 대한 고찰," 한국인터넷진흥원, INTERNET & SECURITY FOCUS, 2015.
13 http://www.cvedetails.com/product/19997/Google- Android.html?vendor_id=1224
14 행정자치부, 한국인터넷진흥원, "모바일 전자정부 대민서비스 개발자를 위한 모바일 대민서비스 보안취약점 점검 가이드," 2015.
15 https://www.owasp.org/index.php/Mobile_Top_10_2016-Top_10