Browse > Article
http://dx.doi.org/10.3745/KTCCS.2019.8.1.9

Vulnerabilities and Countermeasures of Dynamic Virtual Keyboard in Android Banking Apps  

Cho, Taenam (우석대학교 IT전자융합공학과)
Choi, SookHee (우석대학교 심리학과)
Publication Information
KIPS Transactions on Computer and Communication Systems / v.8, no.1, 2019 , pp. 9-16 More about this Journal
Abstract
Smartphones are becoming a portable computer. As a result, even the most sensitive financial application services are now available anywhere on the smartphone. Compared to general PCs, smartphones communicate with external devices through various channels such as wireless internet, mobile communication network, Bluetooth, and NFC, and a wide variety of applications are provided. Therefore, if vulnerabilities exist, the possibility of attack damage increases. In this paper, we analyze the vulnerabilities of dynamic virtual keyboards used in login of banking apps of smartphones with various physical constraints and propose countermeasures.
Keywords
Android; Virtual Keyboard; Banking App; Security; Password;
Citations & Related Records
Times Cited By KSCI : 1  (Citation Analysis)
연도 인용수 순위
1 KISDI, Key Findings of the Korea Media Panel in 2017, KISDI STAT Report 17-23, p.2, 2017.
2 Hyunsuk Choi, '1 person - 1 smartphone era' opens ... Over 50 million subscribers [Internet], http://www.yonhapnews.co.kr/bulletin/2018/08/24/0200000000AKR20180824160700017.HTML, 2018.
3 Chulmin Yang, Apple smartphone market share highest in 21 months ... 'Gapjil' will deepen [Internet], http://www.sedaily.com/NewsView/1OOQ4ZOUXA/, 2017.
4 Yoonjung Jang, Respond to key logging attacks with mouse [Internet], http://www.boan.com/news/articleView.html?idxno=1858, 2010.
5 Bobur Shakirov et al., “Analysis on Vulnerability of Password Entry Using Virtual Onscreen Keyboard,” Journal of The Korea Institute of Information Security & Cryptology, Vol. 26, No. 4, pp. 857-869, 2016.   DOI
6 Junghan Kim et al., "Design and Implementation of Multi Virtual Keyboards for the Large Multi Touch Display," KSCI Summer Conference, Vol. 21, No. 2, pp. 73-74, 2013.
7 Min-Je Bang, SookHee Choi, Taenam Cho, "Analysis on Vulnerabilities of Dynamic Virtual Keyboard for Smartphone," KIPS Fall Conference, Vol. 25, No. 2, pp. 238-239, 2018.
8 Milefoot.com, Pearson's Goodness-of-Fit Test[Internet], http://www.milefoot.com/math/stat/ht-pearsonchisquare.htm.