• Journal of Internet Computing and Services
• /
• v.15 no.1
• /
• pp.157-170
• /
• 2014

As the increase of transaction using mobile banking continues, threat to the mobile financial security is also increasing. Mobile banking service performs the financial transaction using the dedicate application which is made by financial corporation. It provides the same services as the internet banking service. Personal information such as credit card number, which is stored in the mobile banking application can be used to the additional attack caused by a malicious attack or the loss of the mobile devices. Therefore, in this paper, to cope with the mobile financial accident caused by personal information exposure, we suggest outlier detection method which can judge whether the transaction is conducted by the appropriate user or not. This detection method utilizes the user's input patterns and transaction patterns when a user uses the banking service on the mobile devices. User's input and transaction pattern data involves the information which can be used to discern a certain user. Thus, if these data are utilized appropriately, they can be the information to distinguish abnormal transaction from the transaction done by the appropriate user. In this paper, we collect the data of user's input patterns on a smart phone for the experiment. And we use the experiment data which domestic financial corporation uses to detect outlier as the data of transaction pattern. We verify that our proposal can detect the abnormal transaction efficiently, as a result of detection experiment based on the collected input and transaction pattern data.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.29 no.6
• /
• pp.1271-1283
• /
• 2019

The fourth industrial revolution and digital transformation are also bringing major changes to the financial ecosystem in Korea. Already, global financial firms overseas are opening their financial markets and exploring new financial businesses by seeking ways to co-prosperity with fintech firms. However, it is also true that the domestic financial environment has failed to respond to the changes due to its monopolistic and closed structure. In response, the government began pushing for the introduction of open banking in December 2019 with the aim of fully opening the financial settlement system. However, unlike the existing simple financial transaction structure, open banking still has an unresolved part due to the unclear relationship of responsibilities between interested parties in the event of financial accidents due to the complex linkage structure of transactions such as financial firms, fintech firms and customers. This study analyzed the security threat of open banking in depth. By doing so, the government and financial firms want to present policy proposals that need to be improved to enhance the safety of open banking in korea and protect financial consumers, as well as new financial models that have improved the vulnerable parts of existing models.

• Convergence Security Journal
• /
• v.6 no.2
• /
• pp.13-20
• /
• 2006

Since the domestic internet banking environment has established for Microsoft Internet Explorer (IE), the internet banking service is not able to use in the open operating system and web browser such as linux and freeBSD. To solve the :problem, we develop the digital signature system used the seed for the digital payment system in the open software environment. Because the domestic internet banking performs the certificate and digital signature verification through official certificate that the official certificate authority issues, we analyze and develop the verification of validity system for the official certificate. Since the virtual internet banking environment is already established in the web server developing under the self-abilities, the basic internet banking service can be performed installing the certificate in the client which has the mozilla porting the seed. Finally, we can confirm that the certificate and digital signature are performed normally through the experiment.

• The Journal of Information Systems
• /
• v.24 no.2
• /
• pp.209-240
• /
• 2015

Purpose This study investigates the relationships between various attributes of smart banking (convenience, security, convergence, and economy), user features (familiarity and innovativeness), perceived usefulness, trust, satisfaction, and continuance intentions and provides a comparison of Google's Android OS and Apple's iOS. Design/methodology/approach We considered a sample of 245 respondents and used structural equation modeling to analyze the data. Findings The results indicate that convergence and familiarity significantly affected perceived usefulness and that security and economy significantly affected perceived trust in smart banking services. The relationships of security, economy, and innovativeness to perceived usefulness and those of convenience and familiarity to perceived trust were stronger for the Android OS than for iOS. The study contributes by proposing an integrated framework and providing a comparison between the Android OS and iOS in the context of smart banking.

• The Journal of Society for e-Business Studies
• /
• v.19 no.4
• /
• pp.119-134
• /
• 2014

Financial companies are providing electronic financial transactions through a variety of user terminals for non-face-to-face services such as Internet banking, smart phone banking, or etc. However, in these services users' security awareness and the limitations of technical responses has frequently caused the financial loss so that fundamental protection measures are required from financial authorities. Accordingly, financial industry is planning and establishing systems that block unusual financial transactions by comprehensively analyzing and detecting user's electronic information, access information, transaction information, and so on in accordance with "Guide for building Unusual financial transactions detection system" to prevent the financial loss that happens in electronic financial transactions. In this paper, we analyze case studies of unusual financial transactions detection and prevention system that is built and operated in financial companies and current operating status and propose effects of the accident prevention and security measures later.

• The Journal of Asian Finance, Economics and Business
• /
• v.7 no.2
• /
• pp.205-212
• /
• 2020

The article aims to identify the main factors affecting customers' decision to use mobile banking service in Vietnam, a case study in Thanh Hoa province. Based on theoretical frameworks of the Technology Acceptance Model (TAM) and the Unified Theory of Acceptance and Use of Technology (UTAUT), the study has been conducted with 370 questionnaires to consumers who have not yet used and are currently using mobile banking in Thanh Hoa province. The research results indicates that several factors have been evaluated to be more important than others, of which, the social influence is the strongest, the second is the compatibility and some others factors such as perceived ease of use, perceived trust, etc., all affecting the intention to use mobile banking in Thanh Hoa. Based on these important results, the article propose a number of recommendations: (i) Exploiting the advantages of social influence on the increase of intention to use; (ii) Increasing compatibility and minimizing costs for customers when they use Mobile Banking; (iii) Developing a strategy to increase the users' perceived ease of using banking services; (iv) Issuing a policy on increasing the security of Mobile Banking system to meet customers' needs; and (v) Developing an individual customer management system to improve service quality.

• The Journal of Asian Finance, Economics and Business
• /
• v.8 no.8
• /
• pp.387-397
• /
• 2021

The object of this article is to assess the factors affecting the behavioral intention of young retail customers to use digital banking services in Vietnam. In this article, multivariate data analysis techniques including Cronbach's Alpha, Exploratory factor analysis (EFA), Confirmatory factor analysis (CFA), Structure equation model (SEM), and Bootstrapping are used to analyze the data collected from 525 young respondents under the age of 35 who are using or having opportunities to experience digital banking services. The people taking part in the survey were mainly University students with incomes of most of them under VND 5 million. The result from the analysis illustrates that (1) perceived ease of use positively affects intention to use, (2) social influence positively impacts intention to use, and (3) customer support has a positive impact on the intention of young people to use digital banking services. While technology self-efficacy, convenience, and perceived security were found to have an impact on intention to use services in former studies, the influences of these factors on intention to use digital banking services are found insignificant in this research. From these results, the author provides implications for commercial banks to increase the intention to use digital banking of young people in Vietnam.

• The Journal of Korean Institute of Communications and Information Sciences
• /
• v.37C no.9
• /
• pp.841-850
• /
• 2012

Most of banks in Korea provide smartphone banking services. To use the banking service, public key certificates with private keys, which are stored in personal computers, should be installed in smartphones. Many banks provides intermediate servers that relay certificates to smartphones over the Internet, because the transferring certificates via USB cable is inconvenient. In this paper, we analyze the certificate transfer protocol between personal computer and smartphone, and consider a possible attack based on the results of the analysis. We were successfully able to extract a public key certificate and password-protected private key from encrypted data packets. In addition, we discuss several solutions to transfer public key certificates from personal computers to smartphones safely.

• KSII Transactions on Internet and Information Systems (TIIS)
• /
• v.11 no.1
• /
• pp.511-535
• /
• 2017

Internet banking is one of many services provided by financial institutions that have become very popular with an increasing trend. Due to the increased amount of usage of the service, Internet banking has become a target from adversaries. One of the points that are at risk of an attack is the login process. Therefore, it is necessary to have a security mechanism that can reduce this risk. This research designs and develops a multi-factor authentication protocol, starting from a registration system, which generates authentication factors, to an actual authentication mechanism. These factors can be categorised into two groups: short term and long term. For the authentication protocol, only three messages need to be exchanged between a client and a financial institution's server. Many cryptographic processes are incorporated into the protocol, such as symmetric and asymmetric cryptography, a symmetric key generation process, a method for generating and verifying digital signatures. All of the authentication messages have been proved and analysed by the logic of GNY and the criteria of OWASP-AT-009. Even though there are additional factors of authentication, users do not really feel any extra load on their part, as shown by the satisfactory survey.

• International Journal of Computer Science & Network Security
• /
• v.22 no.4
• /
• pp.217-222
• /
• 2022

The main purpose of the article is to study the features of the impact of social and digital changes on the system of government regulation of banking acitivity. The digital economy sets the vector along which socio-economic systems of micro-, meso-, macro-levels will develop in the long term, which necessitates research and a comprehensive analysis of digital transformation processes. Once a priority for individual innovative companies, today digital transformation has become a mass phenomenon, and the corresponding projects are vital for the success of not only individual companies, but also regions and countries. At the same time, this transformation itself is closely connected with the trend of servicing socio-economic systems and is largely implemented on its basis. Moreover, this relationship and the mechanism for its implementation remain insufficiently studied, which necessitates the development of tools for its identification, assessment and management. As a result of the analysis, the key aspects of the impact of social and digital changes on the system of state regulation of banking activities were identified.