• Journal of the Korea Academia-Industrial cooperation Society
• /
• v.8 no.6
• /
• pp.1530-1536
• /
• 2007

In this paper, a mobile banking system which can provide banking services is introduced. Since a PDA has excellent features like a small-size computer and provides mobility, it has been widely used by salesmen. Therefore, if general banking services can be provided with PDA by using wireless technology, it will be very useful. In addition, it is easy to develop and maintain the client software of PDA because it uses Windows-based operation systems. In this paper, a PDA banking system is introduced. The system is designed and developed based on the techniques of wireless network, security and PDA programming to be used for mobile banking and a prototype system is developed. Moreover, we used the object-oriented modeling technique, UML and Java Beans for programming.

• Journal of the Korea Safety Management & Science
• /
• v.14 no.3
• /
• pp.119-126
• /
• 2012

Recently, the breakdown of online banking servers and the leakage of customer information give rise to much concern about the security of information systems in financial and banking companies in Korea. The enforcement of security for information system becomes much more important issue than earlier. However, the security reinforcement of information system is restricted by a budget. In addition, the activities' cost to secure information system from threatening are under uncertain circumstances and should be established by a human decision maker who is basically uncertain and vague. Thus, making the budget for information system is exposed to any extent of the risk for these reasons. First, we introduce brief fuzzy set theory and fuzzy AHP (Analytic Hierarchy Process) methodology. Then, the cost elements that comprise yearly budget are presented and the priorities among the cost elements are calculated by fuzzy AHP. The cost elements that are exposed to risk are evaluated from the both perspectives of the risk impact and risk occurrence possibility which are expressed as linguistic terms. To get information on the risk profiles-pessimistic, most likely, and optimistic-for each cost element, the evaluation is accomplished and the result is presented. At last, the budget ranges-minimum, mode, maximum-for each cost element are estimated with the consideration of the risk profiles.

• International Journal of Computer Science & Network Security
• /
• v.21 no.8
• /
• pp.111-118
• /
• 2021

Banking systems are sensitive to data privacy since users' data, if not well protected, may be used to perform fake transactions. Blockchains, public and private, are frequently used in such systems thanks to their efficiency and high security. Public blockchains fail to fully protect users' data, despite their power in the accuracy of the transactions. The private blockchain is better used to protect the privacy of the sensitive data. They are not open and they apply authorization to login into the blockchain. However, they have a lower security compared to public blockchain. We propose in this paper a hybrid public-private architecture that profits from network virtualization. The main novelty of this proposal is the use of network virtualization that helps to reduce the complexity and efficiency of the computations. Simulations have been conducted to evaluate the performance of the proposed solution. Findings prove the efficiency of the scheme in reducing complexity and enhancing data privacy by guarantee high security. The contribution conducted by this proposal is that the results are verified by the centralized controller that ensures a correct validation of the resulted blockchains. In addition, computation complexity is to be reduced by profiting from the cooperation performed by the virtual agents.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.21 no.6
• /
• pp.83-99
• /
• 2011

OTP (One Time Password) is widely used for protecting accounts on Internet banking, portal services and online game services in Korea. OTP is very strong method for enforcing account security but there are several ways for exploiting vulnerabilities caused by implementation errors. These attacks can work because of the weakness from OTP enabled system's vulnerabilities, not for OTP's algorithm itself. In this paper, we present the known attack scenarios such as MITM (Man-in-the-Middle) attack and various reverse engineering techniques; also, we show the test result of the attacks and countermeasures for these attacks.

• Journal of Service Research and Studies
• /
• v.3 no.1
• /
• pp.33-53
• /
• 2013

In the 1st half of 2009, Hana Bank was first to launch the smart banking service in Korea and thereafter, the smart banking system spread rapidly within Korea. Until 2010, the users have reached about 2,610,000. So, for more profit, how to make the smart banking early-adopters continually use the service has became the key issue. But, there are only few researches on continuous acceptance of smart banking service now. The aim of this study is to find out factors influncing continuous acceptance of smart banking service and the appropriate model for it. After analyzing the market status of smart banking service, Security, Service Scalability and UI convenience were chosen to be the most important independent variables. And research model was designed based on Expectancy Disconfirmation Theory and Post Acceptance Model. To verify the model, a survey targeting at smart banking service users was implemented.

• Korean Security Journal
• /
• no.56
• /
• pp.165-185
• /
• 2018

Because financial industry is closely related to the daily lives of people, internal fraud such as embezzlement by the employees can cause serious damage to the national economy, including credit crunch and contagious bankruptcy, as once demonstrated in the Savings Bank Scandal in 2011. Therefore, the importance of financial industry security is being emphasized and developed into converged security that combines physical, human and cyber security. In this study, to prevent fraud caused by internal employees in Korean financial sector, in-depth semi-structured interviews were conducted with a total of 16 participants including bankers, officials of financial regulators, and security experts, who were in charge of risk management in the industry. The collected data were analyzed at three stratification levels such as individual, organization, and socio-cultural factor. Based on this analysis, policy recommendations were suggested for the development of financial industry security and reducing internal fraud in banking institutions.

• Journal of Digital Convergence
• /
• v.19 no.7
• /
• pp.147-154
• /
• 2021

The pandemic age came to us after the COVID19 broke out in the early of 2020, which resulted in many changes in our everyday life. One of the changes is non-contact transactions in economic activities, especially contact-free financial transactions are ever-increasing activities in the pandemic age. In non-contact financial transactions, security and trust are important issues that users are concerned about the most. So the paper examines how security and trust have effects on the attitudes of bank customers who use mobile banking applications on their smartphones. The study conducted factor ananlysis to extract research constructs using survey data gathered during Nobember of 2020 through February of 2021 across the nation. After extracting the constructs, the study checked validity, sampling adequacy, and internal reliability with KMO, Bartlett's test, and Crombach Alpha respectively. To make sure the purpose of the study, I do regression analysis. All factors of attitude had impacts on willingness on both of transactions and purchasing financial products. The results could give guidelines banks which want to attract more customers in open-banking environment through ever-more secure and trusty mobile banking application.

• KIPS Transactions on Computer and Communication Systems
• /
• v.7 no.3
• /
• pp.73-80
• /
• 2018

Due to the popularity of smartphones and the simplification of financial services, the number of mobile financial services is increasing. However, the security keypads developed for existing financial services are susceptible to probability analysis attacks and have security vulnerabilities. In this paper, we propose and implement a security keypad based on dual touch. Prior to the proposal, we examined the existing types of security keypads used in the mobile banking and mobile payment systems of Korean mobile financial businesses and analyzed the vulnerabilities. In addition, we compared the security of the proposed dual touch keypad as well as existing keypads using the authentication framework and the existing keypad attack types (Brute Force Attack, Smudge Attack, Key Logging Attack, and Shoulder Surfing Attack, Joseph Bonneau). Based on the results, we can confirm that the proposed security keypad with dual touch presented in this paper shows a high level of security. The security keypad with dual touch can provide more secure financial services, and it can be applied to other mobile services to enhance their security.

• Journal of Digital Convergence
• /
• v.14 no.11
• /
• pp.501-505
• /
• 2016

Recently, the frequency of dealing important information regarding financial services like paying through smart device or internet banking on smart device has been increasing. Also, with the development of smart device execution environment towards open software environment, it became easier for users to download and use random application software, and its security aspect appears to be weakening. This study inspects features of hardware-based smart device security technology. Furthermore, this study proposes a realization method in MTM hardware-based secure smart device execution environment for an application software that runs in smart devices. While existing MTM provides the root of trust function only for the mobile device, the MTM-based mobile security environment technology proposed in this paper can provide numerous security functions that application program needs in mobile device. The further researches on IoT devices that are compatible with security hardware, gateway security technology and methods that secure reliability and security applicable to varied IoT devices by advancing security hardware are the next plan to proceed.

• The Journal of Asian Finance, Economics and Business
• /
• v.7 no.9
• /
• pp.499-504
• /
• 2020

Service quality of any institution is a pull factor for attracting and retaining the customer. The present study examines the customer satisfaction level toward the quality of service offered by the Islamic banks in Oman. It also aims to find out which dimension influences customer satisfaction more concerning the other dimension chosen for the study. To fulfil the need of the study, a structured questionnaire is distributed amongst 100 customers of Islamic banks. The random stratified sampling technique is used for the collection of the data. The collected data is analyzed using the correlation and the multiple linear regression techniques. The result of the study indicates that timely service provided by the banking personnel has a mean score of 4.57, bank staff readiness to serve the customer has a mean score of 4.36, and the security of the banking operation has a mean score of 4.37 occupies the highest rank in their respective dimension chosen for the study. The study reveals that all three dimensions of quality of service represented by Services Reliability, Services Responsiveness and Services Security have a positive and significant correlation with customer satisfaction. The regression results also indicate that all three dimensions influence customer satisfaction of the Islamic banks.