Loïc D. Tsobdjou, Samuel Pierre et Alejandro Quintero
Article de revue (2024)
Document en libre accès dans PolyPublie et chez l'éditeur officiel |
|
Libre accès au plein texte de ce document Version officielle de l'éditeur Conditions d'utilisation: Creative Commons: Attribution (CC BY) Télécharger (304kB) |
Abstract
Mobile banking applications make users' daily lives easier by allowing them to access banking services, such as balance inquiries and bill payments, anytime and anywhere. Since these applications manage very sensitive financial data, special attention must be paid to data security. Several works in the literature assess the security of mobile banking applications. However, we observe the lack of a widely adopted framework among researchers for assessing the security of mobile banking applications. In this paper, we propose a framework consisting of twenty-six criteria for assessing the security of Android mobile banking applications. These criteria are divided into five categories: mobile device security, data in transit, data storage, cryptographic misuse, and others. Subsequently, we evaluate the proposed framework based on predefined requirements. These requirements are no redundancy, no ambiguity, and comprehensiveness. As a case study, we assess the security of the Android mobile banking applications of seven major Canadian banks. The results show that data in transit is adequately protected by these applications.
Mots clés
Android; mobile banking; mobile code security; security assessment
Sujet(s): | 2700 Technologie de l'information > 2706 Génie logiciel |
---|---|
Département: | Département de génie informatique et génie logiciel |
Organismes subventionnaires: | NSERC / CRSNG |
URL de PolyPublie: | https://publications.polymtl.ca/59145/ |
Titre de la revue: | Computer Networks and Communications (vol. 2, no 1) |
Maison d'édition: | Universal Wiser Publisher Pte |
DOI: | 10.37256/cnc.2120243929 |
URL officielle: | https://doi.org/10.37256/cnc.2120243929 |
Date du dépôt: | 04 sept. 2024 15:35 |
Dernière modification: | 28 sept. 2024 07:00 |
Citer en APA 7: | Tsobdjou, L. D., Pierre, S., & Quintero, A. (2024). A framework for security assessment of android mobile banking applications. Computer Networks and Communications, 2(1), 49-61. https://doi.org/10.37256/cnc.2120243929 |
---|---|
Statistiques
Total des téléchargements à partir de PolyPublie
Téléchargements par année
Provenance des téléchargements
Dimensions