A Study of Protection Profile and Analysis of Related Standard for Internet Banking Systems


The KIPS Transactions:PartC, Vol. 17, No. 3, pp. 223-232, Jun. 2010
10.3745/KIPSTC.2010.17.3.223,   PDF Download:

Abstract

Due to the advance of Internet, offline services are expanded into online services and a financial transaction company provides online services using internet baning systems. However, security problems of the internet banking systems are caused by a lack of security for developing the internet banking systems. Although the financial transaction company has applied existing internal and external standards, ISO 20022, ISO/IEC 27001, ISO/IEC 9789, ISO/IEC 9796, Common Criteria, etc., there are still vulnerabilities. Because the standards lack in a consideration of security requirements of the internet banking system. This paper is intended to explain existing standards and discusses a reason that the standards have not full assurance of security when the internet baning system is applied by single standard. Moreover we make an analysis of a security functions for the internet baning systems and then selects the security requirements. In this paper, we suggest a new protection profile of the internet baning systems using Common Criteria V.3.1 from the analysis mentioned above.


Statistics
Show / Hide Statistics

Statistics (Cumulative Counts from September 1st, 2017)
Multiple requests among the same browser session are counted as one view.
If you mouse over a chart, the values of data points will be shown.


Cite this article
[IEEE Style]
H. S. Jo, S. J. Kim, D. H. Won, "A Study of Protection Profile and Analysis of Related Standard for Internet Banking Systems," The KIPS Transactions:PartC, vol. 17, no. 3, pp. 223-232, 2010. DOI: 10.3745/KIPSTC.2010.17.3.223.

[ACM Style]
Hea Suk Jo, Seung Joo Kim, and Dong Ho Won. 2010. A Study of Protection Profile and Analysis of Related Standard for Internet Banking Systems. The KIPS Transactions:PartC, 17, 3, (2010), 223-232. DOI: 10.3745/KIPSTC.2010.17.3.223.