東華大學圖書館 |

Language: English

Help

回圖書館首頁

手機版館藏查詢

Back

Switch To: Labeled | MARC Mode | ISBD

Security Design Flaws that Affect Us...

Gurlen, Stephanie.

Linked to FindBook

Google Book

Amazon

博客來

Security Design Flaws that Affect Usability in Online Banking.

Record Type:	Language materials, printed : Monograph/item
Title/Author:	Security Design Flaws that Affect Usability in Online Banking./
Author:	Gurlen, Stephanie.
Description:	106 p.
Notes:	Source: Dissertation Abstracts International, Volume: 74-06(E), Section: B.
Contained By:	Dissertation Abstracts International74-06B(E).
Subject:	Information Technology. -
Online resource:	http://pqdd.sinica.edu.tw/twdaoapp/servlet/advanced?query=3554812
ISBN:	9781267953773

Security Design Flaws that Affect Usability in Online Banking.
Gurlen, Stephanie.

Security Design Flaws that Affect Usability in Online Banking. - 106 p.

Source: Dissertation Abstracts International, Volume: 74-06(E), Section: B.

Thesis (Ph.D.)--Nova Southeastern University, 2013.

As the popularity of online banking Websites has increased, the security of these sites has become increasingly critical as attacks against these sites are on the rise. However, the design decisions made during construction of the sites could make usability more difficult, where the user has difficulty making good security decisions. This study analyzed 6 design flaws of this nature: (a) a break in the chain of trust, (b) providing a secure login method on an unsecure page, (c) providing bank contact information or security advice on an unsecure page, (d) having policies that are insufficient for userids and passwords, (e) generating e-mails containing sensitive information that are sent in an unsecure manner, and (f) the multi-factor authentication solution consisting of the presentation of an image in combination with the userid and password. Each of these flaws can lead to security and usability issues. Analysis of 80 banking sites was performed to determine the frequency of the flaws. The sampling of banking institutions was determined from banking institution lists available from the Federal Deposit Insurance Corporation (FDIC). Banking institutions were selected from 5 bank charter classes. The banking sites were downloaded for static analysis. The analysis was performed through a combination of automated programs and manual review. The results found instances of all 6 design flaws. The most prevalent issue found was insufficient policies for userids and passwords. The second most prevalent design flaw was the break in the chain of trust. The design flaw with the smallest number of occurrences was emailing sensitive information in an unsecure manner. The banking charter class of the banking institution did not appear to have a relationship to the frequency of the flaws. However, it appears that banking institutions with a smaller asset size have a higher frequency of the flaws than those with a larger asset size. It is recommended that banking institutions address these design flaws to improve usability for their customers while improving security.

ISBN: 9781267953773Subjects--Topical Terms:

1030799
Information Technology.

Security Design Flaws that Affect Usability in Online Banking.
LDR:02952nam a2200277 4500 001 1959481
005 20140520124317.5
008 150210s2013 ||||||||||||||||| ||eng d
020 $a 9781267953773
035 $a (MiAaPQ)AAI3554812
035 $a AAI3554812
040 $a MiAaPQ $c MiAaPQ
100 1 $a Gurlen, Stephanie. $3 2094915
245 1 0 $a Security Design Flaws that Affect Usability in Online Banking.
300 $a 106 p.
500 $a Source: Dissertation Abstracts International, Volume: 74-06(E), Section: B.
500 $a Adviser: Maxine Cohen.
502 $a Thesis (Ph.D.)--Nova Southeastern University, 2013.
520 $a As the popularity of online banking Websites has increased, the security of these sites has become increasingly critical as attacks against these sites are on the rise. However, the design decisions made during construction of the sites could make usability more difficult, where the user has difficulty making good security decisions. This study analyzed 6 design flaws of this nature: (a) a break in the chain of trust, (b) providing a secure login method on an unsecure page, (c) providing bank contact information or security advice on an unsecure page, (d) having policies that are insufficient for userids and passwords, (e) generating e-mails containing sensitive information that are sent in an unsecure manner, and (f) the multi-factor authentication solution consisting of the presentation of an image in combination with the userid and password. Each of these flaws can lead to security and usability issues. Analysis of 80 banking sites was performed to determine the frequency of the flaws. The sampling of banking institutions was determined from banking institution lists available from the Federal Deposit Insurance Corporation (FDIC). Banking institutions were selected from 5 bank charter classes. The banking sites were downloaded for static analysis. The analysis was performed through a combination of automated programs and manual review. The results found instances of all 6 design flaws. The most prevalent issue found was insufficient policies for userids and passwords. The second most prevalent design flaw was the break in the chain of trust. The design flaw with the smallest number of occurrences was emailing sensitive information in an unsecure manner. The banking charter class of the banking institution did not appear to have a relationship to the frequency of the flaws. However, it appears that banking institutions with a smaller asset size have a higher frequency of the flaws than those with a larger asset size. It is recommended that banking institutions address these design flaws to improve usability for their customers while improving security.
590 $a School code: 1191.
650 4 $a Information Technology. $3 1030799
650 4 $a Engineering, Computer. $3 1669061
690 $a 0489
690 $a 0464
710 2 $a Nova Southeastern University. $b Information Systems (DISS). $3 1023901
773 0 $t Dissertation Abstracts International $g 74-06B(E).
790 $a 1191
791 $a Ph.D.
792 $a 2013
793 $a English
856 4 0 $u http://pqdd.sinica.edu.tw/twdaoapp/servlet/advanced?query=3554812