A Case Study on the Information Security System of Al Wahda Bank

2022 International Conference on Electrical and Computing Technologies and Applications (ICECTA) Pub Date : 2022-11-23 DOI:10.1109/ICECTA57148.2022.9990540

Almountassir Bellah Balhasan, Ibrahim A.M. Alkasih, Wagdi Saad Sallabi, Moftah B.M. Bokhatwa, Adrees Saeid Bilhasan, Salem Ali Alhuni

{"title":"A Case Study on the Information Security System of Al Wahda Bank","authors":"Almountassir Bellah Balhasan, Ibrahim A.M. Alkasih, Wagdi Saad Sallabi, Moftah B.M. Bokhatwa, Adrees Saeid Bilhasan, Salem Ali Alhuni","doi":"10.1109/ICECTA57148.2022.9990540","DOIUrl":null,"url":null,"abstract":"This case study looks at the information security system in use by the Information Security Unit at Al Wahda Bank in Libya. It is an examination of the policies and tools used for the security of 2 main areas: software & information and data. For software security, the case study examines the security policies and tools for the following 2 aspects: the software development process related to all software developed for the bank, and the protection of all devices from malware. For information and data security, the case study examines the security policies and tools for the following 5 aspects: information and data classification, information and data storage, information and data backup, information and data communication, and information and data disposal. Afterwards, we briefly analyze the information security system. Our analysis leads us to identifying 3 areas for further review: difficulty in monitoring 3rd party software development, inconsistency between policies and actual implementation, and the retention period of ‘unwanted’ information and data.","PeriodicalId":337798,"journal":{"name":"2022 International Conference on Electrical and Computing Technologies and Applications (ICECTA)","volume":"9 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2022-11-23","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2022 International Conference on Electrical and Computing Technologies and Applications (ICECTA)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ICECTA57148.2022.9990540","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 0

Abstract

This case study looks at the information security system in use by the Information Security Unit at Al Wahda Bank in Libya. It is an examination of the policies and tools used for the security of 2 main areas: software & information and data. For software security, the case study examines the security policies and tools for the following 2 aspects: the software development process related to all software developed for the bank, and the protection of all devices from malware. For information and data security, the case study examines the security policies and tools for the following 5 aspects: information and data classification, information and data storage, information and data backup, information and data communication, and information and data disposal. Afterwards, we briefly analyze the information security system. Our analysis leads us to identifying 3 areas for further review: difficulty in monitoring 3rd party software development, inconsistency between policies and actual implementation, and the retention period of ‘unwanted’ information and data.

查看原文本刊更多论文

Al - Wahda银行信息安全系统案例研究

本案例研究着眼于利比亚Al Wahda银行信息安全部门使用的信息安全系统。它是对用于两个主要领域安全的政策和工具的检查:软件&信息和数据。对于软件安全，案例研究检查了以下两个方面的安全策略和工具:与银行开发的所有软件相关的软件开发过程，以及保护所有设备免受恶意软件的侵害。在信息和数据安全方面，本案例探讨了以下5个方面的安全策略和工具:信息和数据分类、信息和数据存储、信息和数据备份、信息和数据通信、信息和数据处理。随后，我们对信息安全系统进行了简要的分析。我们的分析使我们确定了3个需要进一步审查的领域:监控第三方软件开发的困难，政策与实际执行之间的不一致，以及“不想要的”信息和数据的保留期。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2022 International Conference on Electrical and Computing Technologies and Applications (ICECTA)

自引率

0.00%

发文量