Information security risk items and management practices for mobile payment using non-financial-institution service providers: An exploratory study

IF 4.1 3区 管理学 Q2 BUSINESS
Shaio-Yan Huang , Tawei Wang , Yu-Ting Huang , Tzu-Ning Yeh
{"title":"Information security risk items and management practices for mobile payment using non-financial-institution service providers: An exploratory study","authors":"Shaio-Yan Huang ,&nbsp;Tawei Wang ,&nbsp;Yu-Ting Huang ,&nbsp;Tzu-Ning Yeh","doi":"10.1016/j.accinf.2024.100684","DOIUrl":null,"url":null,"abstract":"<div><p>Mobile payment has become increasingly popular in recent years. However, concerns remain about the information security risk management practices implemented by non-financial-institution mobile payment service providers, such as mobile phone carriers and technology companies, using tokenization systems and encryption mechanisms. Using the modified Delphi method and building on the COBIT 2019 framework, this study explores and suggests how these non-financial-institution mobile payment service providers can consider a more holistic list of information security risk items and their corresponding management practices. We believe the proposed practices will help non-financial-institution mobile payment service providers focus on the valuable aspects of information security risks.</p></div>","PeriodicalId":47170,"journal":{"name":"International Journal of Accounting Information Systems","volume":"53 ","pages":"Article 100684"},"PeriodicalIF":4.1000,"publicationDate":"2024-06-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"International Journal of Accounting Information Systems","FirstCategoryId":"91","ListUrlMain":"https://www.sciencedirect.com/science/article/pii/S1467089524000174","RegionNum":3,"RegionCategory":"管理学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q2","JCRName":"BUSINESS","Score":null,"Total":0}
引用次数: 0

Abstract

Mobile payment has become increasingly popular in recent years. However, concerns remain about the information security risk management practices implemented by non-financial-institution mobile payment service providers, such as mobile phone carriers and technology companies, using tokenization systems and encryption mechanisms. Using the modified Delphi method and building on the COBIT 2019 framework, this study explores and suggests how these non-financial-institution mobile payment service providers can consider a more holistic list of information security risk items and their corresponding management practices. We believe the proposed practices will help non-financial-institution mobile payment service providers focus on the valuable aspects of information security risks.

使用非金融机构服务提供商进行移动支付的信息安全风险项目和管理实践:探索性研究
近年来,移动支付日益流行。然而,非金融机构移动支付服务提供商(如手机运营商和技术公司)使用令牌化系统和加密机制实施的信息安全风险管理实践仍令人担忧。本研究采用改进的德尔菲法,以 COBIT 2019 框架为基础,探讨并建议这些非金融机构移动支付服务提供商如何考虑更全面的信息安全风险项目列表及其相应的管理实践。我们相信,所提出的做法将有助于非金融机构移动支付服务提供商关注信息安全风险的有价值方面。
本文章由计算机程序翻译,如有差异,请以英文原文为准。
求助全文
约1分钟内获得全文 求助全文
来源期刊
CiteScore
9.00
自引率
6.50%
发文量
23
期刊介绍: The International Journal of Accounting Information Systems will publish thoughtful, well developed articles that examine the rapidly evolving relationship between accounting and information technology. Articles may range from empirical to analytical, from practice-based to the development of new techniques, but must be related to problems facing the integration of accounting and information technology. The journal will address (but will not limit itself to) the following specific issues: control and auditability of information systems; management of information technology; artificial intelligence research in accounting; development issues in accounting and information systems; human factors issues related to information technology; development of theories related to information technology; methodological issues in information technology research; information systems validation; human–computer interaction research in accounting information systems. The journal welcomes and encourages articles from both practitioners and academicians.
×
引用
GB/T 7714-2015
复制
MLA
复制
APA
复制
导出至
BibTeX EndNote RefMan NoteFirst NoteExpress
×
提示
您的信息不完整,为了账户安全,请先补充。
现在去补充
×
提示
您因"违规操作"
具体请查看互助需知
我知道了
×
提示
确定
请完成安全验证×
copy
已复制链接
快去分享给好友吧!
我知道了
右上角分享
点击右上角分享
0
联系我们:info@booksci.cn Book学术提供免费学术资源搜索服务,方便国内外学者检索中英文文献。致力于提供最便捷和优质的服务体验。 Copyright © 2023 布克学术 All rights reserved.
京ICP备2023020795号-1
ghs 京公网安备 11010802042870号
Book学术文献互助
Book学术文献互助群
群 号:481959085
Book学术官方微信