An Evaluation Study of User Authentication in the Malaysian FinTech Industry With uAuth Security Analytics Framework

IF 0.7 Q4 COMPUTER SCIENCE, INFORMATION SYSTEMS
S. Tan, G. Chung
{"title":"An Evaluation Study of User Authentication in the Malaysian FinTech Industry With uAuth Security Analytics Framework","authors":"S. Tan, G. Chung","doi":"10.4018/jcit.318703","DOIUrl":null,"url":null,"abstract":"The increased cyberattack frequency and ferocity have alerted the fintech industry in detecting existential security threats and risks. Various authentication mechanisms have been deployed to countermeasure cyberattacks; whether these deployed solutions fulfil the security and technical standards has not been significantly investigated. This article proposed an uAuth security analytics framework to evaluate the deployed user authentication mechanisms. Subsequently, the technical evaluation study covered ten major commercial banks in Malaysia, whereas 120 respondents aged 18 to 25 participated in the user awareness study. The result found that mobile banking enforces more robust user authentication mechanisms than internet banking in Malaysia. As 80% of the Malaysia fintech systems only ranked as Level 3 of the uAuth security analytics framework, the authors urge Malaysia fintech industry to enhance their authentication factor, login and transaction verification methods, password policy, as well as readiness for quantum-safe security technologies.","PeriodicalId":43384,"journal":{"name":"Journal of Cases on Information Technology","volume":null,"pages":null},"PeriodicalIF":0.7000,"publicationDate":"2023-03-02","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"1","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Journal of Cases on Information Technology","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.4018/jcit.318703","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q4","JCRName":"COMPUTER SCIENCE, INFORMATION SYSTEMS","Score":null,"Total":0}
引用次数: 1

Abstract

The increased cyberattack frequency and ferocity have alerted the fintech industry in detecting existential security threats and risks. Various authentication mechanisms have been deployed to countermeasure cyberattacks; whether these deployed solutions fulfil the security and technical standards has not been significantly investigated. This article proposed an uAuth security analytics framework to evaluate the deployed user authentication mechanisms. Subsequently, the technical evaluation study covered ten major commercial banks in Malaysia, whereas 120 respondents aged 18 to 25 participated in the user awareness study. The result found that mobile banking enforces more robust user authentication mechanisms than internet banking in Malaysia. As 80% of the Malaysia fintech systems only ranked as Level 3 of the uAuth security analytics framework, the authors urge Malaysia fintech industry to enhance their authentication factor, login and transaction verification methods, password policy, as well as readiness for quantum-safe security technologies.
基于auth安全分析框架的马来西亚金融科技行业用户认证评估研究
不断增加的网络攻击频率和凶猛程度提醒了金融科技行业如何检测存在的安全威胁和风险。已部署各种身份验证机制以对抗网络攻击;这些部署的解决方案是否满足安全和技术标准还没有进行重大调查。本文提出了一个uAuth安全分析框架来评估已部署的用户身份验证机制。随后,技术评价研究覆盖了马来西亚的十家主要商业银行,而120名18至25岁的受访者参与了用户意识研究。结果发现,在马来西亚,手机银行比网上银行执行更强大的用户认证机制。由于马来西亚80%的金融科技系统仅被列为uAuth安全分析框架的第3级,作者敦促马来西亚金融科技行业加强其身份验证因素,登录和交易验证方法,密码政策以及对量子安全安全技术的准备。
本文章由计算机程序翻译,如有差异,请以英文原文为准。
求助全文
约1分钟内获得全文 求助全文
来源期刊
Journal of Cases on Information Technology
Journal of Cases on Information Technology COMPUTER SCIENCE, INFORMATION SYSTEMS-
CiteScore
2.60
自引率
0.00%
发文量
64
期刊介绍: JCIT documents comprehensive, real-life cases based on individual, organizational and societal experiences related to the utilization and management of information technology. Cases published in JCIT deal with a wide variety of organizations such as businesses, government organizations, educational institutions, libraries, non-profit organizations. Additionally, cases published in JCIT report not only successful utilization of IT applications, but also failures and mismanagement of IT resources and applications.
×
引用
GB/T 7714-2015
复制
MLA
复制
APA
复制
导出至
BibTeX EndNote RefMan NoteFirst NoteExpress
×
提示
您的信息不完整,为了账户安全,请先补充。
现在去补充
×
提示
您因"违规操作"
具体请查看互助需知
我知道了
×
提示
确定
请完成安全验证×
copy
已复制链接
快去分享给好友吧!
我知道了
右上角分享
点击右上角分享
0
联系我们:info@booksci.cn Book学术提供免费学术资源搜索服务,方便国内外学者检索中英文文献。致力于提供最便捷和优质的服务体验。 Copyright © 2023 布克学术 All rights reserved.
京ICP备2023020795号-1
ghs 京公网安备 11010802042870号
Book学术文献互助
Book学术文献互助群
群 号:481959085
Book学术官方微信