Tebug Mba Techoro, S. Butakov, S. Aghili, Ron Ruhl
{"title":"在基于nfc的支付技术中利用COBIT5:安全风险缓解和审计的挑战和机遇","authors":"Tebug Mba Techoro, S. Butakov, S. Aghili, Ron Ruhl","doi":"10.1109/MOBISECSERV.2015.7072875","DOIUrl":null,"url":null,"abstract":"Near field communication (NFC) payment technology was expected to revolutionize businesses, yet presents major challenges relating to security and assurance in the Canadian payment ecosystem. This paper suggest some of the best practices in various frameworks for Risks and Assurance management in implementing NFC-based payment technology (NFC-BPT). The NFC-BPT risks and threats are analyzed in conjunction with justified risks data from Canadian NFC Mobile Payment Reference Model (Canadian NFC-MPRM). The output of the analyzed risk is mapped to COBIT5 (Control objective for Information and Related Technology) for Risk and COBIT5 for Assurance processes through which, a comprehensive assurance steps will be obtained on data security, fraud, theft and malware for payment credential issuers and acquirers.","PeriodicalId":164383,"journal":{"name":"2015 First Conference on Mobile and Secure Services (MOBISECSERV)","volume":"46 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2015-04-02","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":"{\"title\":\"Leveraging COBIT5 in NFC-based payment technology: challenges and opportunities for security risk mitigation and audit\",\"authors\":\"Tebug Mba Techoro, S. Butakov, S. Aghili, Ron Ruhl\",\"doi\":\"10.1109/MOBISECSERV.2015.7072875\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Near field communication (NFC) payment technology was expected to revolutionize businesses, yet presents major challenges relating to security and assurance in the Canadian payment ecosystem. This paper suggest some of the best practices in various frameworks for Risks and Assurance management in implementing NFC-based payment technology (NFC-BPT). The NFC-BPT risks and threats are analyzed in conjunction with justified risks data from Canadian NFC Mobile Payment Reference Model (Canadian NFC-MPRM). The output of the analyzed risk is mapped to COBIT5 (Control objective for Information and Related Technology) for Risk and COBIT5 for Assurance processes through which, a comprehensive assurance steps will be obtained on data security, fraud, theft and malware for payment credential issuers and acquirers.\",\"PeriodicalId\":164383,\"journal\":{\"name\":\"2015 First Conference on Mobile and Secure Services (MOBISECSERV)\",\"volume\":\"46 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2015-04-02\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2015 First Conference on Mobile and Secure Services (MOBISECSERV)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/MOBISECSERV.2015.7072875\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2015 First Conference on Mobile and Secure Services (MOBISECSERV)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/MOBISECSERV.2015.7072875","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
Leveraging COBIT5 in NFC-based payment technology: challenges and opportunities for security risk mitigation and audit
Near field communication (NFC) payment technology was expected to revolutionize businesses, yet presents major challenges relating to security and assurance in the Canadian payment ecosystem. This paper suggest some of the best practices in various frameworks for Risks and Assurance management in implementing NFC-based payment technology (NFC-BPT). The NFC-BPT risks and threats are analyzed in conjunction with justified risks data from Canadian NFC Mobile Payment Reference Model (Canadian NFC-MPRM). The output of the analyzed risk is mapped to COBIT5 (Control objective for Information and Related Technology) for Risk and COBIT5 for Assurance processes through which, a comprehensive assurance steps will be obtained on data security, fraud, theft and malware for payment credential issuers and acquirers.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
