7
e-banking & security What is our customer’s expectations What should be our security expectations What are the challenges

E banking & security

Embed Size (px)

Citation preview

Page 1: E banking & security

e-banking & security

What is our customer’s expectationsWhat should be our security expectations

What are the challenges

Page 2: E banking & security

e-banking• Refers to financial services (which could be transactional, enquiry or payment services)

provided to personal or business customers and delivered over internet, wireless networks, automatic teller machines (ATMs), fixed telephone networks or other electronic terminal or devices *

• Internet banking on other hand refers to financial services delivered over the internet to customer devices including personal computers (including desktop computers, laptop computers and notebook computers), mobile devices such as smart phones or tablet computers or other devices

• *HKMA risk management of E-Banking 02.09.2015

Page 3: E banking & security

What’s our customer’s expectations

• Convenience• Pricing for the services• Intuitive experience• Options/range of products• Any time access• Payment mode• Data is collected and used as

reported• Data is safe and secure

throughout its lifecycle• System/Service is sustainable• Safety against cyber criminals

& Bad guys• Complied to regulations

Page 4: E banking & security

What is business’s security expectations

• Align to business goals and be an enabler• Assist in meeting regulatory/compliance obligations• Defend against potential threats, exploits • Assess and communicate potential risk to the

management

Page 5: E banking & security

What are the challenges • Highly Dynamic• Security is not considered as a core function• Too many changes and minimal possible downtime• Highly demanding business environment• Trust is key consideration • Confidentiality | Integrity | Client side |Communication Challenge • Trust is dynamic• Cyber security – by 2020 , 60% of digital business will suffer major digital

risk

Page 6: E banking & security

What’s our digital landscape

• 15 million + Unique visitors per month• 60% of which are from mobile devices• Multibillion $ payments transactions using various

payments options• 10 million plus product

Page 7: E banking & security

Attack vector and elements

1. Initial reconnaissance

2. Initial Compromise

3. Establish foothold

4. Escalate privileges

5. Internal Reconnaissance

6. Complete Mission

Initial compromise

Credential Harvesting

Lateral movement

Remote access

Data Exfiltration

Attack vector

Web server shell

Spear vishing

SQL injectio

n

Social engineeri

ng


E banking security-03-plans-to-project

E banking security-03-plans-to-project

Technology
Security in mobile banking

Security in mobile banking

Documents
UBS uses IBM technology for convenient security in e-banking (PDF

UBS uses IBM technology for convenient security in e-banking (PDF

Documents
ang Seng Business e-Banking User Guide Mobile Security Key

ang Seng Business e-Banking User Guide Mobile Security Key

Documents
E banking security-04-the-right-solution

E banking security-04-the-right-solution

Economy & Finance
INTERNET BANKING SECURITY

INTERNET BANKING SECURITY

Documents
E banking security-01-banking-is-changing

E banking security-01-banking-is-changing

Education
Cognitive Security - Finance & Banking Security ('12)

Cognitive Security - Finance & Banking Security ('12)

Technology
Online Banking Security mgnment

Online Banking Security mgnment

Documents
E-Banking Security- Using Message Authentication Image(MAI)Prjct-Preliminary Presentation

E-Banking Security- Using Message Authentication Image(MAI)Prjct-Preliminary Presentation

Documents
Information Security Banking

Information Security Banking

Documents
E banking security-09-logistics

E banking security-09-logistics

Business
Oracle Banking APIs Security Guide Banking API… · Oracle Banking APIs Security Guide Release 19.1.0.0.0 Part No. F18559-01 May 2019

Oracle Banking APIs Security Guide Banking API… · Oracle Banking APIs Security Guide Release 19.1.0.0.0 Part No. F18559-01 May 2019

Documents
A Survey on Security Solutions of Top e-Banking Providers ...marius-simion.cristea/pdf/ebanking.pdfA Survey on Security Solutions of Top e-Banking Providers from an European Market

A Survey on Security Solutions of Top e-Banking Providers ...marius-simion.cristea/pdf/ebanking.pdfA Survey on Security Solutions of Top e-Banking Providers from an European Market

Documents
Security Considerations in e Banking

Security Considerations in e Banking

Documents
E banking security-02-build-trust

E banking security-02-build-trust

Economy & Finance
Open Banking · 3 Open Banking Security Standards 9 3.1 API Security Practice for Participants 9 3.2 The Open Banking Implementation Entity’s Approach to Security 14 4 Open Banking

Open Banking · 3 Open Banking Security Standards 9 3.1 API Security Practice for Participants 9 3.2 The Open Banking Implementation Entity’s Approach to Security 14 4 Open Banking

Documents
E-Banking Security Summit 2007 Moscow Roger Vandeplas, VP Sales & Marketing

E-Banking Security Summit 2007 Moscow Roger Vandeplas, VP Sales & Marketing

Documents
Title of Thesis: E Banking security and organisational ...livrepository.liverpool.ac.uk/3001088/1/2005422393_Aug2015.pdf · E-Banking security and organisational changes. An action

Title of Thesis: E Banking security and organisational ...livrepository.liverpool.ac.uk/3001088/1/2005422393_Aug2015.pdf · E-Banking security and organisational changes. An action

Documents
Security in Online Banking

Security in Online Banking

Documents
Banking Security Misunderstanding

Banking Security Misunderstanding

Self Improvement
Aulas Empresa-2008-Deloitte-E-Banking Securityseminarisempresa.fib.upc.edu/anteriors/2008/programes/Aulas Empr… · Why Security of E-banking applications : •The risks inherent

Aulas Empresa-2008-Deloitte-E-Banking Securityseminarisempresa.fib.upc.edu/anteriors/2008/programes/Aulas Empr… · Why Security of E-banking applications : •The risks inherent

Documents
Mobile Banking Security

Mobile Banking Security

Documents
Security In Internet Banking

Security In Internet Banking

Internet
Mobile Banking Security: Challenges, Solutions

Mobile Banking Security: Challenges, Solutions

Documents
E banking security

E banking security

Technology
Oracle Banking Digital Experience Security Guide Banking...Custom Identity Keystore Absolute path of the custom ... Oracle Banking Digital Experience Security Guide ... Oracle Banking

Oracle Banking Digital Experience Security Guide Banking...Custom Identity Keystore Absolute path of the custom ... Oracle Banking Digital Experience Security Guide ... Oracle Banking

Documents
Security in Banking

Security in Banking

Documents
Content What is E-banking? Development of E-banking Advantages of the E-Banking Disadvantages and Risk of E-banking Precaution of risk and security Persecutions

Content What is E-banking? Development of E-banking Advantages of the E-Banking Disadvantages and Risk of E-banking Precaution of risk and security Persecutions

Documents
E-Banking Fraud Schemes E-Banking Fraud Schemes: Attack Trends and Defenses Andrew Showstead, VASCO Data Security

E-Banking Fraud Schemes E-Banking Fraud Schemes: Attack Trends and Defenses Andrew Showstead, VASCO Data Security

Documents