Threat analysis of software agents in online banking and payments

Ngalo, Tamsanqa, Xiao, Hannan, Christianson, Bruce and Zhang, Ying (2018) Threat analysis of software agents in online banking and payments. In: The 16th IEEE International Conference on Dependable, Autonomic and Secure Computing (DASC 2018), 12-15 August 2018, Athens, Greece. (In Press)

[img]
Preview
PDF
IEEE DASC 2018_Camera_Ready.pdf - Published Version

Download (194kB) | Preview

Abstract

Software agents are the delegated subcontractors essential to connect the end-user to the bank and payment providers in a distributed service offering. This paper evaluates the key role that the different software agent types play to facilitate collaboration between clients and banks to perform online transactions. It highlights the threats and imminent risks that these software agents introduce in the chain as well as how these threats affect the trust relationship between principals. The discussed threats and resulting risks suggest vulnerabilities in the current software agent model which are beyond the bank and end users control. Both principals, the client and the service provider, are open to potential legal, security, quality of service, confidentiality and privacy compromises which influence the overarching trust relationship. There is resounding literature to illustrate advances that have been made to address the exposed challenges. However, a gap of misfortune remains where the software agent can act on its own accord exposing the contracting principals to internal and externally engineered threats thus tainting the trust relationship between these parties.

Item Type: Conference or Workshop Item (Paper)
Subjects: Computing > Information security > Cyber security
Computing > Information security
Computing
Depositing User: Ying Zhang
Date Deposited: 05 Jul 2018 21:35
Last Modified: 12 Aug 2018 02:45
URI: http://repository.uwl.ac.uk/id/eprint/5279

Downloads

Downloads per month over past year

Actions (login required)

View Item View Item

Menu