An Integrative Method of FTA and FMEA for Software Security Analysis of a Smart Phone

Abstract: Recently software security of the smart phone is an important issue in the field of information science and technology due to fast propagation of smart technology in our life. The smart phone as the security critical systems which are utilizing in terminal systems of the banking, ubiquitous home management, airline passengers screening, and so on are related to the risk of costs, risk of loss, risk of availability, and risk by usage. For the security issues, software hazard analysis of smart phone is the key a… Show more

“…User Authentication is a procedure that makes sure whether user who is permitted access is or not, this procedure is progressing with 3 steps as below. The way of ID/Password is commercialized normally, but nowadays the ways of accredited certificate, security card, OTP and biometrics are mostly used [3,11,[16][17][18]. Table 4 depicts the information security control and governance according to security vulnerability and hazard factors under fault mechanism in user authentication phase.…”

“…Next, access control in middleware operates in database. Lastly, access control in hardware operates physical access control [3,11,19].…”

“…Vulnerabilities of information security in hardware systems occur at hardware platform, hardware operation and hardware maintenance steps as shown in Table 6. We say that as the role of mobile device is important, information security technologyand policy become inevitable on mobilebanking services [3,[11][12].…”

“…Operating system has the simplest interface between user and device while many steps are progressing through process management, memory management, device management, and storage management as shown in Table 7. Security vulnerabilities on operating system can occur at three types as below [11][12]20].…”

A Study on the Information Security Control and Management Process in Mobile Banking Systems

“…User Authentication is a procedure that makes sure whether user who is permitted access is or not, this procedure is progressing with 3 steps as below. The way of ID/Password is commercialized normally, but nowadays the ways of accredited certificate, security card, OTP and biometrics are mostly used [3,11,[16][17][18]. Table 4 depicts the information security control and governance according to security vulnerability and hazard factors under fault mechanism in user authentication phase.…”

“…Next, access control in middleware operates in database. Lastly, access control in hardware operates physical access control [3,11,19].…”

“…Vulnerabilities of information security in hardware systems occur at hardware platform, hardware operation and hardware maintenance steps as shown in Table 6. We say that as the role of mobile device is important, information security technologyand policy become inevitable on mobilebanking services [3,[11][12].…”

“…Operating system has the simplest interface between user and device while many steps are progressing through process management, memory management, device management, and storage management as shown in Table 7. Security vulnerabilities on operating system can occur at three types as below [11][12]20].…”

A Study on the Information Security Control and Management Process in Mobile Banking Systems

“…Smartphones that we know as a powerful tool for computing today could be used for ubiquitous learning system at anyplace anywhere, The security of the Smartphone is the important issues in the field of informatics technology due to fast propagation of smart technology of our life [2]. The performance of smartphone applications is usually constrained in user interactions due to resource limitation, and it promises great opportunities to improve the performance by exploring the smartphone built-in and embedded sensing techniques.…”

Ubiquitous computing: a learning system solution in the era of industry 4.0

FTA-FMEA-based validity verification techniques for safety standards