Construction Methodology of Information Security System of Banking Information in Automated Banking Systems

Abstract: The monograph presents modern methodology of building information security systems of banking information systems. The methodology is based on a new concept of building a threat model, constructed on synergistic principles. As a result, for the first time a three-tier security model of strategic management of banking information technologies has being built for the automated banking system. This system takes into account threats of cybersecurity, information security and threats for the security of banking inf… Show more

“…The next step, he must enter the OTP token (OTP -One-time Password Algorithm), usually sent by SMS to his mobile device. OTP will be available only to those who are supposed in theory, introduced the available third-party password [23]. Methods strict (two-factor) authentication is often used in the financial sector, but in principle can be applied in almost any other field.…”

“…1. Given in [23] multifactor authentication methods analysis showed the following major advantages and disadvantages: -The advantages of the methods based on SMS -you notifications OTP generation-codes at each entrance and transfer to additional channels, intercept login and password on the main channel will not lead to the attacker bank client information. Binding OTPpassword to the phone numbers.…”

“…-Bar-Passwindow system codes provide unique static image sequence of characters generated dynamically authentication server without encryption algorithms.Anyinterference pattern or fake bar-code is passively presented to the user in the form of combinations appearance in a pattern that does not meet expectations. A major drawback is the possibility of a unique selection bar-code card proposed in [23].…”

“…The analysis of threats [23][24][25][26][27][28][29] indicates a significant transformation and their hybridity. From a purely threats IS, CB, SI infrastructure ABS, displays signs of hybridity threat began to occur as a result of simultaneous action on the object of protection -SI in ABS by the emergence of the phenomenon of synergism [24].…”

“…Threats to the security of the network ABS can be divided into network attacks (information coming from the remote agent) and local attacks originating from malware already installed on the client system, such as Trojans, rootkits, and so on. Often authentication security assessment focused primarily on network attacks suggesting that the terminal (ie, desktop computer, laptop or mobile device) is protected platform [23]. However, often the attacker has full access to the victim's computer through the hidden processes of communication that remained from malware using uncorrected security holes licensed software.…”

Mathematical Models of Hybrid Crypto Code Constructions on Damaged Codes

“…The next step, he must enter the OTP token (OTP -One-time Password Algorithm), usually sent by SMS to his mobile device. OTP will be available only to those who are supposed in theory, introduced the available third-party password [23]. Methods strict (two-factor) authentication is often used in the financial sector, but in principle can be applied in almost any other field.…”

“…1. Given in [23] multifactor authentication methods analysis showed the following major advantages and disadvantages: -The advantages of the methods based on SMS -you notifications OTP generation-codes at each entrance and transfer to additional channels, intercept login and password on the main channel will not lead to the attacker bank client information. Binding OTPpassword to the phone numbers.…”

“…-Bar-Passwindow system codes provide unique static image sequence of characters generated dynamically authentication server without encryption algorithms.Anyinterference pattern or fake bar-code is passively presented to the user in the form of combinations appearance in a pattern that does not meet expectations. A major drawback is the possibility of a unique selection bar-code card proposed in [23].…”

“…The analysis of threats [23][24][25][26][27][28][29] indicates a significant transformation and their hybridity. From a purely threats IS, CB, SI infrastructure ABS, displays signs of hybridity threat began to occur as a result of simultaneous action on the object of protection -SI in ABS by the emergence of the phenomenon of synergism [24].…”

“…Threats to the security of the network ABS can be divided into network attacks (information coming from the remote agent) and local attacks originating from malware already installed on the client system, such as Trojans, rootkits, and so on. Often authentication security assessment focused primarily on network attacks suggesting that the terminal (ie, desktop computer, laptop or mobile device) is protected platform [23]. However, often the attacker has full access to the victim's computer through the hidden processes of communication that remained from malware using uncorrected security holes licensed software.…”

Mathematical Models of Hybrid Crypto Code Constructions on Damaged Codes

Evaluation of Information Security of Industrial Automation Systems Using Fuzzy Algorithms and Predicates

Development of a methodology for building an information security system in the corporate research and education system in the context of university autonomy