• Journal of Information Technology and Architecture
• /
• v.10 no.4
• /
• pp.497-508
• /
• 2013

This article examines the organizational aspect of IT governance in Financial Services Informatization, which is one of the key informatizations led by the Korea government. Financial Services Informatization has deeply contributed to the development of electronic financial services in Korea and affected people's everyday life. Using qualitative data obtained through multiple-case analysis, this study identifies the barriers to effective IT governance within the context of Financial Services Informatization. It also reveals that the scope and role of participants and the coordination between authorities are the critical to IT governance adoption in Financial Services Informatization. The key to the successful IT governance of Financial Services Informatization will depend on the involvement and accountability of relevant regulatory bodies and the secondary financial institutions affected by it.

• The Journal of Society for e-Business Studies
• /
• v.24 no.4
• /
• pp.79-107
• /
• 2019

Traditionally banks and other financial institutions use customers' accounts and information managed by them and provide payment services in dominant positions. Recently, EU amends Payment Services Directive to institutionally guarantee access to customers' accounts and use of account-related information even to third parties, which facilitates competition in financial markets and promotes innovation. However, this kind of change can increase potential security risks and therefore institutional responses from financial authorities are required so that all participants in financial markets can properly respond to security risks. In this study institutional responses to the security risks in the EU's new Payment Services Directive (PSD2) are analyzed, comparisons between this and domestic electronic financial regulations are analyzed, and implications for the direction of improving domestic electronic financial regulations will be suggested.

• International Journal of Computer Science & Network Security
• /
• v.22 no.10
• /
• pp.389-399
• /
• 2022

This study aims to investigate and analyze the impact of the COVID-19 pandemic on the adopt electronic services in education sector in Jordan, where the COVID-19 pandemic has left huge threats in terms of health and led to a significant decrease in economic output and a rise in unemployment. This study also aims to know the steps taken by the Jordanian governments and higher education ministry and universities to overcome this crisis and mitigate the economic and financial impacts that would enhance the resilience of the education sector. To achieve the goal of the study, both methods of deductive and inductive analysis were used, which helped us to systematically consider the economic and other consequences of the COVID-19 pandemic, such as statistical analyses and other tools that helped us in this study. The results of this study, showed that the COVID-19 pandemic led to a significant increase in adopt electronic services in education sector in Jordan, and decline in economic growth, a significant rise in unemployment, an increase in market instability, and a decrease in the financial position of companies. The recommendations concluded that Jordan should begin to change its policies according to the new data, and take Measures to advance the education sector by relay on electronic services and directing investment in education sector through saving policies and infrastructure equipment in parallel with the population boom in Jordan.

• Convergence Security Journal
• /
• v.7 no.2
• /
• pp.65-71
• /
• 2007

Recently, security softwares are the program that is to protect the users from hackers in using electronic financial services. However heackers commit financial crimes to extort asserts using known hacking skills. In our paper, we analyse vulnerability that can be used to hook financial information in user application area and explain end-to-end encryption which is able to be provided by interacting keyboard security program and PKI application program.

• The Journal of Society for e-Business Studies
• /
• v.19 no.4
• /
• pp.119-134
• /
• 2014

Financial companies are providing electronic financial transactions through a variety of user terminals for non-face-to-face services such as Internet banking, smart phone banking, or etc. However, in these services users' security awareness and the limitations of technical responses has frequently caused the financial loss so that fundamental protection measures are required from financial authorities. Accordingly, financial industry is planning and establishing systems that block unusual financial transactions by comprehensively analyzing and detecting user's electronic information, access information, transaction information, and so on in accordance with "Guide for building Unusual financial transactions detection system" to prevent the financial loss that happens in electronic financial transactions. In this paper, we analyze case studies of unusual financial transactions detection and prevention system that is built and operated in financial companies and current operating status and propose effects of the accident prevention and security measures later.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.28 no.3
• /
• pp.729-741
• /
• 2018

On June 24, 2015, the Financial Services Commission (Financial Services Commission) completely abolished the security review process, and said that it would substitute self-security review obligations with self-security reviews. Security officials at financial institutions conduct security reviews based on CIA security grade when they conduct security reviews for secure electronic financial transactions. However, the recent security review for Internet and mobile electronic financial transactions has carried out a security review, either by checking separate processes or by referring to new technologies and data related to security. This paper proposes the CIAAP security gradesl with the addition of certification and privacy protection indicators to the CIA based security grades, especially through the security review of electronic financial transactions.

• The Journal of Information Technology
• /
• v.1 no.1
• /
• pp.103-117
• /
• 1998

Virtually all interested parties in academia, governments, and financial services are exploring various types of payment services and the issues surrounding electronic payment systems and digital currency Some proposed electronic payment systems are simply electronic versions of existing payment systems, such as checks and credit cards, whereas others are based on digital currency technology and have the potential for difinitive impact on today's financial and monetary systems. The purpose of this study is to discuss the situation of development occuring in the process of electronic money in the age of electronic commerce.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.24 no.6
• /
• pp.1243-1261
• /
• 2014

With the methods of electronic financial frauds becoming advanced, economic losses have greatly increased. The Electronic Financial Fraud Prevention Service(hereafter EFFPS) has taken effect to prevent electronic financial frauds, but economic losses still occurring. This paper aimed to suggest a direction for improvement of the EFFPS, through the analysis of electronic financial fraud cases. As a result of analysis on the fraud cases before and after implementation of the EFFPS, 'Fraud using Smartphone App' and 'Fraud using Calls and SMS' were increased after implementation of the EFFPS, and also the damage cost of 'Fraud using Smartphone App' had increased. Also we revealed some limitations of the EFFPS. For complementing this limitations, authors considered direction for improvement of the EFFPS focus on application of current services/systems related prevention of electronic financial fraud and considered the ways that are make connection with several measurements related prevention currently being discussed and implemented in perspective of defense in depth.

• The Journal of Information Systems
• /
• v.15 no.4
• /
• pp.247-268
• /
• 2006

We introduce about XBRL, eXtensible Business Reporting Language, which is widely accepted as the international standard language for business financial reporting. XBRL is a language for the electronic communication of business and financial data which is revolutionizing business reporting around the world. It provides major benefits in the preparation, analysis and communication of business information. It offers cost savings, greater efficiency and improved accuracy and reliability to all those involved in supplying or using financial data. XBRL is a kind of XML application based on the open Internet technologies. We propose a framework for enterprise information supply chain using XBRL Web services. A Web service is defined as a software system based on XML and designed to support interoperable machine-to-machine interaction over a network by the W3C. Web services are frequently just application programming interfaces (API) that can be accessed over a network, such as the internet and executed on a remote system hosting the requested services. An XBRL Web service-based enterprise information supply chain enables for companies to implement seamless information supply chains from businesses to financial institutions, to supervisory authorities, and to other stake holders for real time information access. And thereby it is expected to contribute to the increase in the value of companies due to the enhanced visibility and transparency of accounting and management.

• Convergence Security Journal
• /
• v.7 no.3
• /
• pp.101-107
• /
• 2007

In recent years, electronic financial services, such as internet banking, come into wide use since the personal computer and network technology have made reasonably good progress. The growth of electronic financial service contributes to promoting the business efficiency of financial institution and promoting the convenience of financial customer, while the security on electronic financial service is getting more important because it is not face-to-face financial service. Therefore, the financial sector had decided to introduce the OTP (One Time Password) in order to authenticate the identification of customer and has built the Integrated OTP Authentication Center for a customer being able to use only one OTP token in electronic financial transaction with several financial institution. In this paper, we introduce the business of Integrated OTP Authentication Center and present the security analysis on integrated OPT authentication service, which is the main function of Integrated OTP Authentication Center.