Return to search

A conceptual framework for evaluating the security of household bank customers in the Kingdom of Saudi Arabia

This work evaluates the security of household banking in the Kingdom of Saudi Arabia by investigating the fit between the Saudi banking system and the practices of its household customers. A framework is developed to evaluate both technical and human factors, to help build a secure and effective banking system. Three building blocks contribute to the framework: the household context of use of bank systems in Saudi Arabia, banking technologies and processes, and Saudi banking policies and infrastructure. A qualitative study of the household context of use employs grounded theory to identify the banking practices of household customers and the factors influencing them. Data were collected in two phases: from 47 household customers, using telephone interviews, focus groups and the diary/interview method, then from 23 Saudi bankers interviewed by telephone. Each method was adjusted to accommodate the unique settings of the research context, such as being a Saudi female researcher collecting data from participants of both genders, the sensitivity of the topic and the intimate nature of the household context. This research contributes as a practical guide by describing each method used in detail, serving to inform and guide future work in a similar context. The second block in the framework is the security analysis of the banking technologies and processes used by participating household customers: online banking, telephone banking and bank cards. The two analytical approaches are STRIDE, which aims to identify objectives and vulnerabilities in bank technologies regarding specific security threats, and DREAD, which is used to quantify the risk from such threats. The third block is the Saudi banking policies and infrastructure that guide the use of the technologies issued by the Saudi Arabian Monetary Agency (SAMA) the leading authority to the Saudi banking sector, involving a deep analysis of the official policies and regulations related to the household context of use of bank technologies. The framework is applied to evaluate the security of household banking in two case studies: the use of new technologies such as mobile banking and the use of fingerprints as a new security mechanism in the authentication process of bank cards.

Identiferoai:union.ndltd.org:bl.uk/oai:ethos.bl.uk:748871
Date January 2017
CreatorsAlghamdi, Deena
ContributorsFlechais, Ivan ; Jirotka, Marina
PublisherUniversity of Oxford
Source SetsEthos UK
Detected LanguageEnglish
TypeElectronic Thesis or Dissertation
Sourcehttp://ora.ox.ac.uk/objects/uuid:c64b7f3e-f6cb-447d-a3a5-f46b71484e67

Page generated in 0.0018 seconds