Article: The discussion of information security risk control in mobile banking Journal: International Journal of Mobile Communications (IJMC) 2024 Vol.24 No.4 pp.453 - 470 Abstract: The emergence of digital technology and the increasing prevalence of smartphones have promoted innovations in payment options available in finance and consumption markets. Banks providing mobile payment must ensure the information security. Inadequate security control leads to information leakage, which severely affects user rights and service providers' reputations. This study uses control objectives for Information and Related Technologies 4.1 as the mobile payment security control framework to examine the emergent field of mobile payment. A literature review is performed to compile studies on the safety risk, regulations, and operations of mobile payments. In addition, the Delphi questionnaire is distributed among experts to determine the practical perspectives, supplement research gaps in the literature, and revise the prototype framework. According to the experts' opinions, 59 control objectives from the four domains of COBIT 4.1 are selected. The plan and organise, acquire and implement, deliver and support, and monitor and evaluate four domains comprised 2, 5, 10, and 2 control objectives that had mean importance scores of > 4.50. Thus, these are considered the most important objectives by the experts, respectively. The results of this study can serve as a reference for banks to construct secure frameworks in mobile payment services. Inderscience Publishers - linking academia, business and industry through research

Title: The discussion of information security risk control in mobile banking

Authors: Shaio Yan Huang; An An Chiu; Ching-Wen Lin; Chi Chuan Liao

Addresses: National Chung Cheng University, No. 168, Sec. 1, University Rd., Minhsiung, Chiayi 621301, Taiwan ' Feng Chia University No. 100, Wenhwa Rd., Seatwen, Taichung 40724, Taiwan ' CTBC Graduate School of Financial Management, CTBC Financial Management College, No. 600, Sec. 3, Taijiang Blvd., Annan Dist., Tainan City, Taiwan ' National Chung Cheng University, No. 168, Sec. 1, University Rd., Minhsiung, Chiayi 621301, Taiwan

Abstract: The emergence of digital technology and the increasing prevalence of smartphones have promoted innovations in payment options available in finance and consumption markets. Banks providing mobile payment must ensure the information security. Inadequate security control leads to information leakage, which severely affects user rights and service providers' reputations. This study uses control objectives for Information and Related Technologies 4.1 as the mobile payment security control framework to examine the emergent field of mobile payment. A literature review is performed to compile studies on the safety risk, regulations, and operations of mobile payments. In addition, the Delphi questionnaire is distributed among experts to determine the practical perspectives, supplement research gaps in the literature, and revise the prototype framework. According to the experts' opinions, 59 control objectives from the four domains of COBIT 4.1 are selected. The plan and organise, acquire and implement, deliver and support, and monitor and evaluate four domains comprised 2, 5, 10, and 2 control objectives that had mean importance scores of > 4.50. Thus, these are considered the most important objectives by the experts, respectively. The results of this study can serve as a reference for banks to construct secure frameworks in mobile payment services.

Keywords: mobile payment; information security; information technology risk management.

DOI: 10.1504/IJMC.2024.141845

International Journal of Mobile Communications, 2024 Vol.24 No.4, pp.453 - 470

Received: 25 Apr 2022
Accepted: 18 Mar 2023
Published online: 02 Oct 2024 *

Full-text access for editors Full-text access for subscribers Purchase this article Comment on this article

Title: The discussion of information security risk control in mobile banking

Keep up-to-date