Search results

This study is aimed at assessing the information security management practice with a focus on banking card security in selected financial institutions in Ethiopia, using an international information security standard as a benchmark. It is to identify the gaps and recommend best security practices to help financial institutions meet the required security compliance.

Two financial sectors were purposively selected. A total of twenty-five respondents (IT executives and IT staff) were included in the study. Quantitative data was collected using the PCI-DSS (Payment Card Industry Data Security Standard) security standard questionnaire. In addition, observation and document analysis were made.

The result shows that most of the essential security management activities in the financial sectors do not comply with the international security standard. Similarly, the level of most of the indispensable security requirements that should be in place is found to be below the acceptable level. The study also revealed major security factors that prohibit the financial sectors from PCI-DSS security standard compliance.

This study assessed the information security management practice with a focus on banking card security and tried to figure out the limitations of security practices of the organizations surveyed based on the standard adopted. The topic has not been well explored especially in the Ethiopia context. Hence, the result can positively influence security policies, particularly in the banking sector.

The data protection is always a vital problem in the network era. High-speed cryptographic chip is an important part to ensure data security in information interaction. This paper aims to provide a new peripheral component interconnect express (PCIe) encryption card solution with high performance, high integration and low cost.

This work proposes a System on Chip architecture scheme of high-speed cryptographic chip for PCIe encryption card. It integrated CPU, direct memory access, the national and international cipher algorithm (data encryption standard/3 data encryption standard, Rivest–Shamir–Adleman, HASH, SM1, SM2, SM3, SM4, SM7), PCIe and other communication interfaces with advanced extensible interface-advanced high-performance bus three-level bus architecture.

This paper presents a high-speed cryptographic chip that integrates several high-speed parallel processing algorithm units. The test results of post-silicon sample shows that the high-speed cryptographic chip can achieve Gbps-level speed. That means only one single chip can fully meet the requirements of cryptographic operation performance for most cryptographic applications.

The typical application in this work is PCIe encryption card. Besides server’s applications, it can also be applied in terminal products such as high-definition video encryption, security gateway, secure routing, cloud terminal devices and industrial real-time monitoring system, which require high performance on data encryption.

It can be well applied on many other fields such as power, banking, insurance, transportation and e-commerce.

Compared with the current strategy of high-speed encryption card, which mostly uses hardware field-programmable gate arrays or several low-speed algorithm chips through parallel processing in one printed circuit board, this work has provided a new PCIe encryption card solution with high performance, high integration and low cost only in one chip.

Crimes are committed for personal reasons or for profit. In any crime for a profit scenario the state has an interest in removing the profit from the criminal. Drug offences, other than simple possession, are the paradigm. People use drugs for a variety of reasons but, at least in the illicit drug trade, individuals sell drugs in order to make money. Traditionally, this was a cash‐based enterprise and, frequently, a misplaced investigative opportunity. A state can attack the criminal profit in order to attack the enterprise. When an illicit criminal activity is undertaken for cash prosecutors and investigators must look at this as an opportunity.

Observes the extensive legal implications in conducting business on the Internet and looks also at the pitfalls which are involved. Gives a clear run‐down on the dos and don’ts and rights and wrongs and gives clear advice for both business and personal transactions.

TOLIMAC is a research project funded by the Telematics for Libraries Programme of the EU and is developing a system to provide controlled access to, and management of, networked information resources and other services in a library environment. The system is based on smart cards and encryption technology integrating management functionalities ‐such as user identification, remote access control, electronic payment‐, and security requirements ‐such as secure information transfer and financial transactions, document integrity. The system also enables libraries to adjust user access rights, and charges for available electronic resources, whether local or remote, according to user categories. The system is based on standards. It has a Web interface. The pilot system will provide users from three university libraries with access to an electronic document delivery service based at INIST (France), including search, order and delivery of journal articles, as well as payment facilities by means of the electronic purse on the user's smart card.

This paper examines the security risks associated with conducting commercial transactions through the use of electronic technologies such as the Internet. It will not deal with the many other problems which arise out of online commerce such as those relating to misleading and deceptive practices which create particular concerns for consumer protection agencies. Instead, it focuses on the ways in which the various electronic payment systems may be abused for fraudulent purposes.

There is a hierarchically related set of fundamental security technologies that have been used (sometimes without need for the hierarchy) in the late 1970s and 80s to protect information. The critical assumptions which provided the rationale for protection of information in those times are now challenged by the networked information resource environment of the 1990s. The weakest link in most information security systems is the reliance upon inappropriate methods of identifying and authenticating authorized users to the exclusion of all others. Proposes token based, two‐factor identity authenticator as a solution which reconciles the security hierarchy with the typical 1990s distributed information environment.

This article is concerned with a specific market niche composed of very small, and small enterprises (SE) providing access to satellite television channels directly to an individual’s home (DTH). It focuses on the role within that niche of a specific segment providing products which are generally termed “pirate” by governments, companies and the public. In this context, it examines the nature, and consequences, of information and influence asymmetry between SEs and large broadcasting companies, especially as it relates to the national and European policy process. Finally, it considers whether other small enterprises can learn from the experience of the satellite television sector.

The problems peculiar to use of microcomputers operating in MS‐DOS are outlined. These include outside threats as well as inherent flaws in the system. Protective measures are discussed in relation to typical threats, and basic methods for making microcomputers secure are described.

The purpose of this paper is to present a systematic approach to classify financial crime into main categories as well as sub categories.

Based on a literature review, the main four categories were labeled corruption, fraud, theft, and manipulation, respectively.

There is a massive variety of crime types and crime names in the literature that can successfully be allocated to main categories of financial crime.

The paper is based on exploratory research to stimulate future research in refining and improving the categories suggested here.

The great variety of criminal activities is classified in this paper so that practitioners can organize their thinking around crime themes rather than crime examples when mapping crime.

The public and society at large will be able to understand the confusing variety of financial crime in terms of main categories.

There has been some confusion among both researchers and practitioners when communicating about examples of financial crime. The organizing framework in this paper will help allocate crime examples to main categories of financial crime.