Use this URL to cite or link to this record in EThOS: https://ethos.bl.uk/OrderDetails.do?uin=uk.bl.ethos.748871
Title: A conceptual framework for evaluating the security of household bank customers in the Kingdom of Saudi Arabia
Author: Alghamdi, Deena
ISNI:       0000 0004 7232 5883
Awarding Body: University of Oxford
Current Institution: University of Oxford
Date of Award: 2017
Availability of Full Text:
Access from EThOS:
Full text unavailable from EThOS. Please try the link below.
Access from Institution:
Abstract:
This work evaluates the security of household banking in the Kingdom of Saudi Arabia by investigating the fit between the Saudi banking system and the practices of its household customers. A framework is developed to evaluate both technical and human factors, to help build a secure and effective banking system. Three building blocks contribute to the framework: the household context of use of bank systems in Saudi Arabia, banking technologies and processes, and Saudi banking policies and infrastructure. A qualitative study of the household context of use employs grounded theory to identify the banking practices of household customers and the factors influencing them. Data were collected in two phases: from 47 household customers, using telephone interviews, focus groups and the diary/interview method, then from 23 Saudi bankers interviewed by telephone. Each method was adjusted to accommodate the unique settings of the research context, such as being a Saudi female researcher collecting data from participants of both genders, the sensitivity of the topic and the intimate nature of the household context. This research contributes as a practical guide by describing each method used in detail, serving to inform and guide future work in a similar context. The second block in the framework is the security analysis of the banking technologies and processes used by participating household customers: online banking, telephone banking and bank cards. The two analytical approaches are STRIDE, which aims to identify objectives and vulnerabilities in bank technologies regarding specific security threats, and DREAD, which is used to quantify the risk from such threats. The third block is the Saudi banking policies and infrastructure that guide the use of the technologies issued by the Saudi Arabian Monetary Agency (SAMA) the leading authority to the Saudi banking sector, involving a deep analysis of the official policies and regulations related to the household context of use of bank technologies. The framework is applied to evaluate the security of household banking in two case studies: the use of new technologies such as mobile banking and the use of fingerprints as a new security mechanism in the authentication process of bank cards.
Supervisor: Flechais, Ivan ; Jirotka, Marina Sponsor: Government of Saudi Arabia
Qualification Name: Thesis (Ph.D.) Qualification Level: Doctoral
EThOS ID: uk.bl.ethos.748871  DOI: Not available
Keywords: Kingdom of Saudi Arabia ; Bank system ; HCI ; Security
Share: