Securing Financial Applications from Inception: A Comprehensive Security Design Review

Mushad Aadil; Chris Ohanyan; Sabeen Tahir; Linda Mohaisen

doi:10.1007/978-981-97-3973-8_32

Securing Financial Applications from Inception: A Comprehensive Security Design Review

Mushad Aadil, Chris Ohanyan, Sabeen Tahir^*, Linda Mohaisen

^*Corresponding author for this work

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

Abstract

In today's ever-changing world of financial technology, safeguarding customer data is a top priority. This paper underscores the critical importance of a thorough security design review and offers a practical solution for integrating security measures right from the start of a project. It highlights the identification of key security objectives, a comprehensive vulnerability assessment, effective mitigation strategies, security-conscious API design and coding practices, data protection, user privacy considerations, and robust authentication and authorisation mechanisms. This paper serves as a practical guide for developers to craft cutting-edge financial applications that prioritise security, guaranteeing data integrity and earning customer confidence from the outset.

Original language	English
Title of host publication	AI Applications in Cyber Security and Communication Networks - Proceedings of 9th International Conference on Cyber Security, Privacy in Communication Networks ICCS 2023
Editors	Chaminda Hewage, Liqaa Nawaf, Nishtha Kesswani
Publisher	Springer Science and Business Media Deutschland GmbH
Pages	521-535
Number of pages	15
ISBN (Print)	9789819739721
DOIs	https://doi.org/10.1007/978-981-97-3973-8_32
Publication status	Published - 18 Sept 2024
Event	9th International Conference on Cyber Security, Privacy in Communication Networks, ICCS 2023 - Cardiff, United Kingdom Duration: 9 Dec 2023 → 10 Dec 2023

Publication series

Name	Lecture Notes in Networks and Systems
Volume	1032 LNNS
ISSN (Print)	2367-3370
ISSN (Electronic)	2367-3389

Conference

Conference	9th International Conference on Cyber Security, Privacy in Communication Networks, ICCS 2023
Country/Territory	United Kingdom
City	Cardiff
Period	9/12/23 → 10/12/23

Keywords

Financial applications
Security design review
Vulnerability assessment

Access to Document

10.1007/978-981-97-3973-8_32

Cite this

Aadil, M., Ohanyan, C., Tahir, S., & Mohaisen, L. (2024). Securing Financial Applications from Inception: A Comprehensive Security Design Review. In C. Hewage, L. Nawaf, & N. Kesswani (Eds.), AI Applications in Cyber Security and Communication Networks - Proceedings of 9th International Conference on Cyber Security, Privacy in Communication Networks ICCS 2023 (pp. 521-535). (Lecture Notes in Networks and Systems; Vol. 1032 LNNS). Springer Science and Business Media Deutschland GmbH. https://doi.org/10.1007/978-981-97-3973-8_32

Aadil, Mushad ; Ohanyan, Chris ; Tahir, Sabeen et al. / Securing Financial Applications from Inception : A Comprehensive Security Design Review. AI Applications in Cyber Security and Communication Networks - Proceedings of 9th International Conference on Cyber Security, Privacy in Communication Networks ICCS 2023. editor / Chaminda Hewage ; Liqaa Nawaf ; Nishtha Kesswani. Springer Science and Business Media Deutschland GmbH, 2024. pp. 521-535 (Lecture Notes in Networks and Systems).

@inproceedings{02400254843441629de189d572af77a4,

title = "Securing Financial Applications from Inception: A Comprehensive Security Design Review",

abstract = "In today's ever-changing world of financial technology, safeguarding customer data is a top priority. This paper underscores the critical importance of a thorough security design review and offers a practical solution for integrating security measures right from the start of a project. It highlights the identification of key security objectives, a comprehensive vulnerability assessment, effective mitigation strategies, security-conscious API design and coding practices, data protection, user privacy considerations, and robust authentication and authorisation mechanisms. This paper serves as a practical guide for developers to craft cutting-edge financial applications that prioritise security, guaranteeing data integrity and earning customer confidence from the outset.",

keywords = "Financial applications, Security design review, Vulnerability assessment",

author = "Mushad Aadil and Chris Ohanyan and Sabeen Tahir and Linda Mohaisen",

note = "Publisher Copyright: {\textcopyright} The Author(s), under exclusive license to Springer Nature Singapore Pte Ltd. 2024.; 9th International Conference on Cyber Security, Privacy in Communication Networks, ICCS 2023 ; Conference date: 09-12-2023 Through 10-12-2023",

year = "2024",

month = sep,

day = "18",

doi = "10.1007/978-981-97-3973-8_32",

language = "English",

isbn = "9789819739721",

series = "Lecture Notes in Networks and Systems",

publisher = "Springer Science and Business Media Deutschland GmbH",

pages = "521--535",

editor = "Chaminda Hewage and Liqaa Nawaf and Nishtha Kesswani",

booktitle = "AI Applications in Cyber Security and Communication Networks - Proceedings of 9th International Conference on Cyber Security, Privacy in Communication Networks ICCS 2023",

}

Aadil, M, Ohanyan, C, Tahir, S & Mohaisen, L 2024, Securing Financial Applications from Inception: A Comprehensive Security Design Review. in C Hewage, L Nawaf & N Kesswani (eds), AI Applications in Cyber Security and Communication Networks - Proceedings of 9th International Conference on Cyber Security, Privacy in Communication Networks ICCS 2023. Lecture Notes in Networks and Systems, vol. 1032 LNNS, Springer Science and Business Media Deutschland GmbH, pp. 521-535, 9th International Conference on Cyber Security, Privacy in Communication Networks, ICCS 2023, Cardiff, United Kingdom, 9/12/23. https://doi.org/10.1007/978-981-97-3973-8_32

Securing Financial Applications from Inception: A Comprehensive Security Design Review. / Aadil, Mushad; Ohanyan, Chris; Tahir, Sabeen et al.
AI Applications in Cyber Security and Communication Networks - Proceedings of 9th International Conference on Cyber Security, Privacy in Communication Networks ICCS 2023. ed. / Chaminda Hewage; Liqaa Nawaf; Nishtha Kesswani. Springer Science and Business Media Deutschland GmbH, 2024. p. 521-535 (Lecture Notes in Networks and Systems; Vol. 1032 LNNS).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - Securing Financial Applications from Inception

T2 - 9th International Conference on Cyber Security, Privacy in Communication Networks, ICCS 2023

AU - Aadil, Mushad

AU - Ohanyan, Chris

AU - Tahir, Sabeen

AU - Mohaisen, Linda

N1 - Publisher Copyright: © The Author(s), under exclusive license to Springer Nature Singapore Pte Ltd. 2024.

PY - 2024/9/18

Y1 - 2024/9/18

N2 - In today's ever-changing world of financial technology, safeguarding customer data is a top priority. This paper underscores the critical importance of a thorough security design review and offers a practical solution for integrating security measures right from the start of a project. It highlights the identification of key security objectives, a comprehensive vulnerability assessment, effective mitigation strategies, security-conscious API design and coding practices, data protection, user privacy considerations, and robust authentication and authorisation mechanisms. This paper serves as a practical guide for developers to craft cutting-edge financial applications that prioritise security, guaranteeing data integrity and earning customer confidence from the outset.

AB - In today's ever-changing world of financial technology, safeguarding customer data is a top priority. This paper underscores the critical importance of a thorough security design review and offers a practical solution for integrating security measures right from the start of a project. It highlights the identification of key security objectives, a comprehensive vulnerability assessment, effective mitigation strategies, security-conscious API design and coding practices, data protection, user privacy considerations, and robust authentication and authorisation mechanisms. This paper serves as a practical guide for developers to craft cutting-edge financial applications that prioritise security, guaranteeing data integrity and earning customer confidence from the outset.

KW - Financial applications

KW - Security design review

KW - Vulnerability assessment

UR - http://www.scopus.com/inward/record.url?scp=85205128497&partnerID=8YFLogxK

U2 - 10.1007/978-981-97-3973-8_32

DO - 10.1007/978-981-97-3973-8_32

M3 - Conference contribution

AN - SCOPUS:85205128497

SN - 9789819739721

T3 - Lecture Notes in Networks and Systems

SP - 521

EP - 535

BT - AI Applications in Cyber Security and Communication Networks - Proceedings of 9th International Conference on Cyber Security, Privacy in Communication Networks ICCS 2023

A2 - Hewage, Chaminda

A2 - Nawaf, Liqaa

A2 - Kesswani, Nishtha

PB - Springer Science and Business Media Deutschland GmbH

Y2 - 9 December 2023 through 10 December 2023

ER -

Aadil M, Ohanyan C, Tahir S, Mohaisen L. Securing Financial Applications from Inception: A Comprehensive Security Design Review. In Hewage C, Nawaf L, Kesswani N, editors, AI Applications in Cyber Security and Communication Networks - Proceedings of 9th International Conference on Cyber Security, Privacy in Communication Networks ICCS 2023. Springer Science and Business Media Deutschland GmbH. 2024. p. 521-535. (Lecture Notes in Networks and Systems). doi: 10.1007/978-981-97-3973-8_32

Securing Financial Applications from Inception: A Comprehensive Security Design Review

Abstract

Publication series

Conference

Keywords

Access to Document

Other files and links

Cite this