Top

Published in:

2022 | OriginalPaper | Chapter

An Investigation into How Smartphones Can Be Secured Against MiTM Attacks: Financial Sector

Authors : David Steiner-Otoo, Hamid Jahankhani

Published in: Blockchain and Other Emerging Technologies for Digital Business Strategies

Publisher: Springer International Publishing

Activate our intelligent search to find suitable subject content or patents.

search-config

AI-assisted search

Off

Abstract

MiTM attack aims to violate data in transmission through the air medium in a wireless network; MITM exploits compromise data confidentiality and integrity and are conceivably the most productive types of cyberattacks utilised today. The increasing use of personal devices like smartphones connecting to the internet via Wi-Fi has made wireless attacks on users more crucial. The cyber adversary becomes a “middleman” between two targets to intercept private communication, decrypt traffic, and exploit valuable information like bank details and credit cards. The new WPA3 protocol security features such as 256-bit encryption, OWE (Opportunistic Wireless Encryption), Simultaneous Authentication of Equals (SAE), and disallowing outdated legacy protocols provides risk mitigation against attacks. However, vulnerabilities in WPA3 have been reported whereby a device can be downgraded from WPA3 to WPA2, which opens the system up for DoS and MiTM attacks. This research investigates Wi-Fi-based exploits against the ecosystem of smartphones in the financial sector. Aircrack-ng and Ettercap are open-source tools accessible through the Kali Linux framework. These tools are utilised to demonstrate simulated DoS and MiTM attacks to explain the reported WPA3 vulnerabilities.

Dont have a licence yet? Then find out more about our products and how to get one now:

Springer Professional "Wirtschaft+Technik"

Online-Abonnement

Mit Springer Professional "Wirtschaft+Technik" erhalten Sie Zugriff auf:

über 102.000 Bücher
über 537 Zeitschriften

aus folgenden Fachgebieten:

Automobil + Motoren
Bauwesen + Immobilien
Business IT + Informatik
Elektrotechnik + Elektronik
Energie + Nachhaltigkeit
Finance + Banking
Management + Führung
Marketing + Vertrieb
Maschinenbau + Werkstoffe
Versicherung + Risiko

Jetzt Wissensvorsprung sichern!

inform now

Springer Professional "Technik"

Online-Abonnement

Mit Springer Professional "Technik" erhalten Sie Zugriff auf:

über 67.000 Bücher
über 390 Zeitschriften

aus folgenden Fachgebieten:

Automobil + Motoren
Bauwesen + Immobilien
Business IT + Informatik
Elektrotechnik + Elektronik
Energie + Nachhaltigkeit
Maschinenbau + Werkstoffe

Jetzt Wissensvorsprung sichern!

inform now

Springer Professional "Wirtschaft"

Online-Abonnement

Mit Springer Professional "Wirtschaft" erhalten Sie Zugriff auf:

über 67.000 Bücher
über 340 Zeitschriften

aus folgenden Fachgebieten:

Bauwesen + Immobilien
Business IT + Informatik
Finance + Banking
Management + Führung
Marketing + Vertrieb
Versicherung + Risiko

Jetzt Wissensvorsprung sichern!

inform now

previous chapter Emerging Technologies: Blockchain and Smart Contracts

next chapter Digital Transformation, Leadership, and Markets

Cyber-dependent crime is an offence, “that can only be committed using a computer, computer networks or other form of information communications technology (ICT)”. Cyber-enabled crimes are, “traditional crimes, which can be increased in their scale or reach by use of computers, computer networks or other forms of information communications technology (ICT)” (McGuire and Dowling 2013).

Khorov E, Levitsky I, Akyildiz IF (2020) Current status and directions of IEE 802.11be, the future Wi-Fi 7. Available online at: https://ieeexplore.ieee.org/document/9090146. [Accessed on: 31st Dec 2021]

Chauhan S, Sharma A, Pandey S, Rao KN, Kumar P (2021) IEEE 802.11be: A review on Wi-Fi use case. Available online at: https://ieeexplore.ieee.org/document/9596344. [Accessed on: 29th Nov 2021]

Artech House (2021) ‘Wi-Fi 6 protocol ad network’—New book release by Artech House. Available online at: https://artechhouse.prowly.com/152110-wi-fi-6-protocol-and-network-new-book-release-by-artech-house. [Accessed on: 22nd Nov 2021]

Internet Society (2020) Fact sheet: machine-in-the-middle attacks. Available online at: https://www.internetsociety.org/resources/doc/2020/fact-sheet-machine-in-the-middle-attacks/. [Accessed on: 8th Sept 2021]

Conrad E, Misenar S, Feldman J (2014) Chapter 7—Domain 7: operations security. Available online at: https://www.sciencedirect.com/topics/computer-science/session-hijacking. [Accessed on: 8th Sept 2021]

Australian Cyber Security Centre (2020) Person-in-the-middle. Available online at: https://www.cyber.gov.au/acsc/view-all-content/glossary/person-middle. [Accessed on: 8th Sept 2021]

Choi H, Kwon H, Hur J (2015) A secure OTP algorithm using smartphone application. Available online at: https://ieeexplore.ieee.org/document/7182589. [Accessed on: 29th Sept 2021]

Ahmad DRM, Dubrawsky I, Flynn H et al (2002) Session hijacking. Hack proofing your network. Available online at: https://www.sciencedirect.com/topics/computer-science/man-in-the-middle-attack. [Accessed on: 8th Oct 2021]

Hilliard AG (2010) Kemet (egypt) historical revision: Implications for cross-cultural evaluation and research in education. Available online at: https://reader.elsevier.com/reader/sd/pii/S0886163389800480?token=ED42893A8B31F4062E6F49A8387994C9AB328CF74C1C52373D896730257ABFE3F7F5F110A4CCA47BD8DAF27324BC7638&originRegion=eu-west-1&originCreation=20211024102646. [Accessed on: 24th Oct 2021]

10.

Labate V (2016) Banking in the Roman World. Available online at: https://www.worldhistory.org/article/974/banking-in-the-roman-world/. [Accessed on: 24th Oct 2021]

11.

Henry JF (2002) The social origins of money: The case of Egypt. Available online at: https://www.csus.edu/indiv/h/henryjf/PDFS/Egypt.PDF [Accessed on: 24th Oct 2021]

12.

Thakor A (2020) Fintech and banking: What do we know? Available online at: https://reader.elsevier.com/reader/sd/pii/S104295731930049X?token=29DD3820FA5696C91B4F5B624E2E6B76CA0311E57B9A71EBF3E38ECC25A6A4078DBBDDAB48B0406850FAE3885608D1E1&originRegion=eu-west-1&originCreation=20211024123857 [Accessed on: 24th Oct 2021]

13.

Frame WS, Wall LD, White LJ (2018) Technological change and financial innovations in banking: Some implications for banking. Available online at: https://poseidon01.ssrn.com/delivery.php?ID=936024072000088007124097104085070011037045010029091017099126060018014112005116119102042034085030032003037019022011074028116005112067029071017063124066081006109073068084031076125092004076110106120080012097016104068074003020&EXT=pdf&INDEX=TRUE. [Accessed on: 25th Oct 2021]

14.

Bhushan B, Sahoo G, Rai AK (2018) Man-in-the-middle attack in wireless and computer networking—a review. Available online at: https://ieeexplore.ieee.org/document/8344724. [Accessed on: 25th Oct 2021]

15.

Malik A, Ahsan AShahadat MMZ, Tsou JC (2019) Understanding man-in-the-middle through a survey of the literature. Available online at: https://www.google.co.uk/url?sa=t&rct=j&q=&esrc=s&source=web&cd=&cad=rja&uact=8&ved=2ahUKEwiljOzTzdb0AhWNGewKHTdaA28QFnoECAIQAQ&url=https%3A%2F%2Fpdfs.semanticscholar.org%2Fc2c7%2F182b3fce4003e4dff71c0ed85e0a34aaf830.pdf&usg=AOvVaw0rUR5MgqsKmLdBetYaI182. [Accessed on: 9th Dec 2021]

16.

Oriyano S-P, Shimonski R (2012) Mobile Attacks. Available online at: https://www.sciencedirect.com/topics/computer-science/man-in-the-middle-attack. [Accessed on: 25th Oct 2021]

17.

Su Z, Wang H, Wang H, Shi X (2021) A financial data security sharing solution based on blockchain technology and proxy re-encryption technology. Available online at: https://ieeexplore.ieee.org/document/9332363. [Accessed on 25th Oct 2021]

18.

ICO (2018) Guide to the general data protection regulation (GDPR). Available online at: https://ico.org.uk/media/for-organisations/guide-to-the-general-data-protection-regulation-gdpr-1-0.pdf. [Accessed on: 26th Oct 2021]

19.

Gov.uk (2018) Data Protection Act 2018. Available online at: https://www.legislation.gov.uk/ukpga/2018/12/contents/enacted. [Accessed on: 20th Oct 2021]

20.

FCA (2018) Effective global regulation in capital markets. Available online at: https://www.fca.org.uk/news/speeches/effective-global-regulation-capital-markets. [Accessed on: 24th Oct 2021]

21.

Carnegie (2021) Timeline of cyber incidents involving financial institutions. Available online at: https://carnegieendowment.org/specialprojects/protectingfinancialstability/timeline [Accessed on 24th Oct 2021]

22.

Zheng X, Pan L, Yilmaz E (2017) Security analysis of modern mission-critical android mobile applications. Available online at: https://www.researchgate.net/publication/312428641_Security_analysis_of_modern_mission_critical_android_mobile_applications. [Accessed on 23rd Mar 2021]

23.

Ciscomag (2020) Half of mobile banking apps are vulnerable to fraud data theft. Available online at: https://cisomag.eccouncil.org/flaws-in-mobile-banking-apps/. [Accessed on: 19th Sept 2020]

24.

Coker J (2020) Widespread security vulnerabilities in mobile banking apps. Available online at: https://www.infosecurity-magazine.com/news/security-vulnerabilities-mobile/. [Accessed on: 30th Mar 2021]

25.

IBM (2021) IBM X-Force threat intelligence index. Available online at: https://www.ibm.com/security/data-breach/threat-intelligence. [Accessed on: 13th Sept 2021]

26.

Kaspersky (2020) Top 7 mobile security threats in 2020. Available online at: https://usa.kaspersky.com/resource-center/threats/top-seven-mobile-security-threats-smart-phones-tablets-and-mobile-internet-devices-what-the-future-has-in-store. [Accessed on: 15th Mar 2020]

27.

Kaspersky (2021) Kaspersky threat intelligence. Available online at: https://www.kaspersky.com/enterprise-security/threat-intelligence. [Accessed on: 16th Mar 2021]

28.

Insights.com (2021) Insights external threat protection (ETP) suite. Available online at: https://intsights.com/products. [16th Mar 2021]

29.

OWASP (2016) OWASP mobile top 10. Available online at: https://owasp.org/www-project-mobile-top-10/. [Accessed on: 7th Dec 2021]

30.

Garg S, Baliyan N (2021) Comparative analysis of Android and iOS from security viewpoint. Available online at: https://www.sciencedirect.com/science/article/abs/pii/S1574013721000125. [Accessed on: 13th Mar 2021]

31.

CVEDetails (2021) The ultimate security vulnerability data source. Available online at: https://www.cvedetails.com [14th Mar 2021]

32.

WHO.int (2021) Naming the coronavirus disease (COVID-19) and the virus that causes it. Available online at: https://www.who.int/emergencies/diseases/novel-coronavirus-2019/technical-guidance/naming-the-coronavirus-disease-(covid-2019)-and-the-virus-that-causes-it#:~:text=Official%20names%20have%20been%20announced,%2DCoV%2D2). [Accessed on: 3rd Nov 2021]

33.

Lallie HS, Shepherd LA, Nurse JRC, Erola A, Epiphaniou G, Maple C, Bellekens X (2021) Cyber security in the age of COVID-19: A timeline and analysis of cyber-crime and cyber-attacks during the pandemic. Available online at: https://www.sciencedirect.com/science/article/pii/S0167404821000729. [Accessed on: 12th Oct 2021]

34.

Sharma R, Sharma N, Mangla M (2021) An analysis and investigation of infostealers attacks during COVID’19: A case study. Available online at: https://ieeexplore.ieee.org/document/9478163. [Accessed on: 16th Oct 2021]

35.

WHO (2021) Coronavirus disease (COVID-19) update. Available online at: https://www.who.int/bangladesh/emergencies/coronavirus-disease-(covid-19)-update#:~:text=On%20this%20website%20you%20can,on%2031%20December%202019. [Accessed on: 12th Oct 2021]

36.

Hiscox (2021) The Hiscox cyber readiness report 2021. Available online at: https://www.hiscox.co.uk/cyberreadiness. [Accessed on: 13th Oct 2021]

37.

Statista3 (2020) Most prevalent banking trojans worldwide in 2020, by type. Available online at: https://www.statista.com/statistics/1238991/top-banking-trojans-worldwide/. [Accessed on: 12th Oct 2020]

38.

Interpol (2020) Interpol report shows alarming rate of cyberattacks during COVID-19. Available online at: https://www.interpol.int/en/News-and-Events/News/2020/INTERPOL-report-shows-alarming-rate-of-cyberattacks-during-COVID-19. [Accessed on 12th Oct 2021]

39.

WHO (2020) Attacks on health care in the context of COVID-19. Available online at: https://www.who.int/news-room/feature-stories/detail/attacks-on-health-care-in-the-context-of-covid-19. [Accessed on: 12th Oct 2021]

40.

Deloitte (2021) CBEST: Putting cyber defences to the test. Available online at: https://www2.deloitte.com/uk/en/pages/financial-services/articles/cbest.html. [Accessed on: 15th Mar 2021]

41.

Cole E (2013) The changing threat. Available online at: https://www.sciencedirect.com/topics/computer-science/advanced-persistent-threat. [Accessed on: 12th Oct 2021]

42.

NCSC (2020) Advisory: APT29 targets COVID-19 vaccine development. Available online at: https://www.ncsc.gov.uk/files/Advisory-APT29-targets-COVID-19-vaccine-development.pdf. [Accessed on: 12th Oct 2021]

43.

CPS (2019) Cybercrime—prosecution guidance. Available online at: https://www.cps.gov.uk/legal-guidance/cybercrime-prosecution-guidance. [Accessed on: 12th Oct 2021]

44.

NCSC (2021) Using TLS to protect data. Available online at: https://www.ncsc.gov.uk/guidance/using-tls-to-protect-data. [Accessed on: 24th Sept 2021]

45.

Cucko S, Turkanovic M (2021) Decentralized and self-sovereign identity: Systematic mapping study. Available online at: https://ieeexplore.ieee.org/stamp/stamp.jsp?arnumber=9558805. [Accessed on: 13th Oct 2021]

46.

Susukailo V, Opirskyy I, Vasylyshyn S (2021) Analysis of the attack vectors used by threat actors during the pandemic. Available online at: https://ieeexplore.ieee.org/document/9321897. [Accessed on: 25th Oct 2021]

47.

Azourlt (2021) Azourlt. Available online at: https://any.run/malware-trends/azorult. [Accessed on: 17th Oct 2021]

48.

Microsoft.com (2021) Microsoft 365.Bring out your best in school, work, and life. Available online at: https://www.microsoft.com/en-us/microsoft-365. [Accessed on: 17th Oct 2021]

49.

Fartitchou M, Makkaoui KE, Kannouf N, Allali ZE (2020) Security on blockchain technology. Available online at: https://ieeexplore.ieee.org/document/9199622. [Accessed on: 25th Oct 2021]

50.

Rivest RL, Shamir A, Adleman L (1978) A method for obtaining digital signatures and public-key cryptosystems. Available online at: https://web.williams.edu/Mathematics/lg5/302/RSA.pdf. [Accessed on: 25th Oct 2021]

51.

Orcutt M (2019) Once hailed as unhackable, blockchains are now getting hacked. Available online at: https://www.technologyreview.com/2019/02/19/239592/once-hailed-as-unhackable-blockchains-are-now-getting-hacked/. [Accessed on: 25th Oct 2021]

52.

Bandara E, Liang X, Foytik P, Shetty S, Zoysa KD (2021) A blockchain and self-sovereign identity empowered digital identity program. Available online at: https://ieeexplore.ieee.org/document/9522184. [Accessed on: 13th Oct 2021]

53.

NIST (2017) NIST special publication 800–63–3. Digital identity guidelines. Available online at: https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-63-3.pdf. [Accessed on 10th Sept 2021]

54.

Bokkem DV, Hageman R, Koning G, Nguyen L, Zarin N (2019) Self-sovereign identity solutions: The necessity of Blockchain technology. Available online at: https://arxiv.org/pdf/1904.12816.pdf [Accessed on: 14th Oct 2021.]

55.

Stockburger L, Kokosioloulis G, Mukkamala A, Mukkamala RR, Avital M (2021) Blockchain-enabled decentralised identity management: The case of self-sovereign identity in public transport. Available online at: https://www.sciencedirect.com/science/article/pii/S2096720921000099#bib14. [Accessed on: 14th Oct 2021]

56.

Stokkink Q, Pouwelse J (2018) Deployment of a blockchain-based self-sovereign identity. Available online at: https://arxiv.org/pdf/1806.01926.pdf. [Accessed on: 14th Oct 2021]

57.

Zhang P, Schmidt DC, White J, Dubey A (2019) Chapter seven – Consensus mechanisms and information security technologies. Available online at: https://www.sciencedirect.com/science/article/abs/pii/S0065245819300245 [Accessed on: 14th Oct 2021]

58.

Bhattacharya MP, Zavarsky P, Butakov S (2021) Enhancing the security and privacy of self-sovereign identities on Hyperledger Indy blockchain. Available online at: https://ieeexplore.ieee.org/abstract/document/9297357. [Accessed on: 14th Oct 2021]

59.

Aggarwal S, Kumar N (2020) Chapter sixteen—Hyperledger. Available online at: https://www.sciencedirect.com/science/article/abs/pii/S0065245820300711. [Accessed on: 15th Oct 2021]

60.

Zhang B, Zhang T, Yu Z (2018) DDoS detection and prevention based on artificial intelligence techniques. Available online at: https://ieeexplore.ieee.org/document/8322748/references#references. [Accessed on: 13th Sept 2021]

61.

Li X, Zhang T (2017) An exploration on artificial intelligence application: From security, privacy and ethic perspective. Available online at: https://ieeexplore.ieee.org/document/7951949/authors#authors [Accessed on: 13th Sept 2021]

62.

Anandshree N, Kh J, De T (2016) Distributed denial of service attack detection using Naïve Bayes Classifier through info gain feature selection. Available online at: https://www.researchgate.net/publication/309638524_Distributed_denial_of_service_attack_detection_using_Naive_Bayes_Classifier_through_Info_Gain_Feature_Selection. [Accessed on: 13th Sept 2021]

63.

Yuan X, Li, C, Li X (2017) Deep Defense: Identifying DDoS attack via deep learning. Available online at: https://ieeexplore.ieee.org/abstract/document/7946998/authors#authors. [Accessed on: 13th Sept 2021]

64.

Verisign (2018) Q1 2018 DDoS trends report: 58 per cent of attacks employed multiple attack types. Available online at: https://blog.verisign.com/security/q1-2018-ddos-trends-report-58-percent-of-attacks-employed-multiple-attack-types/. [Accessed on: 13th Sept 2021]

65.

Wi-Fi Alliance (2021) Discover Wi-Fi. security. Available online at: https://www.wi-fi.org/discover-wi-fi/security [Accessed on 24th Oct 2021]

66.

Vanhoef M, Ronen E (2019a) Cryptology ePrint Archive: Report 2019/383. Available online at: https://eprint.iacr.org/2019/383. [Accessed on: 13th Nov 2021]

67.

Vanhoef M (2017) Key reinstallation attacks. Breaking WPA2 by forcing nonse reuse. Available online at: https://www.krackattacks.com. [Accessed on: 27th Oct 2021]

68.

NSA (2018) Cybersecurity report. WPA3 will enhance Wi-Fi security. Available online at: https://media.defense.gov/2019/Jul/16/2002158109/-1/-1/0/CTR-CYBERSECURITY-TECHNICAL-REPORT-WPA3.PDF. [Accessed on: 25th Oct 2021]

69.

Shanley A (2010) Penetration testing frameworks and methodologies: a comparison and evaluation. Available online at: https://ro.ecu.edu.au/theses_hons/1553. [Accessed on: 21st Sept 2021]

70.

NIST (2008) Technical guide to information security testing and assessment. Available online at: https://nvlpubs.nist.gov/nistpubs/Legacy/SP/nistspecialpublication800-115.pdf. [Accessed on: 29th Oct 2021]

71.

ISECOM (2010) OSSTMM 3. The open-source security testing methodology manual. Available online at: https://www.isecom.org/OSSTMM.3.pdf. [Accessed on: 29th Oct 2021]

72.

Rounsavall R (2017) Storage area networking security devices. Available online at: https://www.sciencedirect.com/topics/computer-science/open-source-security-testing-methodology-manual. [Accessed on 29th Oct 2021]

73.

Wilhelm T (2010) Methodologies. Available online at: https://www.sciencedirect.com/topics/computer-science/open-source-security-testing-methodology-manual [Accessed on: 29th Oct 2021]

74.

Pentest-standard.org (2014) PTES. Available online at: http://www.pentest-standard.org/index.php/Main_Page. [Accessed on: 29th Oct 2021]

75.

Faircloth J (2017) Wireless penetration testing. Available online at: https://www.sciencedirect.com/topics/computer-science/penetration-testing [Accessed on: 29th Oct 2021]

76.

Knowles W, Baron A, McGarr (2016) The simulated security assessment ecosystem: Does penetration testing need standardisation? Available online at: https://www.sciencedirect.com/science/article/pii/S0167404816300906#fn0055. [Accessed on: 29th Oct 2021]

77.

Gantz SD (2014) Audit-related organization, standards, and certifications. Available online at: https://www.sciencedirect.com/topics/computer-science/open-web-application-security-project. [Accessed on: 29th Oct 2021]

78.

Kritikos K, Magoutis K, Papoutsakis M, Ioannidi S (2019) A survey on vulnerability assessment tools and databases for cloud-based web applications. Available online at: https://www.sciencedirect.com/science/article/pii/S2590005619300116. [Accessed on: 29th Oct 2021]

79.

Holik F, Horalek J, Marik O, Neradova S, Zitta S (2015) Effective penetration testing with Metasploit framework and methodologies. Available online at: https://ieeexplore.ieee.org/abstract/document/7028682 [Accessed on: 29th Oct 2021]

80.

Rapid7 (2021) Metasploit modules and locations. Available online at: https://www.offensive-security.com/metasploit-unleashed/modules-and-locations/ [Accessed on: 29th Oct 2021]

81.

Offensive Security (2021) Armitage. Available online at: https://www.offensive-security.com/metasploit-unleashed/armitage/. [Accessed on: 29th Oct 2021]

82.

Filiol E, Mercaldo F, Santone A (2021) A method for automatic penetration and mitigation: a red hat approach. Available online at: https://www.sciencedirect.com/science/article/pii/S1877050921017063?via%3Dihub. [Accessed on: 6th Dec 2021]

83.

Patil S, Jangra A, Bhale M, Raina A, Kulkarni P (2018) Ethical hacking: The need for cyber security. Available online at: https://ieeexplore.ieee.org/document/8391982 [Accessed on: 6th Dec 2021]

84.

Bacudio AG, Yuan X, Chu BTB, Jones M (2011) An overview of penetration testing. Available online at: https://www.researchgate.net/publication/274174058_An_Overview_of_Penetration_Testing. [Accessed on: 8th Nov 2021]

85.

Vanhoef M, Ronen E (2019) Dragonblood: Analysing the Dragonfly handshake of WPA3 and EAP-wpd. Available online at: https://eprint.iacr.org/2019/383. [Accessed on: 8th Nov 2021]

86.

Conrad E, Misenar S, Feldman J (2016) Chapter 5—Domain 4: Communication and network security (designing and protecting network security). Available online at: https://www.sciencedirect.com/science/article/pii/B9780128024379000059. [Accessed on: 7th Dec2021]

87.

ALPHA (2020) AWUS036NHA. Available online at: https://www.alfa.com.tw/products/awus036nha?variant=36473966166088. [Accessed on: 13th Nov 2021]

88.

Vanhoef M, Piessens F (2017) Key reinstallation attacks: forcing nonce reuse in WPA2. Available online at: https://papers.mathyvanhoef.com/ccs2017.pdf. [Accessed on: 24th Nov 2021]

89.

Wireless Hacking (2004) A brief overview of the wireless world. Available online at: https://www.sciencedirect.com/topics/computer-science/key-authentication. [Accessed on: 24th Nov 2021]

90.

Al-Rushdan H, Shurman M, Alnabelsi SH, Althebyan Q (2019) Zero-day attack detection and prevention in software-defined networks. Available online at: https://ieeexplore.ieee.org/document/8991124. [Accessed on: 22nd Nov 2021]

91.

Johansen HD, Johansen D, Renesse RV (2007) FirePatch: secure and time critical dissemination of software patches. Available online at: https://www.researchgate.net/publication/220722547_FirePatch_Secure_and_Time-Critical_Dissemination_of_Software_Patches. [Accessed on: 22nd Nov 2021]

92.

Sherman R (2015) Advanced analytics. Available online at: https://www.sciencedirect.com/topics/computer-science/data-visualization-tool. [Accessed on: 19th Nov 2021]

93.

Shealy M (2021) How data visualization helps prevent cyberattacks. Available online at: https://www.klipfolio.com/blog/how-data-visualization-prevents-cyber-attacks. [Accessed on: 2nd Dec 2021]

94.

Ryan L (2016) Data visualization as a core competency. Available online at: https://www.sciencedirect.com/topics/computer-science/data-visualization-tool. [Accessed on 19th Nov 2021]

95.

Cobb C, Sudar S, Reiter N, Anderson R, Roesner F, Kohno T (2017) Computer security for data collection technologies. Available online at: https://www.sciencedirect.com/science/article/pii/S2352728516300677. [Accessed on: 19th Nov 2021]

96.

Bank of England BoE (2021) CBEST threat intelligence-led assessments. Available online at: https://www2.deloitte.com/uk/en/pages/financial-services/articles/cbest.html. [Accessed on: 15th Mar 2021]

97.

Bulletproof (2019) Bulletproof annual cyber security report 2019. Available online at: https://www.bulletproof.co.uk/industry-reports/2019.pdf. [Accessed on: 13th Sept 2021]

98.

Apple (2007) Apple reinvents the phone with iPhone. Available online at: https://www.apple.com/uk/newsroom/2007/01/09Apple-Reinvents-the-Phone-with-iPhone/. [Accessed on: 8th Sept 2021]

99.

Apple (2021) iPhone 12 and iPhone 12 mini. Available online at: https://www.apple.com/iphone/. [Accessed on: 8th Sept 2021]

100.

Gulasekaran SR, Sankaran SG (2021) Wi-Fi 6 protocol and network. Artech House, Norwood, MA

101.

Garcia-Rodriguez A, Lopez-Perez A, Galati-Giordano L, Geraci G (2021) IEEE 802.11be: Wi-Fi 7 strikes back. Available online at: https://ieeexplore.ieee.org/document/9433521. [Accessed on: 29th Nov 2021]

102.

Wang M, Zhu T, Zhang T, Zhang J, Yu S, Zhou W (2020) Security and privacy in 6G networks: new areas and new challenges. Available online at: https://www.sciencedirect.com/science/article/pii/S2352864820302431. [Accessed on: 1st Dec 2021]

103.

Cisco (2020) Cisco annual internet report (2018–2023). White paper. Available online at: https://www.cisco.com/c/en/us/solutions/collateral/executive-perspectives/annual-internet-report/white-paper-c11-741490.html. [Accessed on: 13th Sept 2021]

104.

Statista (2021) Number of smartphone users worldwide from 2016 to 2021 (in billions). Available online at: https://www.statista.com/statistics/330695/number-of-smartphone-users-worldwide/. [Accessed on 13th Mar 2021]

105.

Busch PA, Hausvik GI, Ropstad OK, Patterson D (2021) Smartphone usage among older adults. Available online at: https://www.sciencedirect.com/science/article/pii/S0747563221001060 [7th Sept 2021]

106.

Fryman S, Romine W (2021) Measuring smartphone dependency and exploration of consequences and comorbidities. Available online at: https://www.sciencedirect.com/science/article/pii/S2451958821000567. [Accessed on 7th Sept 2021]

107.

Pall ML (2018) Wi-Fi is an important threat to human health. Available online at: https://www.sciencedirect.com/science/article/pii/S0013935118300355. [Accessed on: 29th Nov 2021]

108.

Kovacic S, Dulic E, Sehidic A (2017) Improving the security of access to network resources using the 802.1x standard in wired and wireless environments. Available online at: [Accessed on 16th Oct 2021]

109.

Kleidermacher D, Kleidermacher M (2012) Data protection protocols for embedded systems. Available online at: https://www.sciencedirect.com/topics/engineering/virtual-private-networks. [Accessed on: 2nd Dec 2021]

Title: An Investigation into How Smartphones Can Be Secured Against MiTM Attacks: Financial Sector
Authors: David Steiner-Otoo
Hamid Jahankhani
Publisher: Springer International Publishing
Book: Blockchain and Other Emerging Technologies for Digital Business Strategies
Print ISBN: 978-3-030-98224-9

Electronic ISBN: 978-3-030-98225-6

Copyright Year: 2022
DOI: https://doi.org/10.1007/978-3-030-98225-6_7

Springer Professional

Abstract

Please log in to get access to your license.

Dont have a licence yet? Then find out more about our products and how to get one now:

Springer Professional "Wirtschaft+Technik"

Springer Professional "Technik"

Springer Professional "Wirtschaft"