Presentation is loading. Please wait.

Presentation is loading. Please wait.

New Delhi, India, 14 March 2013 Innovating Cyber Defense Approaches to Combat Online Financial Fraud in Developing Economies Charles Iheagwara, Director,

Published byAnnabella Hicks Modified over 9 years ago

Similar presentations

Presentation on theme: "New Delhi, India, 14 March 2013 Innovating Cyber Defense Approaches to Combat Online Financial Fraud in Developing Economies Charles Iheagwara, Director,"— Presentation transcript:

1 New Delhi, India, 14 March 2013 Innovating Cyber Defense Approaches to Combat Online Financial Fraud in Developing Economies Charles Iheagwara, Director, Unatek, Inc. ciheagwara@unatek.com ITU Workshop on “ICT Innovations in Emerging Countries” (New Delhi, India, 14 March 2013)

2 Mobile World At the end of 2011, there were 6 billion mobile subscriptions, estimates The International Telecommunication Union (2011).The International Telecommunication Union That is equivalent to 87% of the world population. is a huge increase from 5.4 billion in 2010 and 4.7 billion mobile subscriptions in 2009. Mobile subscribers in the developed world has reached saturation point with at least one cell phone subscription per person. This means market growth is being driven by demand developing world, led by rapid mobile adoption in China and India, the world's most populous nations.

3 Mobile World Cont. At the end of 2011 there were 4.5 billion mobile subscriptions in the developing world (76 percent of global subscriptions). Mobile penetration in the developing world now is 79 percent, with Africa being the lowest region worldwide at 53 percent. Portio Research –free Mobile Factbook 2012Mobile Factbook 2012 Predicts that mobile subscribers worldwide will reach 6.9 billion by the end of 2013 and 8 billion by the end of 2016. estimates that Asia Pacific’s share of the mobile subscribers will rise from 50.7 percent in 2011 to 54.9 percent in 2016. By 2016 Africa and Middle East will overtake Europe as the second largest region for mobile subscribers Africa. New Delhi, India, 14 March 2013 3

4 Mobile Banking Not all mobile subscribers have bank accounts The estimate of subscribers with mobile phones but no bank accounts could be anywhere from 15 – 40% of all mobile subscribers Banks say, “Let’s use phones to serve these people!” Several mobile banking services exist today – M-PESA (Kenya) – Wizzit (S.A.) – GCash (Philippines) – > 100 million dollars transacted per day

5 How does it work? Courtesy: Microsoft Research India A network of human agents mediate transactions – Run small businesses: mobile recharge, pharmacy etc – Commissioned by m-banking provider M-banking outlet in Delhi An m-banking agent sends an SMS to the bank for a deposit transaction Courtesy: CKS

6 How does it work? Courtesy: Microsoft Research India Agent Bank Hari deposits 100/- “Credit Hari’s a/c with 100/-” “Hari’s a/c credited” Hari

7 How does it work? Courtesy: Microsoft Research India Agent Bank Hari withdraws 100/- “Credit agent’s a/c with 100/-” “Agent’s a/c credited” Hari

8 Security Challenges Physical: Phones can be lost or stolen. If stolen, can login credentials be extracted from the memory card? Logical: Banks must authenticate users. How is authentication via wireless medium sure proof

9 Security Challenges Cont. Courtesy: Microsoft Research India Phones can be lost or stolen. Banks must authenticate users. Hari Bank “Credit agent’s a/c with 100/-” Is this really Hari? ‘

10 Challenges How do we authenticate via a phone like this? No GPRS, Can’t install software Typical m-banking user’s phone Courtesy: EKO … while also ensuring A simple interface (want low-literate users to use it) Low cost (want it to scale)

11 Banking Authentication for Mobile Users Current practice by banks is not sure proof: Most banks use PINs to authenticate users For good security, PINs must be protected There is evidence that some banks have holes in the way the implement PIN management Wireless (GSM, etc.) security is grossly inadequate – The problem is wireless leak of information – The security architecture profers Network-layer protection

12 Cyber Attacks on Mobile Banking Hacking incidents from well-known attacks characterize current mobile banking practice Attacks on network-layer is difficult to track and quantity over wireless media Skimming attacks result to losses by some estimates well over $1 billion in 2009.) – Attack type includes shoulder-surfing and phishing attacks. New Delhi, India, 14 March 2013 12

13 Unatek’s Solution Unatek’s subsidiary intrusiononline, Inc. (www.intrusiononline.net) is developing a wireless intrusion analytics that aides in analyzing authentication-based applicationswww.intrusiononline.net A commercial product/service is projected to be released next year Our approach is to address wireless authentication threat vectors peculiar to delivery of PIN over wireless medium Current practice mostly center on cryptographic means which have proven to be inadequate New Delhi, India, 14 March 2013 13

14 Unatek’s Solution Every user has a PIN & holds a unique codebook – Appends a “coat” that is tamper-proof to each transaction message – A fresh coat each time – The technology addresses network- and application-layers issues Our approach revolves around the belief that if wireless transaction is carried over a medium that can authenticate the issues mentioned above will be addressed. We envisage developing an application that will track PINS on cooperating devices and coat them with protective shields both on the fly and at rest on the handsets

15 Conclusion Mobile banking in developing economies are vulnerable to several attacks resulting into losses worth several billions of dollars Current Cyber security measures are inadequate to combat the attacks Unatek is incubating solutions that extends the current strategies into a new and more effective way of combating the attacks.

Download ppt "New Delhi, India, 14 March 2013 Innovating Cyber Defense Approaches to Combat Online Financial Fraud in Developing Economies Charles Iheagwara, Director,"

Similar presentations

Usably Secure, Low-Cost Authentication for Mobile Banking* Saurabh Panjwani, Ed Cutrell Microsoft Research India * Many thanks to Anupam Varghese (EKO.

Usably Secure, Low-Cost Authentication for Mobile Banking* Saurabh Panjwani, Ed Cutrell Microsoft Research India * Many thanks to Anupam Varghese (EKO.
M-PAYMENT SYSTEM (e–WALLET ).

M-PAYMENT SYSTEM (e–WALLET ).
OTP – SMS Two-Factor Authentication. TABLE OF CONTENTS Introduction3 OTP – SMS Two-Factor Authentication5 Technical Overview9 Features10 Benefits11 About.

OTP – SMS Two-Factor Authentication. TABLE OF CONTENTS Introduction3 OTP – SMS Two-Factor Authentication5 Technical Overview9 Features10 Benefits11 About.
G-Xchange, Inc., (GXI) the mobile money service arm of Globe Telecom, operator of GCash, is the world’s first Telco- led, bank agnostic mobile money platform.

G-Xchange, Inc., (GXI) the mobile money service arm of Globe Telecom, operator of GCash, is the world’s first Telco- led, bank agnostic mobile money platform.
Cyber Security and the Global Business Environment Jeremy Schaar:)

Cyber Security and the Global Business Environment Jeremy Schaar:)
© Copyright IBSP – IBSP Hong Kong Ltd 2010 www.ibsp.net Internet Business Service Provider.

© Copyright IBSP – IBSP Hong Kong Ltd Internet Business Service Provider.
Mobile Technology And Cyber Security K. N. ATUAHENE Director, Domestic Trade and Distribution Ministry of Trade and Industry.

Mobile Technology And Cyber Security K. N. ATUAHENE Director, Domestic Trade and Distribution Ministry of Trade and Industry.
The M-Pesa Payment Platform FDCF project (DFID) An Introduction Nick Hughes November 2005.

The M-Pesa Payment Platform FDCF project (DFID) An Introduction Nick Hughes November 2005.
Microfinance and Technology Building Operational Solutions for Microfinance and SME Projects May 24, 2010.

Microfinance and Technology Building Operational Solutions for Microfinance and SME Projects May 24, 2010.
Mobile money and microfinance European Microfinance Week

Mobile money and microfinance European Microfinance Week
Best games in the world are free!. Agenda 1. About Game Insight 2. Why Android 3. Market Opportunity 4. Emerging Markets 5. Secrets to success.

Best games in the world are free!. Agenda 1. About Game Insight 2. Why Android 3. Market Opportunity 4. Emerging Markets 5. Secrets to success.
AFRALTI1 The Impact of the Mobile Money Revolution in Africa The Impact of the Mobile Money Revolution in Africa.

AFRALTI1 The Impact of the Mobile Money Revolution in Africa The Impact of the Mobile Money Revolution in Africa.
BANK IN A BOX Baku, Azerbaijan October 2012.

BANK IN A BOX Baku, Azerbaijan October 2012.
Technology and Online Spaces Claro Parlade Director for Software Policy Asia-Pacific.

Technology and Online Spaces Claro Parlade Director for Software Policy Asia-Pacific.
1 Mobile Phones As a Communication Platform in Africa Joseph Ogutu Chief Corporate Affairs Officer Safaricom Ltd.

1 Mobile Phones As a Communication Platform in Africa Joseph Ogutu Chief Corporate Affairs Officer Safaricom Ltd.
ITEC0722: Mobile Business and Implementation: Mobile Payment and Security Suronapee Phoomvuthisarn, Ph.D.

ITEC0722: Mobile Business and Implementation: Mobile Payment and Security Suronapee Phoomvuthisarn, Ph.D.
International Telecommunication Union Committed to Connecting the World The World in 2009: ICT Facts and Figures Jaroslaw K. PONDER Strategy and Policy.

International Telecommunication Union Committed to Connecting the World The World in 2009: ICT Facts and Figures Jaroslaw K. PONDER Strategy and Policy.
A future global ODR system A future global ODR system A developing country perspective Mrs. Cécile Barayre ICT Analysis Section.

A future global ODR system A future global ODR system A developing country perspective Mrs. Cécile Barayre ICT Analysis Section.
Mobile and Cyber Threat Issues The Fifth Annual African Dialogue Consumer Protection Conference Livingstone, Zambia 10-12 September 2013.

Mobile and Cyber Threat Issues The Fifth Annual African Dialogue Consumer Protection Conference Livingstone, Zambia September 2013.
Mobile Technology and Cyber Threats Deon Woods Bell Office of International Affairs The Fifth Annual African Consumer Protection Dialogue Conference Livingstone,

Mobile Technology and Cyber Threats Deon Woods Bell Office of International Affairs The Fifth Annual African Consumer Protection Dialogue Conference Livingstone,

Similar presentations

Ads by Google