Skip to main content
SpringerLink
Log in

Human-Related Security Threats and Countermeasures of Electronic Banking and Identity Services - Polish Case Study

  • Conference paper
  • First Online:
Advances in Computational Collective Intelligence (ICCCI 2023)

Part of the book series: Communications in Computer and Information Science ((CCIS,volume 1864))

Included in the following conference series:

  • 389 Accesses

Abstract

The paper is a synthesis of findings on the financial sector’s cybersecurity analysis and e-identity management from the perspective of human-related vulnerabilities. Extensive desk research was conducted to gain a complete picture of the coexisting digital services and their relationship. Based on that, we defined challenges and synthesized our observations, identifying the most severe security risks associated with digital banking and identity services. Our study points out that human errors are the weakest link in the security chain. COVID-19 has accelerated the development of the digital revolution, thus forcing users to use digital services with greater commitment. The acceleration of digital transformation has not been indifferent to hackers, who have quickly adapted to the changing environment. Thus, the risk of exposing inexperienced users to cyberattacks has increased. Human-led attacks, based on naivety, emotion, and lack of relevant knowledge, have posed the most significant threat. Adversaries skillfully maneuver between the offline and online worlds by using fake IDs and sending fake emails. Only proactive countermeasures can stop attacks. Using our expertise, we identified best practices and defined recommendations for the issues discussed, which is our most significant contribution to this study.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 89.00
Price excludes VAT (USA)
  • Available as EPUB and PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 119.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Notes

  1. 1.

    https://securityboulevard.com/2020/04/phishing-statistics-the-29-latest-phishing-stats-to-know-in-2020/.

  2. 2.

    https://dokumencik.com.pl/.

  3. 3.

    https://www.gov.pl/web/mswia/mozna-juz-korzystac-z-rejestru-dokumentow-publicznych.

  4. 4.

    https://www.gov.pl/app/rdp/.

  5. 5.

    https://eur-lex.europa.eu/legal-content/EN/TXT/PDF/?uri=CELEX:32019R1157 &from=EN.

  6. 6.

    https://www.gov.pl/web/mobywatel/zabezpieczenia1.

  7. 7.

    https://www.social-engineer.org/resources/social-engineering-infographic/.

  8. 8.

    https://securityboulevard.com/2020/04/phishing-statistics-the-29-latest-phishing-stats-to-know-in-2020/.

  9. 9.

    https://zbp.pl/dla-klientow/bezpieczne-bankowanie/bankowosc-internetowa.

  10. 10.

    https://www.edoapp.pl/.

  11. 11.

    https://www.gov.pl/web/cyfryzacja/e-dowod-w-dloni-edo-app-w-telefonie.

  12. 12.

    https://play.google.com/store/apps/details?id=pl.pwpw.edohub &hl=pl &gl=US.

  13. 13.

    https://autenti.com/.

  14. 14.

    https://www.gov.pl/web/cyfryzacja/tymczasowy-profil-zaufany--juz-jest.

  15. 15.

    https://fintek.pl/nowa-lista-barier-w-rozwoju-fintechow-jest-ich-prawie-200-wszyscy-biora-sie-do-pracy/.

  16. 16.

    https://www.gov.pl/web/cyfryzacja/e-dowod-20--nowy-wzor-dokumentu-wieksze-bezpieczenstwo.

References

  1. Bridge Foundation: CyberLabs Raport 2020 (2020). https://98145a31-5189-415e-8474-41672cd6acb7.filesusr.com/ugd/2b3cfe_6421fe7dedef4dd186b1ca3398e37bc5.pdf

  2. ESET: Cybersecurity Trends 2021: Staying secure in uncertain times (2021). https://www.welivesecurity.com/wp-content/uploads/2020/11/ESET_Cybersecurity_Trends_2021.pdf

  3. European Parliament: Regulation (EU) no 1093/2010 of the European parliament and of the council of 24 November 2010 establishing a European banking authority and amending decision no 716/2009/EC and repealing commission decision 2009/78/EC. Official Journal of the European Union (2010). https://eur-lex.europa.eu/legal-content/EN/TXT/PDF/?uri=CELEX:32010R1093 &from=EN

  4. European Parliament: Regulation (EU) no 910/2014 of the European parliament and of the council of 23 July 2014 on electronic identification and trust services for electronic transactions in the internal market and repealing directive 1999/93/EC. Official Journal of the European Union (2014). https://eur-lex.europa.eu/legal-content/EN/TXT/PDF/?uri=CELEX:32014R0910 &from=EN

  5. European Parliament: Directive (EU) 2015/2366 of 25 November 2015 on payment services in the internal market. Official Journal of the European Union (2015). https://eur-lex.europa.eu/legal-content/EN/TXT/PDF/?uri=CELEX:32015L2366 &from=EN

  6. European Parliament: Proposal of the regulation of the European parliament and of the council of amending regulation (EU) no 910/2014 as regards establishing a framework for a European digital identity. Official Journal of the European Union (2021). https://eur-lex.europa.eu/legal-content/EN/TXT/?uri=CELEX%3A52021PC0281

  7. KPMG: Barometer cyberbezpieczeństwa, w obronie przed cyberatakami (2019). https://assets.kpmg/content/dam/kpmg/pl/pdf/2019/04/pl-Raport-KPMG-Barometr-Cyberbezpieczenstwa-W-obronie-przed-cyberatakami.pdf

  8. Obserwatorium.biz: TRUSTED ECONOMY in the new reality (2020). https://obserwatorium.biz/en/raport-trusted-economy.html

  9. Polish Banks Association: Standard Kwalifikacyjny ZBP - Stosowanie zasad cyberbezpieczeństwa przez pracowników instytucji finansowych (2019). https://zbp.pl/getmedia/076a1ce8-2850-4415-8a45-0f13389e8f97/Standard-Kwalifikacyjny-Stosowanie-zasad-cyberbezpieczenstwa.pdf

  10. Polish Banks Association: Cyberbezpieczny portfel (2020). https://www.zbp.pl/getmedia/156b5c44-bfcc-46cb-a5d1-bd0d141e9ed0/ZBP_CyberbezpiecznyPortfel2020

  11. Puls Biznesu: Zloty Bankier 2020 (2020). https://www.bankier.pl/static/att/281000/7908761_zloty_bankier_2020_final.pdf

  12. Sophos: Cybersecurity: the human challenge (2020). https://www.sophos.com/en-us/medialibrary/pdfs/whitepaper/sophos-cybersecurity-the-human-challenge-wp.pdf

  13. SRK SF: Raport SBKL 2018 (2018). www.rada.wib.org.pl

  14. UKNF: Stanowisko UKNF dotyczące identyfikacji klienta i weryfikacji jego tożsamości w bankach oraz oddziałach instytucji kredytowych w oparciu o metodę wideoweryfikacji (2019). https://www.knf.gov.pl/o_nas/komunikaty?articleId=66067 &p_id=18

  15. Wodo, W., Stygar, D.: Security of digital banking systems in Poland: user study 2019. In: Proceedings of the 6th International Conference on Information Systems Security and Privacy: ICISSP 2020, pp. 221–231. INSTICC, SciTePress (2020)

    Google Scholar 

  16. XOPERO: Cyberbezpieczeństwo: Trendy 2019 (2019). https://lp.xopero.com/raport-2019-trendy-cyberbezpieczenstwo

  17. Zwiazek Bankow Polskich: PSD2 i Open Banking - Rewolucja czy ewolucja? (2019). https://assets.kpmg/content/dam/kpmg/pl/pdf/2019/03/pl-raport-kpmg0-zbp-psd2-i-open-banking-rewolucja-czy-ewolucja.pdf

Download references

Author information

Authors and Affiliations

  1. Wroclaw University of Science and Technology, Wybrzeze Wyspianskiego 27, 50-370, Wroclaw, Poland

    Wojciech Wodo

  2. 360 Degrees ltd., Sienkiewicza 111/13, 50-346, Wroclaw, Poland

    Natalia Kuźma

Authors
  1. Wojciech Wodo
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Natalia Kuźma
    View author publications

    You can also search for this author in PubMed Google Scholar

Corresponding author

Correspondence to Wojciech Wodo .

Editor information

Editors and Affiliations

  1. Wrocław University of Science and Technology, Wrocław, Poland

    Ngoc Thanh Nguyen

  2. Eötvös Loránd University, Budapest, Hungary

    János Botzheim

  3. Eötvös Loránd University, Budapest, Hungary

    László Gulyás

  4. Universidad Complutense de Madrid, Madrid, Spain

    Manuel Nunez

  5. Vrije Universiteit Amsterdam, Amsterdam, The Netherlands

    Jan Treur

  6. University of Münster, Münster, Germany

    Gottfried Vossen

  7. Wrocław University of Science and Technology, Wrocław, Poland

    Adrianna Kozierkiewicz

Rights and permissions

Reprints and permissions

Copyright information

© 2023 The Author(s), under exclusive license to Springer Nature Switzerland AG

About this paper

Check for updates. Verify currency and authenticity via CrossMark

Cite this paper

Wodo, W., Kuźma, N. (2023). Human-Related Security Threats and Countermeasures of Electronic Banking and Identity Services - Polish Case Study. In: Nguyen, N.T., et al. Advances in Computational Collective Intelligence. ICCCI 2023. Communications in Computer and Information Science, vol 1864. Springer, Cham. https://doi.org/10.1007/978-3-031-41774-0_35

Download citation

  • DOI: https://doi.org/10.1007/978-3-031-41774-0_35

  • Published:

  • Publisher Name: Springer, Cham

  • Print ISBN: 978-3-031-41773-3

  • Online ISBN: 978-3-031-41774-0

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics

Search

Navigation