An Improved Security Model for Nigerian Unstructured Supplementary Services Data Mobile Banking Platform

Authors

  • Samera Uga Otor  Department of Mathematics / Computer Science, Benue State University, Makurdi, Benue State, Nigeria
  • Beatrice Obianiberi Akumba  Department of Mathematics / Computer Science, Benue State University, Makurdi, Benue State, Nigeria
  • Joseph Sunday Idikwu  Department of Mathematics / Computer Science, Benue State University, Makurdi, Benue State, Nigeria
  • Iorwuese Peter Achika  Department of Mathematics / Computer Science, Benue State University, Makurdi, Benue State, Nigeria

DOI:

https://doi.org/10.32628/CSEIT2063213

Keywords:

USSD, Mobile banking, ATM, SIM-swap and XAMPP

Abstract

Unstructured Supplementary Services Data (USSD) is a menu driven, real time communication technology used for value added services. It is adopted by banks for financial transactions due to its ease of operation. However existing USSD are used by fraudster to commit identity theft through Subscriber Identification Module (SIM) swap, phone theft and kidnap, in other to access funds in the bank. One of the reasons this is made possible is because existing USSD platforms use Automated Teller Machine (ATM) Personal Identification Number (PIN) as second level authenticator and this compromises the ATM channel and violets one of the stated guidelines for USSD operation in Nigeria. More so, the PIN is entered bare on the platform and so can easily be stolen by shoulder surfing. Therefore, in this paper we developed and simulated an improved USSD security model for banking operations in Nigeria. The security of existing USSD platform was enhanced using answer to a secret question as another level of authentication. This was with the view to minimise identity theft. This secret question is registered in the bank during account opening for new customers while existing customers will have to update their details in the banks data base before registering for USSD services. This is done the same way customers verify their ATM PIN in the bank. Hence the answer is known by the customer alone. The model was implemented using php on XAMPP platform and simulated using hubtel USSD mocker. Results showed that security of the proposed system was enhanced through another level of authentication provided by the answer to the security question.

References

  1. Adewole, J. O. (2013). Impact of Mobile Banking on Service Delivery in the Nigerian Commercial Banks. International Review of Management and Business Research. Vol.2 No.2, pp 333-344.
  2. Babatunde, O., and Sunday, O. (2017). E-Banking in Nigeria: Issues and Challenges. Research Journal of Finance and Accounting , Vol.8 No.6, pp 16-24.
  3. Baraka, N., Anael, S., and Loserian, L. (2013). Enhanced Security Model For Mobile Banking Systems In Tanzania. International Journal of Technology Enhancements and Emerging Engineering Research, Vol.1 No. 4, pp 4-20.
  4. Braimah, O., and Okonkwo, I. (2016). Statistical Monitoring (SM) of Electronic Fraud Occurring in Nigerian Banks . Advances in Multidisciplinary Research Journal. Vol.2 No.3, pp 93-104.
  5. Department of Banking and Payments System, Central Bank of Nigeria (CBN, 2018). Regulatory Framework For The Use Of Unstructured Supplementary Service Data (Ussd) For Financial Services In Nigeria . Abuja: Central Bank of Nigeria, Online] https://www.cbn.gov.ng/Out/2018/BPSD/USSD%20Regulatory%20Framework.pdf. (Accessed 20 April, 2019)
  6. Enhancing Financial Innovation and Access EFInA. (2019). Overview of Mobile Financial Services Fraud in Nigeria: Building Trust to increase Uptake and Usage A Presentation at the Mobile Payments Fraud Forum of June 11, 2019. Online] https://www.efina.org.ng/wp-content/uploads/2019/06/Overview-of-Mobile-Financial-Services-Fraud-in-Nigeria.pdf. (Accessed 11 February 2020)
  7. Fadoju, O. S., Evbuomwan, G., Olokoyo, F., Oyedele, O., Ogunwale, O., and Kolawole, O. O. (2018). Dataset for electronic payment performance in Nigerian banking system: A trend analysis from 2012 to 2017. Elsevier journal of Data in Brief , Vol.20 No.20, pp 85–89.
  8. Guaranty Trust Bank Nigeria GTB *737# Features, (2017). Online]: https://737.gtbank.com/features#110 (Accessed 23 April 2020)
  9. Ibanichuka, E., and Oko, I. A. (2019). Electronic Fraud and Financial Performance of Quoted Commercial Banks in Nigeria. International Journal of Advanced Academic Research | Management Practice , Vol.4 No.4, pp15-35.
  10. INDEPENDENT. (2018). Independent news paper. Nigerian Banks Lose N12.30bn To Fraud In Four Years Online] : https://www.independent.ng/nigerian-banks-lose-n12-30bn-to-fraud-in-four-years/ (Accessed 23 April 2020)
  11. Muoghalu, A. I., Okonkwo. Jisike, J., and Ananwude, A. C. (2018). Effect of electronic banking related fraud on deposit money banks financial performance in Nigeria . Discovery, Vol.276 No.54 pp 496-503.
  12. NCC. (2011), The Nigerian Communications Commission Nigerian Communications Act 2003: Guidelines On Short Code Operation In Nigeria. Nigerian Communication Commission Abuja, Online] https://www.google.com/url?sa=t&rct=j&q=&esrc=s&source=web&cd=14&cad=rja&uact=8&ved=2ahUKEwjuluq2waDlAhVGh1wKHak9D7EQFjANegQIARAC&url=https%3A%2F%2Fwww.ncc.gov.ng%2Fdocman-main%2Flegal-regulatory%2Fguidelines%2F141-guidelines-on-shortcode-operation-in-nig (Accessed 16 October, 2019)
  13. Olatunde, O. J., and Fasunle, F. A. (2019). Electronic Banking Fraud in Nigeria: Effects and Controls . Global Scientific Journals Vol.7 No.8, pp52-65.
  14. Onodugo, I. C. (2015). Overview of Electronic Banking in Nigeria. International Journal of Multidisciplinary Reseaerch and Development , Vol.2 No.7, pp336-342.

IInternational Journal of Scientific Research in Computer Science, Engineering and Information Technology

Downloads

Published

2020-06-30

Issue

Volume 6, Issue 3, May-June-2020

Section

Research Articles

License

Copyright (c) IJSRCSEIT

Creative Commons License

This work is licensed under a Creative Commons Attribution 4.0 International License.

How to Cite

[1]
Samera Uga Otor, Beatrice Obianiberi Akumba, Joseph Sunday Idikwu, Iorwuese Peter Achika, " An Improved Security Model for Nigerian Unstructured Supplementary Services Data Mobile Banking Platform " International Journal of Scientific Research in Computer Science, Engineering and Information Technology(IJSRCSEIT), ISSN : 2456-3307, Volume 6, Issue 3, pp.974-987, May-June-2020. Available at doi : https://doi.org/10.32628/CSEIT2063213