ADVANCED TECHNOLOGIES SUPPORTING INFORMATION SECURITY IN BANKING AREA
Main Article Content
Abstract
Introduction. The article give a view of advanced technologies supporting information security in banking area, using cloud technologies in banking and providing the appropriate level of protection banking information in their application, here considered information security cryptographic algorithms.
The expediency of applying to banks symmetric and asymmetric data encryption to protect banking information, because symmetric cryptographic algorithms can be divided into block and stream encryption, and using asymmetric cryptographic algorithms - generate additional information that is called electronic signature.
Purpose. The study of information security issues in the banking sector, the definition of promising information technologies for supporting banking activities and the allocation of cryptographic information security algorithms.
Methods. The question of effective protection of banking information systems using cryptographic algorithms are considered. It is shown that the effectiveness of the protection banking information depends largely on the safe distribution of keys between users banking information system. Defined the key distribution methods, which should be applied in banking, including basic method / session keys and public key method are defined.
Results. We consider the situation of choosing the method of distribution of keys and shown that the choice of method depends upon the structure of the system and data processing technology. We remark that known methods of key distribution does not provide "absolute" protection of information, but ensured that the cost of "hacking" more in several times that the cost of encrypted information, which is especially important for the banking sector.
Originality. The originality of the article is a theoretical justification of an integrated approach to the creation of cryptographic methods to protect banking data using digital signatures among the "cloud computing", which is all the more important, that in Ukraine there are already projects transition to cloud IT infrastructures banking system, including IT infrastructure of the National bank of Ukraine.
Conclusion. It is concluded that the development of theoretical and methodological approaches to information security in the banking sector will allow banks and their customers not only reduce the period of "insecurity" (from days or hours to seconds) but also will get a much better protection of banking information and secure financial system both individual countries and the global economic space. Because of this, the author accent the importance of continue research in this area and developing new advanced technologies to protect information that will be effective in the banking sector.Article Details
The authors published in this journal agree with following conditions:
1. The authors reserve to themselves the right to the authorship of their works and transfer the right of their first publication to the journal on the terms of Creatіve Common Attrіbutіon Lіcense which allows to freely extend to other persons the published work with an obligatory reference to the authors of the original work and its first publication in this journal.
2. The authors have the right to complete independent additional agreements concerning the not exclusive distribution of their work in the form in which it was published in this journal (for example, to place the work in the electronic storehouse of an establishment or to publish as a monograph component), under the condition of the preservation of the reference to the first publication of the work in this journal.
3. The journal’s policy allows and encourage the authors to place their manuscripts into the Internet (for example, in depositories of establishments or on personal web-sites) either before submitting of the manuscript for publication or during its editorial processing as it assists the occurrence of a productive scientific discussion and positively affects the efficiency and dynamics of citing of the published work.
AGREEMENT
ABOUT TRANSMISSION OF COPYRIGHT
I, the author of the article / We, the authors of the manuscript _______________________________________________________________________
in case of its acceptance for publication, we transfer the following rights to the founders and editorial boards of the scientific publication "BULLETIN OF THE CHERKASY BOHDAN KHMELNYTSKY NATIONAL UNIVERSITY. ECONOMIC SCIENCES. SERIES "ECONOMIC SCIENCES":
1. Publication of this article in Ukrainian (English, Russian, Polish) and distribution of its printed version.
2. Dissemination of the electronic version of the article through any electronic means (placing on the official journal web site, in electronic databases, repositories, etc.).
At the same time we reserve the right without consent of the editorial board and the founders:
1. Use the materials of the article in whole or in part for educational purposes.
2. To use the materials of the article in whole or in part for writing your own theses.
3. Use article materials to prepare abstracts, conference reports, and oral presentations.
4. Post electronic copies of the article (including the final electronic version downloaded from the journal's official website) to:
a. personal web-pecypcax of all authors (web sites, web pages, blogs, etc.);
b. web-pecypcax of the institutions where the authors work (including electronic institutional repositories);
with. non-profit, open-source web-pecypcax (such as arXiv.org).
With this agreement, we also certify that the submitted manuscript meets the following criteria:
1. Does not contain calls for violence, incitement of racial or ethnic enmity, which are disturbing, threatening, shameful, libelous, cruel, indecent, vulgar, etc.
2. Does not infringe the copyrights and intellectual property rights of others or organizations; contains all the references to the cited authors and / or publications envisaged by applicable copyright law, as well as the results and facts used in the article by other authors or organizations.
3. It has not been previously published in other publishers and has not been published in other publications.
4. Does not include materials that are not subject to publication in the open press, in accordance with applicable law.
____________________ ___________________
First name, Last name, signature of the author
"___" __________ 20__
References
Law of Ukraine On Information [Electronic resource]. – Access mode: http://zakon3.rada.gov.ua/laws/show/2657-12.
Burachok V.L. (2011) Cyber security - a major factor of sustainable development of the modern information society. Suchasna spetstekhnika, 3, 104-114.
Aulov I.F., Gorbenko I.D. (2013) Cloud computing and analysis of information security in the cloud Prikladnaya radioelektronika, 2/12, 194-201.
Gnatyuk C. Prospects cloud computing market in Ukraine: benefits and risks analytical note [Electronic resource]. – Access mode: www.niss.gov.ua/articles / 1191.
Stepanenko O.P. (2015) Formation of information security in the banking sector of Ukraine. Modelyuvannya ta informatsiyni systemy v ekonomitsi, 91, 17-35.
Sun Heat 1.1-003-99 terminology in the field of information security in computer systems from unauthorized access [Electronic resource]. – Access mode : http://www.dstszi.gov.ua/dstszi/doccatalog/document?id=41650.
Kessler G. C. An Overview of Cryptography [Electronic resource]. – Access mode: http://www.garykessler.net/library/crypto.html.
Official Resource Certification Authority the Information Department DFS [electronic resource]. – Access mode: http://acskidd.gov.ua.
ISO 8532:1995 Preview. Securities -- Format for transmission of certificate numbers [Electronic resource]. – Access mode: https://www.iso.org/standard/23243.html.
ISO 11166-1:1994. Banking -- Key management by means of asymmetric algorithms -- Part 1: Principles, procedures and formats [Electronic resource]. – Access mode: https://www.iso.org/standard/19176.html.
Romanets Yu.V., Tymofeev P.A., Shanhyn V.F (2001). Protection of information in computer systems and networks. M .: Radio and Communications, 376 p.