Projects per year
Abstract
Automated Teller Machines (ATMs) contain considerable amounts of cash and process sensitive customer data to perform cash transactions and banking operations. In the past, criminals mainly focused on physical attacks to gain access to cash inside an ATM’s safe. For example, they captured customer data on the magnetic strip of an ATM card with skimming devices during insertion of the card. These days, criminals increasingly use logical attacks to manipulate an ATM’s software in order to withdraw cash or to capture customer data. To understand the risks that arise from such logical attacks, we have conducted a risk assessment of an ATM platform. This ATM platform is running in a real bank environment and is built on the CEN/XFS specification. The result of this assessment has revealed the main issues that are responsible for vulnerabilities of an ATM platform. The risk assessment has identified effective countermeasures and has additionally provided a prioritization of activities for ATM manufacturers.
| Original language | English |
|---|---|
| Pages (from-to) | 122-132 |
| Number of pages | 11 |
| Journal | International Journal of Advances in Security |
| Volume | 9 |
| Issue number | 3&4 |
| Publication status | Published - Dec 2016 |
Fields of science
- 202005 Computer architecture
- 202017 Embedded systems
- 102 Computer Sciences
- 102002 Augmented reality
- 102006 Computer supported cooperative work (CSCW)
- 102011 Formal languages
- 102015 Information systems
- 102020 Medical informatics
- 102022 Software development
- 102027 Web engineering
- 201305 Traffic engineering
- 202022 Information technology
- 207409 Navigation systems
- 502032 Quality management
- 502050 Business informatics
JKU Focus areas
- Computation in Informatics and Mathematics
- Management and Innovation
Projects
- 1 Finished
-
IT Security
Pomberger, G. (PI) & Sametinger, J. (PI)
01.01.2009 → 31.12.2017
Project: Other › Project from scientific scope of research unit