Special Offers
- Acquire a Source of Open Access (OA) APC Funding for Your Institution Through
  IGI Global's OA Fee Waiver (Offset Model) Initiative
  For any library that invests in IGI Global's InfoSci-Books and/or InfoSci-Journals databases, IGI Global will match the library’s investment with a fund of equal value to go toward subsidizing the OA APCs for their faculty patrons when their work is submitted/accepted under OA into an IGI Global journal.
  Learn More
- Subscribe to the Latest Research Through IGI Global's InfoSci-OnDemand Plus
  InfoSci®-OnDemand Plus, a subscription-based service, provides researchers the ability to access full-text content from over 100,000+ peer-reviewed book chapters and 25,000+ scholarly journal articles that spans across 350+ topics in 11 core subjects. Users can select articles or chapters that meet their interests and gain access to the full content permanently in their personal online InfoSci-OnDemand Plus library.
  Subscribe
- Purchase the Encyclopedia of Information Science and Technology, Fourth Edition
  and Receive Complimentary E-Books of Previous Editions
  When ordering directly through IGI Global's Online Bookstore, receive the complimentary e-books for the first, second, and third editions with the purchase of the Encyclopedia of Information Science and Technology, Fourth Edition e-book.
  Purchase
- Create a Free IGI Global Library Account to Receive an Additional 5% Discount on All Purchases
  Exclusive benefits include one-click shopping, flexible payment options, free COUNTER 5 reports and MARC records, and a 5% discount on single all titles, as well as the award-winning InfoSci^®-Databases.
  Sign Up Now!
- Receive a 20% Discount on All Publications Purchased Through
  IGI Global’s Online Bookstore
  This discount cannot be combined with any other offer and is only valid when purchasing directly through IGI Global. (Exclusion of select titles and products may apply).
  Browse Publications
Books
Journals
InfoSci^®-Databases
Articles/Chapters
Publish with Us
Resources
- - Instructors
  - Course Adoption
  - Teaching Cases
  - Researchers
  - Browse Books
  - Browse Journals
  - Search Open Access Content
  - Streaming Videos
  - OnDemand Downloads
  - Webinars
  - Authors and Editors
  - eEditorial Discovery^® System
  - Peer Review Process
  - Ethics and Malpractice
  - Fair Use Policy
  - Open Access Publishing
  - Editorial Services
  - FAQ
  - Distributors
  - Distributor Resources
  - Book Distributors
  - Journal Subscription Agencies
  - E-Resource Partners
Catalogs
About Us
Newsroom

Mobile Commerce Security and Its Prevention

Mona Adlakha (University of Delhi, India)

Source Title: Securing Transactions and Payment Systems for M-Commerce

DOI: 10.4018/978-1-5225-0236-4.ch007

OnDemand PDF Download:

$37.50

Abstract

Mobile commerce is the next generation of e-commerce, where payments and financial transactions can be carried out with utmost ease using handheld mobile devices. Mobile devices are at a higher security risk due to the large amount of critical financial and personal data available on it. The cause or consequence of these threats could be - malware and spyware attacks ; multiple or incorrect m-Commerce payments; breaches due to unauthorized access or disclosure, unauthenticated transactions and risk due to the use of third party networks. This chapter discusses how to manage security risks in m-commerce by first identifying them and then discussing preventive measures for their mitigation. A continuous approach for risk prevention needs to be followed, reviewing the strategy according to the latest challenges. Various risk prevention and mitigation strategies can be adopted. Service providers must follow physical and digital security measures to protect consumer's business information. Independent auditing should ensure compliance with best practice security standards.

Chapter Preview

Top

Background

Throughout this chapter¸ the words customer, consumer, user refer to the user of the handheld mobile device like smart phones tablets and PDA (Personal Digital Assistant). Also, the word organization refers to the company or individual who plays a role in imparting an m-commerce service or is part of a transaction (discussed below).

Prior to understanding the security issues in m-commerce, we need to be aware of all the parties involved in providing m-commerce Services. The Position statement on mobile commerce, (Australian Communications Consumer Action Network (ACCAN), 2014) states that a single m-commerce transaction could involve: a) the consumer, b) the retail merchant whose service/ product is being used/purchase through the transaction, c) each party’s bank, d) a credit card provider, e) a communications network provider, f) a mobile hardware manufacturer of the handheld device, g) a mobile operating system developer and h) a mobile application developer of the of the m-commerce app being used. A failure of an m-Commerce transaction might be attributed to any one of these parties involved in providing m-Commerce Services. This complicates matters as one can not single out the root cause.

Complete Chapter List

Search this Book:

Reset

MLA

APA

Chicago

Export Reference

Mobile Commerce Security and Its Prevention

Abstract

Background

Complete Chapter List