Published December 20, 2022 | Version v1
Journal article Open

A proposed approach to enhance user PIN in the mobile money ecosystem in Ghana

Creators

  • 1. Malaysia University of Science and Technology

Description

The use of only numeric numbers as the base for the USSD PIN rather than alphanumeric was one of the security risks in the USSD mobile money services. The study objective is to assess the security threats posed by user PINs in the mobile money banking ecosystem and to enhance the service quality of the existing mobile money service with its high level of security threats prone to the mobile money industry. The study aims to shed light on the consumer acceptability requirements for mobile banking in particular areas of the consumer usage pattern, which will inform the industry players to strengthen such areas in consumer interest. This will help both the telecoms to understand the individuals and customise services based on the service needs of users of their product. This will aid the operators to cut costs and help improve the security infrastructure in other countries to cover to rope in more users, and to serve the unbanked in the hinterlands of the country. There is a growing demand for the adoption of mobile money services in Ghana. However, there is insufficient research to understand the risk associated with the adoption of the service. It is on this trend that, the study sought to reveal and understand the threat in the nature of user PIN used in the mobile money service. This study encapsulates, with the extension on demographic scope, which included workers, students, employed and unemployed who have adopted mobile money services the study adopted an exploratory method, to understand the main threats of the user PIN in relation to the mobile money application adopted in Ghana. This also included a survey question for users’ responses on the nature of use. The study included 57 participants to uncover the vulnerability of users’ PINs in mobile money services. The study’s findings revealed that the length could be increased. The current size of the PIN stack was set to four for convenience and user-friendliness, with little thought given to the threat such a length could pose in financial transactions involving mobile money banking. The mobile money PIN solution provided will enable users not to be worried n about their accounts should users end up losing their handset and otherwise potentially harm their handsets because the merchandise is completely secure. The system is safeguarded by cutting-edge secure authentication, but also users’ funds are always secure because each transaction requires a secured alphanumeric password. The mobile payment process delivers individual clients with enhanced security but also lowers the need of carrying physical money but also ensures easy prompt payment of transactions of utilities. Individuals utilizing such services will manage to pay one’s bill payments from the comfort of their place of arbour and making it even easier to do so. The use of only a numeric key for PIN was far more convenient for users, but it also made them more vulnerable to attacks. The standard PIN length in the current USSD mobile money application was four numeric keys. The indication was that the PIN length was too simple for a simple system to break through. The study proposed solution where mobile money users can increase their user PIN to six characters, and include alphanumeric keys. The study will help reduce the increasing threat of mobile money fraud in the FinTech industry.

Files

inn2022-11-01.pdf

Files (441.5 kB)

Name Size Download all
md5:d2209e6e5de309d113ae1af0c2a8cee4
441.5 kB Preview Download

Additional details

References

  • Abooleet, S., & Fang, X. (2021). The role of transaction cost in the adoption of mobile payment.
  • Agbezoutsi, K. E., Urien, P., & Dandjinou, T. M. (2021). Mobile money traceability and federation using blockchain services. Annals of Telecommunications, 76(3), 223-233.
  • Ahmad, A., Li, K., Feng, C., Asim, S. M., Yousif, A., & Ge, S. (2018). An empirical study of investigating mobile applications development challenges. IEEE Access, 6, 17711-17728.
  • Anagnostopoulou, E., Magoutas, B., Bothos, E., Schrammel, J., Orji, R., & Mentzas, G. (2017, April). Exploring the links between persuasion, personality and mobility types in personalized mobility applications. In: International conference on persuasive technology (pp. 107-118). Springer, Cham.
  • Arun Prakash, R., Jayasankar, T., & VinothKumar, K. (2018). Biometric encoding and biometric authentication (BEBA) protocol for secure cloud in m-commerce environment. Appl. Math. Inf. Sci, 12(1), 255-263. https://ink.library.smu.edu.sg/sis_research/168
  • Baganzi, R., & Lau, A. K. (2017). Examining trust and risk in mobile money acceptance in Uganda. Sustainability, 9(12), 2233.
  • Beaunoyer, E., Dupéré, S., & Guitton, M. J. (2020). COVID-19 and digital inequalities: Reciprocal impacts and mitigation strategies. Computers in Human Behavior, 111, 106424.
  • Bowers, J., Reaves, B., Sherman, I. N., Traynor, P., & Butler, K. (2017). Regulators, mount up! analysis of privacy policies for mobile money services. Thirteenth Symposium on Usable Privacy and Security (SOUPS 2017), 97-114.
  • Bryant, J., Holloway, K., Lough, O., & Willitts-King, B. (2020). Bridging humanitarian digital divides during Covid-19. HPG (ODI). https://www.odi.org/publications/17580-bridging-humanitarian-digital-divides-during-covid-19
  • Chen, R. (2019). Policy and Regulatory Issues with Digital Businesses. World Bank Policy Research Working Paper, 8948.
  • Corbitt, B. J., & Han, Y. T. (2003). Trust and e-commerce: A study of consumer perceptions. Electronic Commerce Research and Applications, 2(3), 203-215.
  • Creswell, J. W., & Creswell, J. D. (2018). Research design: Qualitative, quantitative, and mixed methods approach. Sage Publications.
  • Dahlberg, T., & Mallat, N. (2002). Mobile payment service development: Managerial implications of consumer value perception. Proceedings of the European Conference on Information Systems, 649-657. Gdansk, Poland: ECIS.
  • De Luna, I. R., Liébana-Cabanillas, F., Sánchez-Fernández, J., & Muñoz-Leiva, F. (2019). Mobile payment is not all the same: The adoption of mobile payment systems depending on the technology applied. Technological Forecasting and Social Change, 146, 931-944.
  • Delahaye, J.-P. (2019). The mathematics of (hacking) passwords. https://www.scientificamerican.com/article/the-mathematics-of-hacking-passwords/
  • Desmal, A. J., Othman, M. K. B., Hamid, S. B., Zolait, A. H., & Kassim, N. B. A. (2019, August). Proposing a service quality framework for mobile commerce. International Conference for Emerging Technologies in Computing, 203-212. Cham: Springer.
  • Donald, E., & Favour, O. N. (2021). Analysing GSM Insecurity. arXiv preprint arXiv:2109.12408.
  • Feng, W., Zhou, J., Dan, C., Peiyan, Z., & Li, Z. (2017). Research on mobile commerce payment management based on the face biometric authentication. International Journal of Mobile Communications, 15(3), 278-305.
  • Gao, F., Rau, P. L. P., & Zhang, Y. (2018). Perceived mobile information security and adoption of mobile payment services in China. Mobile Commerce: Concepts, Methodologies, Tools, and Applications, 1179-1198. IGI Global.
  • Ghannam, R., Sharevski, F., & Chung, A. (2018, October). User-targeted denial-of-service attacks in LTE mobile networks. 2018 14th International Conference on Wireless and Mobile Computing, Networking and Communications (WiMob), 1-8. IEEE.
  • Glyptis, L., Christofi, M., Vrontis, D., Del Giudice, M., Dimitriou, S., & Michael, P. (2020). E-Government implementation challenges in small countries: The project manager's perspective. Technological Forecasting and Social Change, 152, 119880.
  • Gosavi, A. (2018). Can mobile money help firms mitigate the problem of access to finance in Eastern sub-Saharan Africa? Journal of African Business, 19(3), 343-360.
  • Hillman, S., & Neustaedter, C. (2017). Trust and mobile commerce in North America. Computers in Human Behavior, 70, 10-21.
  • Humbani, M., & Wiese, M. (2018). A cashless society for all: Determining consumers' readiness to adopt mobile payment services. Journal of African Business, 19(3), 409-429.
  • Jagtiani, J., & John, K. (2018). Fintech: the impact on consumers and regulatory responses. Journal of Economics and Business, 100, 1-6.
  • Jakhiya, M., Bishnoi, M. M., & Purohit, H. (2020). Emergence and Growth of Mobile Money in Modern India: A Study on the Effect of Mobile Money. 2020 Advances in Science and Engineering Technology International Conferences (ASET), 1-10. IEEE.
  • Jibril, A. B., Kwarteng, M. A., Pilik, M., Botha, E., & Osakwe, C. N. (2020). Towards understanding the initial adoption of online retail stores in a low internet penetration context: An exploratory work in Ghana. Sustainability, 12(3), 854.
  • Kaatz, C. (2020). Retail in my pocket–replicating and extending the construct of service quality into the mobile commerce context. Journal of Retailing and Consumer Services, 53, 101983.
  • Kang, J. (2018). Mobile payment in Fintech environment: trends, security challenges, and services. Human-centric Computing and Information sciences, 8(1), 1-16.
  • Khan, B. U. I., Olanrewaju, R. F., Baba, A. M., Langoo, A. A., & Assad, S. (2017). A compendious study of online payment systems: Past developments, present impact, and future considerations. International Journal of Advanced Computer Science and Applications, 8(5), 256-271.
  • Khalilzadeh, J., Ozturk, A. B., & Bilgihan, A. (2017). Security-related factors in extended UTAUT model for NFC based mobile payment in the restaurant industry. Computers in Human Behavior, 70, 460-474.
  • Kim, D., Park, K., Lee, D. J., & Ahn, Y. (2020). Predicting mobile trading system discontinuance: The role of attention. Electronic Commerce Research and Applications, 44, 101008.
  • Korableva, O.N., Durand, T., Kalimullina, O. V., & Stepanova, I. (2019, January). Usability Testing of MOOC: Identifying User Interface Problems. ICEIS, 2, 468-475.
  • Lakshmi, K. K., Gupta, H., & Ranjan, J. (2017, December). USSD – Architecture analysis, security threats, issues and enhancements. 2017 International Conference on Infocom Technologies and Unmanned Systems (Trends and Future Directions) (ICTUS), 798-802. IEEE.
  • Lee, W. H., Miou, C. S., Kuan, Y. F., Hsieh, T. L., & Chou, C. M. (2018). A peer-to-peer transaction authentication platform for mobile commerce with semi-offline architecture. Electronic Commerce Research, 18(2), 413-431.
  • Lin, K. Y., Wang, Y. T., & Huang, T. K. (2020). Exploring the antecedents of mobile payment service usage: Perspectives based on cost-benefit theory, perceived value, and social influences. Online Information Review, 44(1), 299-318.
  • Liu, Y., Wang, M., Huang, D., Huang, Q., Yang, H., & Li, Z. (2019). The impact of mobility, risk, and cost on the users' intention to adopt mobile payments. Information Systems and e-Business Management, 17(2), 319-342.
  • Liu, W., Wang, X., & Peng, W. (2020). State of the art: Secure mobile payment. IEEE Access, 8, 13898-13914.
  • Madden, G., Banerjee, A., Rappoport, P. N., & Suenaga, H. (2017). E-commerce transactions, the installed base of credit cards, and the potential mobile E-commerce adoption. Applied Economics, 49(1), 21-32.
  • Madise, S. (2019). Developments in Mobile Technology and the Emergence of Mobile Money. In The Regulation of Mobile Money (pp. 63-110). Cham: Palgrave Macmillan.
  • Malaquias, R. F., & Silva, A. F. (2020). Understanding the use of mobile banking in rural areas of Brazil. Technology in Society, 62, 101260.
  • Mallik, A., Tran, C., & Twagirumukiza, A. (2020, October). USSD Digital Wallet. 2020 Intermountain Engineering, Technology and Computing (IETC), 1-5. IEEE.
  • Mega, B. (2020). Framework for improved security on usage of mobile money application based on iris biometric authentication method in Tanzania. Doctoral dissertation. The University of Dodoma.
  • MeT. (2001). MeT overview white paper (Version 2.0) – The Met Initiative – Enabling mobile eCommerce [PDF]. http://www.mobiletransaction.org/pdf/White%20Paper_2.0.pdf
  • Mohamed, A., & Nor, M. (2021). Assessing the Effects of the Mobile Money Service on Small and Medium Sized Enterprises: Study on EVC-Plus Services in Somalia. American Journal of Industrial and Business Management, 11, 499-514. https://doi.org/10.4236/ajibm.2021.115031.
  • Mullan, J., Bradley, L., & Loane, S. (2017). Bank adoption of mobile banking: stakeholder perspective. International Journal of Bank Marketing, 35(7), 1154-1174.
  • Munoz-Leiva, F., Climent-Climent, S., & Liébana-Cabanillas, F. (2017). Determinants of intention to use the mobile banking apps: An extension of the classic TAM model. Spanish Journal of Marketing-ESIC, 21(1), 25-38.
  • Nakibuuka, J., Semwanga, A. R., & Were, M. C. (2019). Implementation of USSD technology to improve quality of routinely reported health data in a resource-limited setting. In: Health Informatics Vision: From Data via Information to Knowledge (pp. 162-165). IOS Press.
  • National Communication Authority. (2021). NCA. https://nca.org.gh/
  • Otor, S. U., Akumba, B. O., Idikwu, J. S., & Achika, I. P. (2020). An Improved Security Model for Nigerian Unstructured Supplementary Services Data Mobile Banking Platform. International Journal of Scientific Research in Computer Science, Engineering and Information Technology, 6(3), 974-987.
  • Pal, A., Herath, T., & Rao, H. R. (2020). Is the convenience worth the risk? An investigation of mobile payment usage. Information Systems Frontiers, 1-21.
  • Prakasha, K., Muniyal, B., & Acharya, V. (2019). Enhanced authentication and key exchange for end-to-end security in mobile commerce using wireless public key infrastructure. Information Discovery and Delivery, 48(1), 14-22.
  • Putritama, A. (2019). The mobile payment fintech continuance usage intention in Indonesia. Journal Economia, 15(2), 243-258.
  • Sarkar, S., & Khare, A. (2019). Influence of expectation confirmation, network externalities, and flow on use of mobile shopping apps. International Journal of Human–Computer Interaction, 35(16), 1449-1460.
  • Shaw, N., & Sergueeva, K. (2019). The non-monetary benefits of mobile commerce: Extending UTAUT2 with perceived value. International Journal of Information Management, 45, 44-55.
  • Shital and Prakash. (2015). An Overview of Real-Time Secure SMS Transmission. International Journal of Advanced Research in Computer and Communication Engineering, 4(1), 177-179.
  • Sharma, S. K., & Sharma, M. (2019). Examining the role of trust and quality dimensions in the actual usage of mobile banking services: An empirical investigation. International Journal of Information Management, 44, 65-75. https://doi.org/10.1016/j.ijinfomgt.2018.09.013
  • Siau, K., Lim, E. P., & Shen, Z. (2003). Mobile commerce: Current states and future trends. Advances in Mobile Commerce Technologies, 1-17. IGI Global.
  • Sudin, S., Ahmad, R. B., & Idrus, S. Z. S. (2018). A model of virus infection dynamics in mobile personal area network. Journal of Telecommunication, Electronic and Computer Engineering (JTEC), 10(2-4), 197-201.
  • Talwar, S., Dhir, A., Khalil, A., Mohan, G., & Islam, A. N. (2020). Point of adoption and beyond. Initial trust and mobile-payment continuation intention. Journal of Retailing and Consumer Services, 55, 102086.
  • Tiwari, P., Garg, V., Singhal, A., & Puri, N. (2020, January). Mobile banking a myth or misconception. 2020 10th International Conference on Cloud Computing, Data Science & Engineering (Confluence), 781-786. IEEE.
  • Tripathi, S. (2020). A study on adoption of digital payment through mobile payment application with reference to Gujarat State. International Journal of Trend in Scientific Research and Development, 4(3), 1110-1115.
  • Venkatesh, V., Thong, J. Y. L., & Xu, X. (2012). Consumer acceptance and use of information technology: Extending the unified theory of acceptance and use of technology. MIS Quart, 36(1), 157-178.
  • Verkijika, S. F., & Neneh, B. N. (2021). Standing up for or against: A text-mining study on the recommendation of mobile payment apps. Journal of Retailing and Consumer Services, 63, 102743.
  • Wang, F., Yang, N., Shakeel, P. M., & Saravanan, V. (2021). Machine learning for mobile network payment security evaluation system. Transactions on Emerging Telecommunications Technologies, e4226.
  • Wang, Z., Zhao, Z., Min, G., Huang, X., Ni, Q., & Wang, R. (2018). User mobility aware task assignment for mobile edge computing. Future Generation Computer Systems, 85, 1-8.
  • Wazid, M., Zeadally, S., & Das, A. K. (2019). Mobile banking: evolution and threats: malware threats and security solutions. IEEE Consumer Electronics Magazine, 8(2), 56-60.
  • Yan, X. (2021). Towards a More Competitive Mobile Payment Industry: Standardization and Beyond. Journal of Competition Law and Economics, 17(2), 405-436.
  • Yeboah-Asiamah, E., Nimako, S. G., Quaye, D. M., & Buame, S. (2016). Implicit and explicit loyalty: The role of satisfaction, trust and brand image in mobile telecommunication industry. International Journal of Business and Emerging Markets, 8(1), 94-115.
  • Zhu, D. H., Lan, L. Y., & Chang, Y. P. (2017). Understanding the Intention to Continue Use of a Mobile Payment Provider: An Examination of Alipay Wallet in China. International Journal of Business and Information, 12(4).