Article Details

Copyright Statement: This is an open access article licensed under a Creative Commons Attribution 4.0 International License, which permits unrestricted use, distribution, and reproduction in any medium, even commercially as long as the original work is properly cited.

A Penetration Testing on Malaysia Popular e-Wallets and m-Banking Apps

Author 1: Md Arif Hassan
Author 2: Zarina Shukur
Author 3: Masnizah Mohd

Download PDF

Digital Object Identifier (DOI) : 10.14569/IJACSA.2022.0130580

Article Published in International Journal of Advanced Computer Science and Applications(IJACSA), Volume 13 Issue 5, 2022.

Abstract: e-Wallets and m-banking apps became more and more popular in the developed world, approaching a point of tipping. This can be due to the global use of big and small merchants of paying equipment and the ubiquity of e-wallet and m-banking apps adoption. Many consumers are using e-wallets and m-banking apps that can be an effective cybercrime option. e-Wallets and m-banking apps allow financial transactions via smartphones that give cybercriminals a lucrative opportunity. Mobile technology has become increasingly mainstream and continually strengthening, with the focus on mobile apps protection and forensic analysis developing. In this paper, the security aspect of five popular e-wallets in Malaysia were analyzed. This paper also provides a security analysis of another five leading m-banking apps. The security analysis is based on a security principle that is recommended by Open Web Application Security (OWASP) under Mobile Security Testing Guide (MSTG) and Mobile Security Threats (MST). The static analysis has been done by using three mobile application-testing tools. This study included a variation of vulnerability scanning, code review and, most significantly, penetration testing. Each app complied with the security requirement, but their security features and characteristics, such as encryption, security protocols, and app services, are different to each other. This study was carried out using a DELL computer with Intel Core i7 CPU, 3.40 GHz CPU, 6 GB RAM. Finally, the results revealed the secure e-wallet and m-banking apps among the selected apps.

Keywords: Electronic payments; e-wallet; m-banking; android; static analysis; security analysis

Md Arif Hassan, Zarina Shukur and Masnizah Mohd, “A Penetration Testing on Malaysia Popular e-Wallets and m-Banking Apps” International Journal of Advanced Computer Science and Applications(IJACSA), 13(5), 2022. http://dx.doi.org/10.14569/IJACSA.2022.0130580

@article{Hassan2022,
title = {A Penetration Testing on Malaysia Popular e-Wallets and m-Banking Apps},
journal = {International Journal of Advanced Computer Science and Applications},
doi = {10.14569/IJACSA.2022.0130580},
url = {http://dx.doi.org/10.14569/IJACSA.2022.0130580},
year = {2022},
publisher = {The Science and Information Organization},
volume = {13},
number = {5},
author = {Md Arif Hassan and Zarina Shukur and Masnizah Mohd}
}

IJACSA

Upcoming Conferences

Future of Information and Communication Conference (FICC) 2022

3-4 March 2022

Computing Conference 2022

14-15 July 2022

IntelliSys 2022

1-2 September 2022

Future Technologies Conference (FTC) 2022

20-21 October 2022