My initial research idea was about data security and privacy and then I thought of phishing attempts. However, I have decided I would like to find more literature on cloud security which is also part of data security. Learning how to search the databases and find peer-reviewed literature helped me follow this course and I believe Cloud Security is important to know and understand. Everyday services like AWS are prone to millions of cyber security attacks and I find this an important bit of information to understand.
For this reason I posed two questions to research more about:
Should banks be placing customer data in public cloud spaces?
Would financial data in a public cloud space have the same security levels as a private cloud?
I have found many research articles regarding cloud security but few with financial institutions on the forefront. Security can be breached through many different means such as mobile apps or cloud service providers. “Appvigil, a cloud based Android app security scanner, has discovered a JavaScript Injection vulnerability also known as cross-scripting or XSS vulnerability in the mobile application of a major Indian bank in India” (Appvigil report, 2015).
Another concern is that according to McAfee “Financial services were targeted in 50 percent of the top 10 cloud incidents” (Express Computers, 2021). If financial services are targeted so often, why would a public cloud space be a better option for this sector, or should they have a hybrid-cloud approach?
With the knowledge that financial institutions are at risk, I would like more information on the best security method to protect consumers data.
I used the Applied Science and Technology Full-Text database to locate the information regarding the application that was hacked at the Indian bank. This indicates that the applications users have could pose a security risk not only for the consumers but for the banking facility as well. I searched the Faulkner database and found great articles that described what to look for in cloud services. The final database I think I will have luck in is the Business Source Premier database. I added in the Business Source Premier database because financial information was found easier on this database, and I found articles relating to cloud security were easier to search for and tie back to financial institutions.
Mobile app of one of major Indian banks vulnerable to cyberattacks: Appvigil report. (2015). Digit.
McAfee Enterprise sees proliferation of REvil and Darkside Ransomware surge in Q2 2021. (2021). Express Computers.
Kaci I think you have a very thorough approach to your topic. My only suggestion for something perhaps a bit outside the box would be to look through a political science-based database in an attempt to find what regulators have thought or are thinking when it comes to financial institutions and cloud computing. That could possibly lead to a question along the lines of “are regulators helping or hurting a financial institutions ability to keep their data secure?” It is not unusual for a government to be slow when it comes to laws surrounding technology, so possibly there are laws on the books need updating for modern times or maybe regulations are not being strict enough on these institutions. Taking just a quick look at the Hein Online database doing a very basic search of “cloud security banks” provides some potentially interesting articles.
Kaci, I like where your thinking is here. I always wondered about the placing customer data on a cloud environment, exactly how that works. Just seems thats not the most secure spot to put that where millions and millions of dollars are the line.
Hey Kaci, I like the idea of looking into cloud security because im like you i believe understanding cloud security is important.