Security System Requirements

Security System Requirements

1.1: ATM (Automated Teller Machine)

It is always essential for the ATM telecommunication providers to ensure that their client’s PIN (Personal Identification Number) remains a secret throughout transactions and the system. Thus, to maintain the security of the system, it is essential to fulfilling certain requirements. They include availability, integrity, and confidentiality.

Availability: clients should access ATM services at any time to avoid leading to dissatisfaction. This means that it should be frequently updated with enough cash to provide customers with the desired services.

Confidentiality: For an authorized client to withdraw money via the ATM, he or she must enter a security PIN. It is the responsibility of ATM users to create strong PINs and ensure that it remains a secret. On the other hand, banks are responsible for ensuring that communication between the bank server and ATM remains private to ensure that it is not hacked.

Integrity: the ATM should use efficient and advanced technology to ensure the integrity between customers and banks is maintained and secure. In the case of deposits or withdrawals, accounts must authenticate the data provided and update the correct customer account without affecting others.

1.2 Retail Company Website

Confidentiality: the customer ID should remain a secret so that no other people can access the client’s account. It essential for the system to verify if the ID is correct and then match it with the right account. Linking it to the wrong account might lead to loss of trust by the users.

Integrity: the system should match the customer ID with the right account. The information displayed on the account should reflect the client’s data as created during the setup process. Failure to provide the necessary information could lead customers migrating to other retail websites.

Availability: users should access their website accounts at any time from any device without failure. The website servers need to maintain a secure communication channel between the user and the website. If the website is not safe, it is easy for attackers to steal consumer’s personal information.