{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2024,5,28]],"date-time":"2024-05-28T13:49:58Z","timestamp":1716904198033},"reference-count":21,"publisher":"Institute of Electronics, Information and Communications Engineers (IEICE)","issue":"3","content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":["IEICE Trans. Inf. & Syst."],"published-print":{"date-parts":[[2019,3,1]]},"DOI":"10.1587\/transinf.2018edp7136","type":"journal-article","created":{"date-parts":[[2019,2,28]],"date-time":"2019-02-28T22:38:43Z","timestamp":1551393523000},"page":"559-567","source":"Crossref","is-referenced-by-count":5,"title":["An ATM Security Measure for Smart Card Transactions to Prevent Unauthorized Cash Withdrawal"],"prefix":"10.1587","volume":"E102.D","author":[{"given":"Hisao","family":"OGATA","sequence":"first","affiliation":[{"name":"Hitachi-Omron Terminal Solutions, Corp."},{"name":"Yokomaha National University"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Tomoyoshi","family":"ISHIKAWA","sequence":"additional","affiliation":[{"name":"Hitachi-Omron Terminal Solutions, Corp."}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Norichika","family":"MIYAMOTO","sequence":"additional","affiliation":[{"name":"Hitachi-Omron Terminal Solutions, Corp."}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Tsutomu","family":"MATSUMOTO","sequence":"additional","affiliation":[{"name":"Yokomaha National University"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"532","reference":[{"key":"1","unstructured":"[1] Symantec, \u201cBackdoor.Padpin,\u201d Press Release, Symantec Security Response, Oct. 2014, https:\/\/www.symantec.com\/security_response\/writeup.jsp?docid=2014-051213-0525-99&tabid=2"},{"key":"2","unstructured":"[2] Kaspersky Lab., \u201cTyupkin Virus (Malware) | ATM Security,\u201d Press Release, https:\/\/www.kaspersky.com\/resource-center\/threats\/tyupkin-malware-atm-security-malware"},{"key":"3","unstructured":"[3] Symantec Official Blog: Backdoor.Ploutus Reloaded-Ploutus Leaves Mexico, http:\/\/www.symantec.com\/connect\/blogs\/backdoorploutus-reloaded-ploutus-leaves-mexico"},{"key":"4","unstructured":"[4] The Times of India, \u201cATM JACKPOT WITH MALWARE,\u201d TIMES NATION | Politics & Policy, May 2015, http:\/\/www.pressreader.com\/india\/the-times-of-india-mumbai-edition\/20150509\/282003260992233"},{"key":"5","unstructured":"[5] EUROPOL, \u201c27 arrested in successful hit against ATM Black Box attacks,\u201d Press Release, May 2017, https:\/\/www.europol.europa.eu\/newsroom\/news\/27-arrested-in-successful-hit-against-atm-black-box-attacks"},{"key":"6","unstructured":"[6] The European Association for Secure Transactions (EAST), \u201cEAST reports 2016 crime stats for Europe's ATMs; black box attacks up 287 percent,\u201d April 2017, https:\/\/www.atmmarketplace.com\/news\/east-reports-2016-crime-stats-for-europes-atms-black-box-attacks-up-287-percent\/"},{"key":"7","unstructured":"[7] European law enforcement agency, \u201cGuidance and recommendations regarding logical attacks on ATMs,\u201d https:\/\/www.ncr.com\/content\/dam\/ncrcom\/content-type\/brochures\/EuroPol_Guidance-Recommendations-ATM-logical-attacks.pdf"},{"key":"8","unstructured":"[8] China Zhijian Publishing House, \u201cGA 1280-2015, Security requirements for automatic teller machines\u201d (in Simplified Chinese), http:\/\/fsms.bsmi.gov.tw\/cat\/\/opac_book\/book_detail.asp?systemno=0000296088"},{"key":"9","unstructured":"[9] ATM marketplace, \u201cATMs left behind as Windows XP support ends,\u201d April 2014, http:\/\/www.atmmarketplace.com\/articles\/atms-left-behind-as-windows-xp-support-ends\/"},{"key":"10","unstructured":"[10] J. Br\u00e4uer, B. Gmeiner, and J. Sametinger, \u201cA Risk Assessment of Logical Attacks on a CEN\/XFS-based ATM Platform,\u201d International Journal on Advances in Security, vol.9, no.3&4, pp.122-132, ISSN 1942-2636, Dec. 2016."},{"key":"11","unstructured":"[11] CEN, \u201cExtensions for Financial Services (XFS) interface specification Release 3.30-Part 1: Application Programming Interface (API)-Service Provider Interface (SPI)-Programmer's Reference,\u201d European Committee for Standardization, Aug. 2015, ftp:\/\/ftp.cen.eu\/CWA\/CEN\/WS-XFS\/CWA16926\/CWA%2016926-1.pdf"},{"key":"12","unstructured":"[12] EMVCo, \u201cEMV Integrated Circuit Card Specifications for Payment Systems Book 3 Application Specification, Version 4.3,\u201d Nov. 2011, https:\/\/www.emvco.com\/wp-content\/uploads\/documents\/EMV_v4.3_Book_3_Application_Specification_20120607062110791.pdf"},{"key":"13","unstructured":"[13] PCI SSC, \u201cPayment Card Industry (PCI) PIN Transaction Security (PTS) Point of Interaction (POI) Modular Security Requirements Version 5.1,\u201d March 2018, https:\/\/www.pcisecuritystandards.org\/documents\/PCI_PTS_POI_SRs_v5-1.pdf"},{"key":"14","unstructured":"[14] PCI SSC, \u201cPayment Card Industry (PCI) PIN Security Requirements Version 2.0,\u201d Dec. 2014, https:\/\/www.pcisecuritystandards.org\/documents\/PCI_PIN_Security_Requirements_v2__Dec2014_b.pdf"},{"key":"15","unstructured":"[15] ISO 9564-1:2017, ISO 9564-2:2014, ISO 9564-4:2016, \u201cFinancial services\u2014Personal Identification Number (PIN) management and security\u2014,\u201d https:\/\/www.iso.org\/standard\/68669.html, https:\/\/www.iso.org\/standard\/61448.html, https:\/\/www.iso.org\/standard\/61246.html"},{"key":"16","unstructured":"[16] EMVCo, LLC, \u201cEMV Integrated Circuit Card Specifications for Payment Systems Book 2 Security and Key Management Version 4.3,\u201d Nov. 2011, https:\/\/www.emvco.com\/terms-of-use\/?u=wp-content\/uploads\/documents\/EMV_v4.3_Book_2_Security_and_Key_Management_20120607061923900.pdf"},{"key":"17","unstructured":"[17] PCI SSC, \u201cPayment Card Industry (PCI) Data Security Standard Requirements and Security Assessment Procedures Version 3.2.1,\u201d May 2018, https:\/\/www.pcisecuritystandards.org\/documents\/PCI_DSS_v3-2-1.pdf"},{"key":"18","unstructured":"[18] ISO 11568-1:2005, ISO 11568-2:2012, ISO 11568-4:2007, \u201cBanking-Key management (retail),\u201d https:\/\/www.iso.org\/standard\/34937.html, https:\/\/www.iso.org\/standard\/53568.html, https:\/\/www.iso.org\/standard\/39666.html"},{"key":"19","unstructured":"[19] ANSI X9.24-1-2017, ANSI X9.24-2-2016, ANSI X9.24-3-2017, \u201cRetail Financial Services Symmetric Key Management,\u201d https:\/\/webstore.ansi.org\/RecordDetail.aspx?sku=ANSI+X9.24-1-2017, https:\/\/webstore.ansi.org\/RecordDetail.aspx?sku=ANSI+X9.24-2-2016, https:\/\/webstore.ansi.org\/RecordDetail.aspx?sku=ANSI+X9.24-3-2017"},{"key":"20","unstructured":"[20] ANSI X9.63-2011 (R2017), \u201cPublic Key Cryptography for the Financial Services Industry-Key Agreement and Key Transport Using Elliptic Curve Cryptography,\u201d https:\/\/webstore.ansi.org\/RecordDetail.aspx?sku=ANSI+X9.63-2011+(R2017)"},{"key":"21","unstructured":"[21] PCI SSC, \u201cPayment Card Industry (PCI) Point-to-Point Encryption: Solution Requirements and Testing Procedures Version 2.0 (Revision 1.1),\u201d July 2015, https:\/\/www.pcisecuritystandards.org\/documents\/P2PE_v2_r1-1.pdf"}],"container-title":["IEICE Transactions on Information and Systems"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/www.jstage.jst.go.jp\/article\/transinf\/E102.D\/3\/E102.D_2018EDP7136\/_pdf","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2019,3,2]],"date-time":"2019-03-02T05:22:37Z","timestamp":1551504157000},"score":1,"resource":{"primary":{"URL":"https:\/\/www.jstage.jst.go.jp\/article\/transinf\/E102.D\/3\/E102.D_2018EDP7136\/_article"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2019,3,1]]},"references-count":21,"journal-issue":{"issue":"3","published-print":{"date-parts":[[2019]]}},"URL":"https:\/\/doi.org\/10.1587\/transinf.2018edp7136","relation":{},"ISSN":["0916-8532","1745-1361"],"issn-type":[{"value":"0916-8532","type":"print"},{"value":"1745-1361","type":"electronic"}],"subject":[],"published":{"date-parts":[[2019,3,1]]}}}