Thumbnail Image
Publication

Enhancing Zero Trust models in the financial industry through blockchain integration: A proposed framework

Daah, Clement
Konur, Savas
Publication Date
2024-02-23
End of Embargo
Supervisor
Keywords
Zero Trust, Identity and access management, Device and network security, Data protection, Blockchain
Rights
© 2024 by the authors. Licensee MDPI, Basel, Switzerland. This article is an open access article distributed under the terms and conditions of the Creative Commons Attribution (CC BY) license (https://creativecommons.org/licenses/by/4.0/).
cb
Peer-Reviewed
Yes
Open Access status
openAccess
Accepted for publication
2024-02-20
Institution
Department
Awarded
Embargo end date
Collections
Engineering and Digital Technology Publications
Show all metadata
Files
Thumbnail Image
Qureshi_et_al_Electronics.pdf
Adobe PDF18.42 MB
Abstract
As financial institutions navigate an increasingly complex cyber threat landscape and regulatory ecosystem, there is a pressing need for a robust and adaptive security architecture. This paper introduces a comprehensive, Zero Trust model-based framework specifically tailored for the finance industry. It encompasses identity and access management (IAM), data protection, and device and network security and introduces trust through blockchain technology. This study provides a literature review of existing Zero Trust paradigms and contrasts them with cybersecurity solutions currently relevant to financial settings. The research adopts a mixed methods approach, combining extensive qualitative analysis through a literature review and assessment of security assumptions, threat modelling, and implementation strategies with quantitative evaluation using a prototype banking application for vulnerability scanning, security testing, and performance testing. The IAM component ensures robust authentication and authorisation processes, while device and network security measures protect against both internal and external threats. Data protection mechanisms maintain the confidentiality and integrity of sensitive information. Additionally, the blockchain-based trust component serves as an innovative layer to enhance security measures, offering both tamper-proof verification and increased integrity. Through analysis of potential threats and experimental evaluation of the Zero Trust model’s performance, the proposed framework offers financial institutions a comprehensive security architecture capable of effectively mitigating cyber threats and fostering enhanced consumer trust.
URI
http://hdl.handle.net/10454/19969
Version
Published version
Citation
Daah C, Qureshi A, Awan I et al (2024) Enhancing Zero Trust models in the financial industry through blockchain integration: A proposed framework. Electronics. 13(5): 865.
Link to publisher’s version
Link to published version
Link to Version of Record
https://doi.org/10.3390/electronics13050865
Type
Article
Qualification name
Notes