Preventing Point-of-Sale System Intrusions

Abstract

Several major United States retailers have suffered large-scale thefts of payment card information as the result of intrusions against point-of-sale systems (smart cash registers). Point-of-sale attacks present a growing threat and can constitute a homeland-security problem due to a trans-national cyber crime element. This thesis presents results of a survey of point-of-sale intrusions that reached at least the start of criminal investigation. The survey showed that attacks were generally quite simple, and predominantly involved guessing passwords and subsequent installation of keyboard loggers. That suggests that countermeasures can be relatively simple although they must overcome organizational inertia. Our analysis leads to several recommendations to improve point-of-sale system security.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Jun 01, 2014
Accession Number
ADA607543

Entities

People

  • David C. Smith

Organizations

  • Naval Postgraduate School

Tags

Communities of Interest

  • Cyber

DTIC Thesaurus Topics

  • Application Protocols
  • Commerce
  • Computers
  • Crime
  • Criminal Investigations
  • Cybersecurity
  • Department Of Homeland Security
  • Electronic Mail
  • Homeland Security
  • Information Security
  • Network Protocols
  • Network Science
  • Operating Systems
  • Port Scanners
  • Security
  • Transport Protocols
  • United States

Fields of Study

  • Computer science

Readers

  • Agricultural Chemistry/Soil Science
  • Cybersecurity.
  • Political Violence and Terrorism Studies.

Technology Areas

  • Cyber
  • Cyber - Cryptography