A security framework for preventing man in the middle attacks in mobile banking applications: a case of mobile banking services in Uganda

Abstract

The surge in mobile banking applications in developing nations, like Uganda, has transformed financial inclusion. However, it has exposed these services to man-in-the-middle (MitM) attacks. This study focused on MitM challenges in Uganda's mobile banking and aimed to create a tailored security framework. Leveraging the UTAUT2 model, we proposed a comprehensive framework, including performance and effort expectancy, social influence, facilitating conditions, price value, and hedonic motivation. Security aspects like perceived system security, security risk, and MitM risk were also integral. A survey of 230 respondents in Kampala, Uganda, analyzed via PLSSEM, revealed insights into MitM impacts and strategies to mitigate risks. Our research contributes a context-specific security framework to fortify mobile banking in Uganda, addressing unique challenges, fortifying confidentiality, and maintaining trust. The results underscore proactive measures to secure mobile banking from MitM threats, providing practical implications for stakeholders and policymakers. Ultimately, our research aims to cultivate a safer mobile banking environment in Uganda, supporting financial inclusion with secure and reliable services.