Abstract
In the current banking systems and business processes, the permission granted to employees is controlled and managed by the configured access control methods, in which static role-based models focus on access to information and functions. The deployed configuration is not reviewed/updated systematically and is handled manually by managers. Consequently, banks and companies are looking for systems and applications to automate and optimize their business processes and data management intelligently. In this context, the notion of integrating machine learning (ML) techniques in banking business processes has emerged. In order to build an intelligent and systematic solution, we combine in this paper ML and dynamic authorization techniques to enable performance-based policy evaluation into the banking teller process, where policies adapt to the changes recognized by the ML model. The objective of this work is to focus on the banking teller process that may be generalized to other operational banking processes. In this context, we propose in this paper a new model providing Intelligent Performance-Aware Adaptation of Roles and Policy Control using a support vector machine (SVM). We demonstrate that our model is capable of assessing the deployed control policies and updating them systematically with new roles and authorization levels based on tellers' performance, work history, and system constraints. We evaluated different machine learning models on a real dataset generated from a real-life banking environment. Experimental results explore the relevance and efficiency of our proposed scheme in terms of prediction accuracy, required authorizations, transaction time, and employees' working hours.
Highlights
At each branch and internal departments in a bank environment, employees are categorized by their job titles, i.e., junior teller, senior teller, supervisor, and manager
We focus on the banking teller process, which may be generalized to other banking business processes
For achieving the systematic update of policies in the banking teller business process to reflect the new roles of tellers, we propose the use of a process independent language such as the eXtensible Access Control Markup Language (XACML) [30]
Summary
At each branch and internal departments in a bank environment, employees are categorized by their job titles, i.e., junior teller, senior teller, supervisor, and manager. Four eyes principal [1] is used where a maker performs a process or a transaction, and a checker reviews it to authorize or reject it This method helps to avoid unintentional or intentional mistakes or malicious activities that may be performed by an intruder at a branch or internal departments such as customer accounts and credit department. In this context, some actions need to be approved by two individuals before they can be taken. We focus on the banking teller process, which may be generalized to other banking business processes In this context, an employee assigned a role like a junior teller or senior teller processes financial transactions such as debit, credit, transfer, loans, and deals.
Sign-in/Register to view highlights & summary Talk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have
Schedule a callDisclaimer: All third-party content on this website/platform is and will remain the property of their respective owners and is provided on "as is" basis without any warranties, express or implied. Use of third-party content does not indicate any affiliation, sponsorship with or endorsement by them. Any references to third-party content is to identify the corresponding services and shall be considered fair use under The CopyrightLaw.
