The Problems with Secure On-line Banking
نویسنده
چکیده
A growing awareness of the commercial benefits of online banking have contributed to a sense of urgency among banks to deploy such systems. However, while security of the communications is usually well considered, most do not sufficiently address the security of the platform on which these applications run. In this paper, we outline two existing on-line banking schemes and describe how this weakness can be exploited to subvert the authentication mechanisms in these systems. The aim is to show that these types of attack are not just theoretically possible, but practical and even easy to implement. We present alternative approaches for securing the authentication of online banking applications including a new method that provides an effective compromise between security and other concerns.
منابع مشابه
Perceptions Towards On-line Banking Security: An Empirical Investigation of a Developing Country`s Banking Sector, how secure is On-line Banking
The increase in computer crime has led to scepticism about the move made by the banks to introduce on-line banking. Some view this as a noble move which has made the banking system more efficient, reliable and secure, while others view it as a risky and insecure way of banking. The aim of this study was to assess whether on-line banking in the developing countries is secure or not. The research...
متن کاملA Study for Vulnerability Analysis and Security Reinforcement Plan of Accredited Certification Service
Accredited Certification Service which was begun with enforcement of Digital Signature Act on July 1, 1999 for secure electronic transaction with allow the legal effect to digital signature, have supported a secure electronic transaction such as internet banking and on-line stocks. But, because ordinary people can obtain hacking tool easily by fast development of informationalization, security ...
متن کاملSecuring on-line credit card payments without disclosing privacy information
Two revisions of the original Secure Electronic Transaction (SET) protocol are proposed to conceal cardholders’ identities in the electronic marketplace in which cardholders’ trust for banks can be reduced to a minimum. Constrained by being extensions of the existing card payment networks to the Internet, most on-line credit card payment schemes in use or proposed in recent papers assume the se...
متن کاملSecure Bio-Cryptographic Authentication System for Cardless Automated Teller Machines
Security is a vital issue in the usage of Automated Teller Machine (ATM) for cash, cashless and many off the counter banking transactions. Weaknesses in the use of ATM machine could not only lead to loss of customer’s data confidentiality and integrity but also breach in the verification of user’s authentication. Several challenges are associated with the use of ATM smart card such as: card clo...
متن کاملA Secure Mobile Banking Scheme Based on Certificateless Cryptography in the Standard Security Model
Providing the security services (authenticity, integrity, confidentiality and non-repudiation) all together in mobile banking has remained a problematic issue for both banks and their customers. Both the public key infrastructure (PKI) and the identity-based public key cryptography (IB-PKC) which have been thought to provide solutions to these security services, have their own limitations. Whil...
متن کامل