Three-factor Authentication for Preventing Phishing Attacks in Banking
ثبت نشده
چکیده
Today, everything has been digitized and Banking is one of the sectors which faces online threats and Phishing is one of the threat. Phishing is an online uniqueness fraud, which intends to seize classified data mainly alias name, keys and online trading aspects from its sufferers. Primarily, an intruder cheats people to disclose sensible data by emailing a fraudulent broadcast to huge number of customers. Therefore, protecting them from phishing attacks is extremely important. In our research, we are discussing Three-Factor Authentications for preventing Phishing attacks. In the first authentication after entering a username, the user needs to select few grids of an image which they have received via OTP. In the second authentication, the user will receive a security question which they gave at the time of registration and have to enter the answer for it. In the third authentication, the user's password will be split into two parts. One part of the password will be provided by the bank and the other half will be provided by the user. Keywords— Phishing Attacks, OTP, Banking Security, IM Services.
منابع مشابه
A Hybrid Authentication Mechanism for Preventing Phishing Attacks on E-banking Systems: The Nigeria Case Study
This paper presents multifactor authentication method for securing access to e-banking systems in Nigeria using fingerprint recognition and SiteKey authentication. Fingerprint authentication is based on the notion of fingerprint individuality; the idea that fingerprint image of an individual is unique and can be used to uniquely identify him/her. SiteKey authentication on the other hand, uses a...
متن کاملPhishing Secrets: History, Effects, Countermeasures
This paper presents the results of a study performed over phishing threats and vulnerabilities present in nowadays authentication environments. The main goal of this paper is to present our solution, the anti-phishing model which can be applied to any web environment, and not just to e-banking or the financial sector, without limitations nor additional requirements. We start presenting a brief ...
متن کاملPhishing Secrets: History, Effects, and Countermeasures
This paper presents the results of a study performed over phishing threats and vulnerabilities present in nowadays authentication environments. The main goal of this paper is to present our solution, the anti-phishing model which can be applied to any web environment, and not just to e-banking or the financial sector, without limitations nor additional requirements. We start presenting a brief ...
متن کاملAn Anti-Phishing Password Authentication Protocol
Password authentication is commonly used to authenticate the user in web-based services such as internet banking due to its simplicity and convenience. Many users have multiple accounts and use the same password. The password is usually sent to the server over an HTTPS connection. However, this common practice makes the system vulnerable. An attacker can set up a phishing site masquerading as t...
متن کاملPrevention Schemes Against Phishing Attacks on Internet Banking Systems
With the rise of Internet banking, phishing has become a major problem in online banking systems. Over time, highly evolved phishing attacks, such as active phishing, have emerged as a serious issue. Thus, we suggest two server authentication schemes based on SSL/TLS to protect Internet banking customers from phishing attacks. The first scheme uses the X.509 client certificate, which includes a...
متن کامل