If you're new here, you may want to subscribe to my RSS feed. Thanks for visiting!

Online Banking protection through single password authentication, as is the case in most secure Internet shopping sites, is not considered secure enough for personal online banking applications in some countries. Online banking user interfaces are secure sites (generally employing the https protocol) and traffic of all information – including the password – is encrypted, making it next to impossible for a third party to obtain or modify information after it is sent.

 

However, encryption alone does not rule out the possibility of hackers gaining access to vulnerable home PCs and intercepting the password as it is typed in (keystroke logging). There is also the danger of password cracking and physical theft of passwords written down by careless users.

 

Many online banking services have a second layer of security. Strategies vary, but a common method is the use of transaction numbers, or TANs, which are essentially single use passwords. Another strategy is the use of two passwords, only random parts of which are entered at the start of every online banking session. This is however slightly less secure than the TAN alternative and more inconvenient for the user. A third option is providing customers with security token devices capable of generating single use passwords unique to the customer’s token (this is called two-factor authentication or 2FA).

 

Another option is using digital certificates, which digitally sign or authenticate the transactions, by linking them to the physical device (e.g. computer, mobile phone, etc). Other banks have responded not with security tokens or digital certificates, but by setting up a combination of controls that recognize a customer’s computer, ask additional challenge questions for risky behavior, and monitor for fraudulent behavior.

 

In 2001 the FFIEC issued guidance for multifactor authentication (MFA) and then required to be in place by the end of 2006.

 

Protecting your identity, can seem daunting, but there is information available and ways to protect yourself.

Written by: OSAblogger / Bill Wardell - Please Read Our Latest OSA eZine Edition

Popularity: 9% [?]

OSA Technorati Tags: banking, Banking Online, credit card transaction, encryption, financial information, Keyloggers, online banking security, Online Security, personal information, Privacy, Protect Yourself, Safe Online Banking, security awareness, self-training

OSA Related Posts

• Finding The Appropriate Bank In The Los Angeles Area
• GoDaddy shutters popular security site at MySpace request
• Online Banking, Is It Really Safe?
• Your Banks Security is Only As Secure As Your Banking Habits
• PayPal Adds Security To Fight Phishing
• Bank Systems and ATM Technology
• Online Banking: Protecting Your Assets from Phishing Operators
• 'Man in the browser' is new threat to Online Banking
• Keeping Your Money Safe On the Internet: 10 Methods You Can Ensure Online Banking Security
• Journal Entry: You Have My Permission to... NOT... "Click Here"

OSA Related Websites

• VoIP Security
• Banking Reviews: Capital One’s High Yield Money Market Account
• Tips for Investing Online
• Transportation Alliance Bank’s Premium Savings Account Review
• SEO For Beginners, Part 2 - Spiders Are People, Too
• Finovate Demos - Part 1
• How to Create a Personal Finance Firewall
• Home Network Security
• Starting a Gold Coin Collection
• A place for all those passwords