Internet banking (IB) continues to face security concerns arising from illegal access to users accounts. Use of personal identification numbers (PIN) as a single authentication method for IB users is prone to insecurities such as phishing, hacking and shoulder surfing. Fingerprint matching (FPM) as an alternative to PIN equally has a downside as fingerprints reside on individual mobile devices. A survey we conducted from 170 IB respondents of 5 different banks in Brunei established that majority (65%) of them preferred use of biometric authentication methods. In this work, we propose a two-level integrated authentication mechanism (2L-IAM). At the first level, the user logs in to their IB portal using either PIN or FPM. At the second level, user is authenticated by means of face recognition (FR) should they initiate a transaction classified as sensitive. The merits of the introduced 2L-IAM are 3-fold: - (1) FR guarantees the identity of the rightful user irrespective of the login device; (2) By classifying banking products sensitivity, the sensitive transactions are more effectively secured; (3) It is accommodative of different users authentication preferences. Adoption of this framework could thus improve both users and banks experiences in terms of enhanced security and service delivery respectively.
翻译:互联网银行(IB)继续面临非法获取用户账户产生的安全问题。 个人识别号码(PIN)作为IB用户单一认证方法的使用容易出现不安全感,例如网钓、黑客和肩部冲浪。 指纹匹配(FPM)作为PIN的替代物,同样也有缺点,因为指纹存在于单个移动设备上。 我们从文莱5家不同银行的170家IB答卷人进行的调查确定,他们中的大多数(65%)倾向于使用生物鉴别认证方法。 在这项工作中,我们建议采用两级综合认证机制(2L-IAM)。 在第一层次,使用PIN或FPM对IB门户网站的用户进行记录。在第二层次,如果用户启动被归类为敏感交易,则通过面部识别方式认证用户。 引入的2L-IAM的优点是三重:(1) 联邦保障合法用户的身份,而不论登录装置为何;(2) 通过对银行产品敏感度进行分类,敏感交易得到更有效的保障;(3) 在第二层次上,用户安全偏好。
相关内容
Source: Apple - iOS 8
微信扫码咨询专知VIP会员