Article: Scrutinising internet banking security solutions Journal: International Journal of Information and Computer Security (IJICS) 2020 Vol.12 No.2/3 pp.269 - 302 Abstract: Internet-banking is a crucial service offered by financial Institutions and has gained popularity at a high pace. Owing to the increasing usage of this service, it is being frequently targeted by adversaries. The login process by the user is one of the main points that are at risk of this assault. Hence, a robust security mechanism is essential for warding off those risks. Among other security solutions, a typical arrangement presently employed is the one-time password (OTP), i.e., passwords that remain valid for a single exchange or session. However, the majority of these password generation and processing mechanisms do not fulfil the requirement of usability and/or scalability and hence can be considered as less reliable/fragile. This paper reviews the security mechanisms in E-banking. The pros and con of OTP as well as other non-OTP security solutions have been presented. Finally, the prominence of open issues have been elucidated. Inderscience Publishers - linking academia, business and industry through research

Title: Scrutinising internet banking security solutions

Authors: Burhan Ul Islam Khan; Rashidah Funke Olanrewaju; Farhat Anwar; Roohie Naaz Mir; Mashkuri Yaacob

Addresses: Department of Electrical and Computer Engineering, International Islamic University Malaysia, Kuala Lumpur, Malaysia ' Department of Electrical and Computer Engineering, International Islamic University Malaysia, Kuala Lumpur, Malaysia ' Department of Electrical and Computer Engineering, International Islamic University Malaysia, Kuala Lumpur, Malaysia ' Department of Computer Science and Engineering, National Institute of Technology, J&K, India ' Department of Electrical and Computer Engineering, International Islamic University Malaysia, Kuala Lumpur, Malaysia

Abstract: Internet-banking is a crucial service offered by financial Institutions and has gained popularity at a high pace. Owing to the increasing usage of this service, it is being frequently targeted by adversaries. The login process by the user is one of the main points that are at risk of this assault. Hence, a robust security mechanism is essential for warding off those risks. Among other security solutions, a typical arrangement presently employed is the one-time password (OTP), i.e., passwords that remain valid for a single exchange or session. However, the majority of these password generation and processing mechanisms do not fulfil the requirement of usability and/or scalability and hence can be considered as less reliable/fragile. This paper reviews the security mechanisms in E-banking. The pros and con of OTP as well as other non-OTP security solutions have been presented. Finally, the prominence of open issues have been elucidated.

Keywords: online security; internet banking; mobile banking; authentication one-time-password; OTP.

DOI: 10.1504/IJICS.2020.105180

International Journal of Information and Computer Security, 2020 Vol.12 No.2/3, pp.269 - 302

Received: 28 Apr 2018
Accepted: 07 Sep 2018
Published online: 14 Feb 2020 *

Full-text access for editors Full-text access for subscribers Purchase this article Comment on this article

Title: Scrutinising internet banking security solutions

Keep up-to-date