The application of multi-server authentication scheme in internet banking transaction environments
- PDF / 1,977,107 Bytes
- 29 Pages / 439.37 x 666.142 pts Page_size
- 30 Downloads / 174 Views
The application of multi‑server authentication scheme in internet banking transaction environments Chien‑Hua Tsai1 · Pin‑Chang Su2 Received: 20 June 2019 / Revised: 12 August 2020 / Accepted: 27 September 2020 © Springer-Verlag GmbH Germany, part of Springer Nature 2020
Abstract Information and communication technology has altered businesses’ operations, with a host of established and new banks launching online banking products and services. Banks encourage their customers to use online banking facilities because these facilities reduce transaction costs, improve customer retention, increase the customer share of wallet, and enhance customer services. Many customers also prefer Internet banking channels because of their convenience and the freedom they offer. Although Internet banking offers substantial benefits and opportunities, it does involve security risks associated with sensitive transactions and accessing critical information over public networks. To secure Internet banking activities and maintain the trust and confidence of customers, numerous banks have adopted technical countermeasures, such as two-factor or multi-factor authentication, to prevent cyberattacks, online fraud, and unauthorized access to bank accounts. However, the use of two-factor authentication is inadequate for protecting customers’ accounts against takeover by cyber criminals. Multi-factor authentication services along with related security techniques lead to two considerable barriers: (1) the high cost of deployment and maintenance and (2) the complex integration between authentication processes and online banking systems. This paper presents an alternative model for the authentication of online banking customers and transactions through use of a hash-based multi-server authentication scheme in conjunction with a smart card. The proposed system provides strong security features and low maintenance costs for financial institutions’ Internet banking platforms. The proposed mechanism can be associated with a customized interface and thus easily integrated into existing banking systems for use in Internet banking applications. Keywords Internet banking · Two-factor authentication · Multi-factor authentication · Multi-server authentication · Cyberattack
* Chien‑Hua Tsai [email protected] Extended author information available on the last page of the article
13
Vol.:(0123456789)
C.-H. Tsai, P.-C. Su
1 Introduction Computers and information technology (IT) have become fundamental tools and greatly affected the operation of organizations in the modern business environment. The trend has been incorporated into the banking industry’s marketing and business strategies, and Internet banking or e-banking (sometimes called online banking) (Singhal and Padhmanabhan 2008), in particular, has undergone drastic technology-led changes. Internet banking is defined as the use of the Internet to perform banking operation such as transferring money between accounts, paying bills, tracking payments, retrieving account statements, and ma
Data Loading...
