A secure framework for e-banking systems based on hybrid authentication schemes

Abstract

In recent years most banks offer online-banking to their customers. As banking activities are by nature more sensitive than most other Internet activities, higher security standards are required. Authentication is the first line of defense against compromising confidentiality and integrity, Internet banking systems must authenticate users before granting them access to particular services. The banking system must determine whether a user is, in fact, who he or she claims to be. The increase in use of online banking has given rise to an increase in attacks against banking institutions and their customers, such as phishing, shoulder surfing, eavesdropping, and dictionary attacks. It is widely accepted that without adequate controls, security threats are highly probable against transactions in electronic commerce, such as online banking transactions. For implementing a strong authentication technique, this project has introduced a secure framework for online banking authentication system, which is secure in public area and invulnerable to the common attacks and users can achieve the authentication process simply by selecting the appropriate mode according to the environment status (Safe or Unsafe).