On-line transactions are cost effective and convenient to customers. But this benefit is accompanied by diversified attacks by unscrupulous users. A Strong Authentication mechanism is essential before any on-line transactions is performed like online shopping, internet banking. Various authentication mechanisms are available and are in use for different situations. In this paper we are going to give a detailed description of various existing authentication techniques, attacks and their suitability to online transactions. Comparison of these techniques is made that helps in devising a strong authentication mechanism.

Keywords: Strong Authentication, Phishing, Man-in-the-Middle, OTP, session hijack.