Secured Authentication for Online Banking using Mobile Phones
Main Article Content
Abstract
Online banking is essentially safe, but equally fraud is also on the rise and consumers need to be more aware. The widespread use of
online banking means more convenience for consumers and offers better ways to monitor account activity. The client accesses the ATM using a
private key which is the security token that is sent to client’s mobile through an SMS by the bank’s authentication server. The key is generated
by implementing SHA256 and Base64 algorithms using the registered IMSI (International Mobile Subscriber Identity), IMEI (International
Mobile Equipment Identity) numbers of the client’s mobile. SMS based mechanism makes sure that the key is delivered to the registered client.
The client is given a PIN and a Master key when registered to the Online banking service. If in case a client’s mobile is lost, authentication is
done using Unique Master key, else the private key token is used thereby making transactions secured and simple without the need of carrying
any USB Tokens. The additional functionality provides the client more security with their transactions. Phishing attacks by the hackers are
avoided to an extent in the proposed methodology. The proposed method has been implemented and tested in Java (J2ME). Initial results show
the success of the proposed methodology.
Keywords: Authentication, OTP, Online Transactions, Security, IMEI, IMSI, Mobile Phone.
Downloads
Article Details
COPYRIGHT
Submission of a manuscript implies: that the work described has not been published before, that it is not under consideration for publication elsewhere; that if and when the manuscript is accepted for publication, the authors agree to automatic transfer of the copyright to the publisher.
Authors who publish with this journal agree to the following terms:
- Authors retain copyright and grant the journal right of first publication with the work simultaneously licensed under a Creative Commons Attribution License that allows others to share the work with an acknowledgment of the work's authorship and initial publication in this journal.
- Authors are able to enter into separate, additional contractual arrangements for the non-exclusive distribution of the journal's published version of the work (e.g., post it to an institutional repository or publish it in a book), with an acknowledgment of its initial publication in this journal.
- Authors are permitted and encouraged to post their work online (e.g., in institutional repositories or on their website) prior to and during the submission process, as it can lead to productive exchanges, as well as earlier and greater citation of published work
- The journal allows the author(s) to retain publishing rights without restrictions.
- The journal allows the author(s) to hold the copyright without restrictions.