We apologize for a recent technical issue with our email system, which temporarily affected account activations. Accounts have now been activated. Authors may proceed with paper submissions. PhDFocusTM
CFP last date
20 November 2024
Reseach Article

Robust Virtual Keyboard for Online Banking

by Chinmohan Nayak, Manoranjan Parhi, Sujit Ghosal
International Journal of Computer Applications
Foundation of Computer Science (FCS), NY, USA
Volume 107 - Number 21
Year of Publication: 2014
Authors: Chinmohan Nayak, Manoranjan Parhi, Sujit Ghosal
10.5120/19142-0530

Chinmohan Nayak, Manoranjan Parhi, Sujit Ghosal . Robust Virtual Keyboard for Online Banking. International Journal of Computer Applications. 107, 21 ( December 2014), 36-38. DOI=10.5120/19142-0530

@article{ 10.5120/19142-0530,
author = { Chinmohan Nayak, Manoranjan Parhi, Sujit Ghosal },
title = { Robust Virtual Keyboard for Online Banking },
journal = { International Journal of Computer Applications },
issue_date = { December 2014 },
volume = { 107 },
number = { 21 },
month = { December },
year = { 2014 },
issn = { 0975-8887 },
pages = { 36-38 },
numpages = {9},
url = { https://ijcaonline.org/archives/volume107/number21/19142-0530/ },
doi = { 10.5120/19142-0530 },
publisher = {Foundation of Computer Science (FCS), NY, USA},
address = {New York, USA}
}
%0 Journal Article
%1 2024-02-06T22:41:42.155565+05:30
%A Chinmohan Nayak
%A Manoranjan Parhi
%A Sujit Ghosal
%T Robust Virtual Keyboard for Online Banking
%J International Journal of Computer Applications
%@ 0975-8887
%V 107
%N 21
%P 36-38
%D 2014
%I Foundation of Computer Science (FCS), NY, USA
Abstract

Current authentication practices suffer from many loopholes. To access an online banking facility, a customer with Internet access would need to register with the institution for the service, and set up some password for authentication process. Basically there are two types of password inputs allowed by banking websites these days. The first one is the traditional input in which we enter the password using keyboards and the second one is the virtual input in which the system accepts password using a virtual keyboard available in login pages of all bank websites. Virtual keyboards are considered as additional security steps for accessing online banking websites but this paper will describe how weak this implementation can be and what security measures can be adopted to maintain the confidentiality.

References
  1. White paper on"Threats to Online Banking- Symantec Security Response", Dublin
  2. "Online Banking: threats and Countermeasures Revised Version: 1. 3", AhnLab, Inc. , June, 2010.
  3. Analysis of New Threats to Online Banking Authentication Schemes by Oscar Delgado, A. Fuster-Sabater and J. M. Sierra
  4. UCAM. CL. TR-731 ISSN 1476-2986 : A new approach to Online Banking by Matthew Johnson
  5. Matthew Pemble. Evolutionary trends in bank customer – targeted malware. Network Security, 2005(10):4–7, October 2005
  6. M. AlZomai, B. Al Fayyadh, A. J sang, and A. McCullagh . An experimental investigation of the usability of transaction authorization in online bank security systems. In Proceedings of the Australasian Information Security Conference (AISC'08), Wollongong, Australia, January 2008.
  7. Zhang Zhanjun, Xu Jialiang. Online virtual keyboard and intelligent input system, Tsinghua University Press, 1998.
  8. Video demonstrating a Trojan Attack against Caja Murica Bank of Spain http://www. hispasec. com/laboratorio/cajamurcia_en. swf
  9. Demo of Attack against Citi Bank India www. tracingbug. com/index. php/articles/view/23. html
  10. Authentication in an Internet Banking Environment by Federal Financial Institutions Examination Council, June 29,2011[online]http://www. fdic. gov/news/news/financial/2010/index. html
  11. Adams, A. , Sasse, M. A. , Lunt, P. (1997). Making passwords secure and usable. Proceedings of HCI on People and Computers XII, 1-19.
Index Terms

Computer Science
Information Sciences

Keywords

Virtual Keyboard Shoulder Surfing Displacement Factor Traversal Trojan