Internet Banking is one of the transactions that provides facilities to access the bank account. Internet Banking, although easier for customers in transactions, but still considered to have gaps in terms of security. Therefore, the Internet Banking security system must have more than one, which means they should use security techniques involving some elements, taken from the writing of the science of hacking, like the following:
a. What we know ?
The simple assumption, that the Personal Identification Number that we know will not be known by anyone, unless we divulge and tell to other people.
b. What we have to generate a PIN?
Mobile phones and token is a tool that can generate a PIN number, we assumed only us who have that tools,
c. The unique things that we have?
Signature, stamp duty, fingerprint authentication is considered forms of traditional and inaccurate truth because it can imitate unless fingerprints.
PIN is not enough, must contain two elements, PIN must be produced through a special tool that we have either token, or mobile phone.
Although the token is not connected in realtime to the bank server, but token is already designed with encryption in accordance with the bank that issued the encryption and certainly not the same, has been modified. but when it translated would be the same in server.
OTP token generate only 1 times, disposable and expired in a matter of minutes, as well as the phone can be sent via SMS OTP appropriate number listed. Because Internet banking is not generating struck it does not require authentication to 3 such as a signature, stamp duty etc .
In conclusion, internet banking security systems will better meet the minimum of two elements, namely a secret code and a tool to generate the secret code.
If this is fulfilled, internet banking will be more comfortable.
Source: www.ilmuhacking.com