Posted by:
admin
15 years, 3 months ago
Forrester Research is urging banks to adopt additional security to fight phishing and other forms of fraud, including strong authentication.
"Two-fifths of the European internet users who don't use online banking say they are holding back because they worry about security, according to a survey of nearly 23,000 Europeans by Forrester Research." - from the article on silicon.com
The research also indicates that some people have stopped doing online banking because of security concerns.
"Banks should look to educate net users about security precautions, not let usability fears compromise security, deploy or strengthen two-factor authentication urgently, and collaborate rather than compete on security," according to Forrester.
Looks like the report was finished before Bruce Schneier's , which I have already discussed more than once already ;)
previously. To sum, he misses on a couple of poinsts: 1. You can strongly authenticate the transaction as well as the session to avoid sessions hijacking and 2. There are other forms of strong authentication besides brain-dead hardware tokens that can fight DNS Cache poisoning and other man-in-the-middle attacks. We'll see if Forrester picks a fight!
You can also find the article on Out-Law.com
Share on Twitter Share on Facebook
Recent Posts
- The latest WiKID version includes an SBOM
- WiKID 6 is released!
- Log4j CVE-2021-44228
- Questions about 2FA for AD admins
- WiKID Android tokens had their data deleted over the weekend by Google Chrome bug
Archive
2024
- January (1)
2022
- December (1)
2021
2019
2018
2017
2016
2015
2014
- December (2)
- November (3)
- October (3)
- September (5)
- August (4)
- July (5)
- June (5)
- May (2)
- April (2)
- March (2)
- February (3)
- January (1)
2013
2012
- December (1)
- November (1)
- October (5)
- September (1)
- August (1)
- June (2)
- May (2)
- April (1)
- March (2)
- February (3)
- January (1)
2011
2010
- December (2)
- November (3)
- October (3)
- September (4)
- August (1)
- July (1)
- June (3)
- May (3)
- April (1)
- March (1)
- February (6)
- January (3)
2009
- December (4)
- November (1)
- October (3)
- September (3)
- August (2)
- July (5)
- June (6)
- May (8)
- April (7)
- March (6)
- February (4)
- January (427)
2008
- December (1)
Categories
- PCI-DSS (2)
- Two-factor authentication (3)
Tags
- wireless-cellular-mobile-devices (7)
- Two-factor authentication (10)
- Wireless, cellular, mobile devices (6)
- NPS (1)
- Phishing and Fraud (111)
- Active Directory (1)
- pam-radius (3)
- privileged access (2)
- Cloud Security (10)
- Mutual Authentication (60)
- Web Application Authentication (1)
- Authentication Attacks (99)
- pci (50)
- Security and Economics (97)
- WiKID (133)
- pam (2)
- VPN (1)
- Installation (2)
- RADIUS Server (1)
- Open Source (64)
- Tutorial (2)
- Strong Authentication (35)
- Information Security (137)
- Transaction Authentication (13)
- Miscellaneous (100)
- Linux (2)
- transaction-authentication (6)
- Two Factor Authentication (254)