Outflanking and securely using the PIN/TAN-System

Details Outflanking and securely using the PIN/TAN-System Outflanking and securely using the PIN/TAN-System

2004-10-12

arxiv.org/abs/cs/0410025v3

Proceedings of the 2005 International Conference on Security and Management (SAM'05); June 2005

Computer Science

Cryptography and Security

7 pages; 2 figures; IEEE style; final version

Scientific paper

The PIN/TAN-system is an authentication and authorization scheme used in e-business. Like other similar schemes it is successfully attacked by criminals. After shortly classifying the various kinds of attacks we accomplish malicious code attacks on real World Wide Web transaction systems. In doing so we find that it is really easy to outflank these systems. This is even supported by the users' behavior. We give a few simple behavior rules to improve this situation. But their impact is limited. Also the providers support the attacks by having implementation flaws in their installations. Finally we show that the PIN/TAN-system is not suitable for usage in highly secure applications.

Affiliated with

Also associated with

No associations

Rating

Outflanking and securely using the PIN/TAN-System does not yet have a rating. At this time, there are no reviews or comments for this scientific paper.

If you have personal experience with Outflanking and securely using the PIN/TAN-System, we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Outflanking and securely using the PIN/TAN-System will most certainly appreciate the feedback.

Rate now

Comments { 0 }

Profile ID: LFWR-SCP-O-718461