Title :
Display security for online transactions: SMS-based authentication scheme
Author :
Alzomai, Mohammed ; Alfayyadh, Bander ; Jøsang, Audun
Author_Institution :
Queensland Univ. of Technol., Brisbane, QLD, Australia
Abstract :
Secure online transactions with human users normally require visual display for verifying the correctness of central elements of the transaction before it is submitted. When commodity computer platforms get exposed to the Internet, even for a short period, there is a real and substantial risk that they become infected with malware that can modify anything on the computer, including what is displayed to the user and what is being sent over the Internet. This threat makes visual verification of transaction data unreliable and undermines other security mechanisms used to protect online transactions. This paper proposes a method for display security to make the verification of displayed data in the SMS-based authentication scheme more robust against the threat of compromised platforms.
Keywords :
business data processing; invasive software; SMS-based authentication scheme; commodity computer platforms; display security method; malware; online transactions; Optical character recognition software; Optical imaging; Servers;
Conference_Titel :
Internet Technology and Secured Transactions (ICITST), 2010 International Conference for
Conference_Location :
London
Print_ISBN :
978-1-4244-8862-9
Electronic_ISBN :
978-0-9564263-6-9
