A copy of this work was available on the public web and has been preserved in the Wayback Machine. The capture dates from 2017; you can also visit the original URL.
The file type is application/pdf
.
In-the-wire authentication: Protecting client-side critical data fields in secure network transactions
2009
2009 2nd International Conference on Adaptive Science & Technology (ICAST)
Secure Internet services like online banking require a "trusted terminal" on the client-side. However, even where strong client-side security is employed, the client PC is often used for input and output of sensitive information like PINs/passwords, amounts, account numbers, etc. These transactions are therefore vulnerable to manipulation by malware. A method is presented here allowing web users to share small amounts of secret information including passwords and account numbers with a large
doi:10.1109/icastech.2009.5409720
fatcat:5vico3lsdnfitprmnspb7bzl2m