Contact Request Demo
Technology

Multi-factor authentication for multi-faceted frauds Multi-factor authentication consists of methods in computer access control. In this method, a user is only granted access after successfully providing several separate pieces of evidence to an authentication mechanism.

By Naveen Joshi 2:19 am

One of the major problems with traditional user ID and password login is the need for maintaining a password database. Whether that password is encrypted or not, if the database is captured, it presents an attacker with a source to verify his guesses at speeds limited only by his hardware resources. When given enough time, a captured password database will fall. Today there are more types of financial fraud to manage other than password hacking. In a multi-faceted fraud, a fraudster obtains a PIN number through phishing or ATM skimming and then uses that stolen data such as social security numbers, and email addresses to implement their schemes. Armed with this information, these fraudsters are able to employ social engineering to target unsuspecting customer service representatives and trick them into changing sensitive account data. Once this process is complete, fraudsters can use any channel to commit fraud against the account. Combating multi-faceted fraud takes multi-factor authentication.

What is multi-factor authentication?

Multi-factor authentication includes layers of security to try to eliminate the number of holes that can be exploited by intruders. Each successive layer must be able to cover up places where other layers are weak.

The most common type of multi-factor authentication involves sending the user a temporary key that the user can input along with its username and password.

Typical multi-factor authentication scenarios include:

  • Swiping a card and entering a PIN.
  • Requesting the user to enter an additional one-time password (OTP) that the website’s authentication server sends to the requester’s phone or email address.
  • Downloading a VPN client along with a valid digital certificate and then logging into the VPN before access is granted to a network.
  • Swiping a card, scanning a fingerprint and answering a security question.
  • Attaching a USB hardware token to a desktop that will generate a one-time code and using that one-time code user can log into a VPN client.

Multifactor authentication technologies:

  • Security tokens

These are small hardware devices that the user carries for authorizing access to a network service. This device may be in the form of a smart card or may be embedded in an easily-carried object such as a key fob or USB drive.

  • Soft tokens

These are software-based security token applications that have the ability to generate a single-use login PIN. Soft tokens are often used for multifactor mobile authentication, in which the device such as a smartphone itself can provide the possession factor.

  • Mobile authentication

These methods include SMS messages, smartphone OTP apps or phone calls sent to a user as an out-of-band method. It also involves biometric authentication methods such as retina scans, fingerprint scans, iris scans, finger vein scans, facial recognition and voice recognition.

Computer security at this point is complicated, but implementation of multi-factor authentication is providing new and effective opportunities, that can make fraud detection and handling much easier and more convenient.

Related posts:

  1. Using AI in Application Performance Monitoring AI is seemingly improving or modifying every digital component of our lives. AI’s digital omnipresence may have an impact in the world of Application Performance Monitoring (APM) too. Here’s why AI in APM makes a great deal of sense.
  2. How AI and Blockchain Can Execute Vaccine Allocations for Countries in Need Vaccinating the global population against COVID-19 is a herculean task for the World Health Organization (WHO) as well as governments everywhere. Governing bodies all over the world face a race against time to quicken large-scale production, storage and distribution of vaccinations for countries that desperately need them. The involvement of blockchain and AI in healthcare brings structure and speed into the process.
  3. 3 Domotic Applications Outside Smart Residences Home automation systems provide a multitude of convenience and energy-conservation features for smart residences. Some of these features can be tweaked for domotics to be applied outside smart residences too. So, what does the smart home market offer apart from smart homes?
  4. 3 Ways To Speed Up Drug Discovery With Robotics Normally, the process of producing a brand-new drug can take several years and billions of dollars for everything to come together perfectly. In fact, success is not a guarantee even when large amounts of money are pumped into such programs. On the other hand, the inclusion of robotics in drug discovery brings a level of speed and certainty to big pharma projects.

Related Articles

Leave a Comment

Your email address will not be published. Required fields are marked *

CAPTCHA

*