tag:blogger.com,1999:blog-38136534.post386144292699629812..comments2024-01-25T07:09:39.896-08:00Comments on Mobile Banking: Cellphone security re-thinkHannes@Homehttp://www.blogger.com/profile/05855107176790028364noreply@blogger.comBlogger3125tag:blogger.com,1999:blog-38136534.post-31544740376385655822008-07-24T00:44:00.000-07:002008-07-24T00:44:00.000-07:00Abhishek,Mobile banking is far more secure than an...Abhishek,<BR/>Mobile banking is far more secure than any other mechanism available to communicate with your bank.... if implemented correctly by mobile banking professionals. It is accepted by most professionals that USSD is not the most secure mechanism available. Your comments have motivated me to write something about the Barclay's implementation. (See one of my latest blog entries)Hannes@Homehttps://www.blogger.com/profile/05855107176790028364noreply@blogger.comtag:blogger.com,1999:blog-38136534.post-87104811901334830102008-07-23T20:52:00.000-07:002008-07-23T20:52:00.000-07:00It is true that mobile banking seems to be quite r...It is true that mobile banking seems to be quite risky as the cell phone might not be equipped with top security features. I think banks should use the USSD method of communication with the customers which doesnt store any messages but acts on interactive basis. I found this info with the Barclays bank starting its Hello Money banking services.Abhishekhttps://www.blogger.com/profile/09781530128811201502noreply@blogger.comtag:blogger.com,1999:blog-38136534.post-62910380914742932822008-06-24T07:02:00.000-07:002008-06-24T07:02:00.000-07:00First, thanks for the reference!Second... yes this...First, thanks for the reference!<BR/><BR/>Second... yes this is a growing problem as attackers can simply use header manipulation to "masquerade" as a mobile phone and thereby completely cut web-based security measures as the site would have to down-grade.<BR/><BR/>We really need to solve this problem, mobile devices are becoming more intelligent and it's difficult to keep up with that technology and security at the same time.<BR/><BR/>Cheers.Rafal Loshttps://www.blogger.com/profile/18106347834259269413noreply@blogger.com