Innovation is Our Passion Online Banking Past, Present and Future
Innovation is Our Passion Banks with no Online Banking facility Olden days © 2010 WATCHDATA TECHNOLOGIES PTE LTD The Evolution Online Banking with username & static password for authentication 10 years ago Banks issue certificates to the user which will be stored on the PC Banks issues a certificate stored inside Smart card or USB Token to every user OR OR Banks issue an OTP token to Generate Dynamic password Banks generate Dynamic password on every user’s Mobile 5 years ago Now and Future 2
Innovation is Our Passion Online Banking now in India ØUsername, ØPassword, ØVirtual Keyboard SSL Certificate ØSSL service ØInternet USER Router Online Banking l. SSL guarantees the Online Banking accessed by users is real, not phishing l. Users can access the Online Banking service only with the username and password that a particular user know. l. The communication from IE browser or others to Online Banking server has been protected by SSL technology. © 2010 WATCHDATA TECHNOLOGIES PTE LTD 3
Innovation is Our Passion ØUsername, ØPassword, ØVirtual Keyboard Drawbacks SSL Certificate ØSSL service ØInternet USER Online Banking Router l. The existing SSL in Online Banking is a unidirectional SSL. l. Users can authenticate the server; on the contrary it can not. l. The username and password can be hacked easily. l. The high-risk activity such as fund transfer doesn’t have the user’s e-signature.
Innovation is Our Passion To mitigate the Drawback… Ø Use of Digital Certificates § For Normal users / Corporate Users, etc. This enabled the online user to use their digital certificates stored on their PC while making Transactions © 2010 WATCHDATA TECHNOLOGIES PTE LTD 5
Innovation is Our Passion The System would not be 100% secure v Weak Storage ØThe digital certificate, private key and public key are stored in the IE Browser or other browser of the PC. ØAll of these are easy to be exported to other workstation, including the private key. ØThe private key may be illegally hacked and used by method of exhaustion, no maximum number of password attempts. © 2010 WATCHDATA TECHNOLOGIES PTE LTD 6
Innovation is Our Passion Finally an Ideal Solution – 100% Secure v Every user has a digital certificate as his/her ID card in the online banking system. v The digital certificate is stored inside a Smart Card or a PKI enabled USB Token. v The RSA key pair is generated inside the USB token, the private key is never exported. v The private key can be used only when the user knows the PIN of USB token. v Banks can set the maximum number of PIN attempts, for example 3 to 5 times. v The USB token gets automatically disabled when the user exceeds the maximum number of wrong PIN attempts. © 2010 WATCHDATA TECHNOLOGIES PTE LTD 7
Innovation is Our Passion This solution satisfies… l Users have the bidirectional SSL authentication. It’s more secure. l When doing login and transaction, users can make e-signature for the activities. l Users don’t worry about the fraudulence of the password. The fraud can not do anything without the USB token. ØI ØI have the know who. USBKey; are ØI know the you. PIN ØI know who are you too. ØI don’t have the USBKey. ØYes, Can’t login. my this is signature. ØPIN: ****** l Up to now, users have two factors authentication. © 2010 WATCHDATA TECHNOLOGIES PTE LTD 8
What we provide? Innovation is Our Passion Our USB Key Product Suite © 2010 WATCHDATA TECHNOLOGIES PTE LTD 9
Watch. KEY Innovation is Our Passion Specification Physical Characteristics 8 -bit/32 -bit processor, 32 K/64 K Byte EEPROM Cryptographic Standards PKCS#11 v 2. 11, Microsoft Crypto. API(CAPI)2. 0, X. 509 Cryptographic Functions Asymmetric key pair generation (RSA 1024/2048 bit), Symmetric key generation (DES, 3 DES, AES), Onboard Random Number Generator, Onboard key generation, digital signing and encryption/decryption Cryptographic Algorithms Asymmetric Key Algorithms, RSA 1024 -bit, RSA 2048 bit; Symmetric Key Algorithms, AES, DES, 3 DES Digital Signing RSA 1024 -bit, RSA 2048 -bit Hash Algorithms SHA-1, SHA-256, MD 5 Operating Windows 2000/XP/2003/Vista and 7 system, IE, Mozilla Firefox, Outlook, Thunderbird Browser and Mail Communication PC/SC protocol; Mass Storage protocol; Connectivity USB 1. 1/2. 0 compliant, USB power Weight and Size Approx. 8 g, 78 mm x 23 mm x 9 mm © 2010 WATCHDATA TECHNOLOGIES PTE LTD 10
Bio. KEY Innovation is Our Passion Specification Physical Characteristics 32 -bit processor, 32 K Byte EEPROM, With Fingerprint sensor, Cryptographic Standards PKCS#11 v 2. 11, Microsoft Crypto. API(CAPI)2. 0, X. 509 Cryptographic Functions Asymmetric key pair generation (RSA 1024/2048 bit), Symmetric key generation (DES, 3 DES, AES), Onboard Random Number Generator, Onboard key generation, digital signing and encryption/decryption Cryptographic Algorithms Asymmetric Key Algorithms, RSA 1024 -bit, RSA 2048 bit; Symmetric Key Algorithms, AES, DES, 3 DES Digital Signing RSA 1024 -bit, RSA 2048 -bit Hash Algorithms SHA-1, SHA-256, MD 5 Operating Windows 2000/XP/2003/Vista and 7 system, IE, Mozilla Firefox, Outlook Browser and Mail Communication Mass Storage protocol; Connectivity USB 1. 1/2. 0 compliant, USB power Weight and Size Approx. 8 g, 78 mm x 23 mm x 9 mm © 2010 WATCHDATA TECHNOLOGIES PTE LTD 11
Watch. KEY OCL Innovation is Our Passion Specification Physical Characteristics 32 -bit processor, 32 K Byte EEPROM, With screen display and button press operations, Cryptographic Standards PKCS#11 v 2. 11, Microsoft Crypto. API(CAPI)2. 0, X. 509 Cryptographic Functions Asymmetric key pair generation (RSA 1024/2048 bit), Symmetric key generation (DES, 3 DES, AES), Onboard Random Number Generator, Onboard key generation, digital signing and encryption/decryption Cryptographic Algorithms Asymmetric Key Algorithms, RSA 1024 -bit, RSA 2048 bit; Symmetric Key Algorithms, AES, DES, 3 DES Digital Signing RSA 1024 -bit, RSA 2048 -bit Hash Algorithms SHA-1, SHA-256, MD 5 Operating Windows 2000/XP/2003/Vista and 7 system, IE, Mozilla Firefox, Outlook Browser and Mail Communication Mass Storage protocol; Connectivity USB 1. 1/2. 0 compliant, USB power Weight and Size Approx. 20 g-50 g, 80 mm x (25 -43)mm x 10 mm © 2010 WATCHDATA TECHNOLOGIES PTE LTD 12
URpass Innovation is Our Passion v URpass™ is an innovative product combining secure online payment (& top-up) and contactless micropayment in a single device Ø+ Form factor: © 2010 WATCHDATA TECHNOLOGIES PTE LTD 13
Innovation is Our Passion Thank You For Further Details Please Contact R. Srinivasan - Sales Director K. Srinivasan - Technical Manager srini. vasan@watchdata. com. sg +91 -98450 04098 srinivasan@watchdata. com. sg +91 -99001 91968 Watchdata Technologies (India) Pvt. Ltd #681, 6 th ‘C’ Main, 14 th Cross, J. P Nagar 3 rd Phase, Bangalore – 560078 www. watchdata. com © 2010 WATCHDATA TECHNOLOGIES PTE LTD 14
Скачать презентацию Innovation is Our Passion Online Banking Past Present
09b8b229dd22e56165fa49b2ab52fa95.ppt