ONLINE BANK TIZIMLARIDA FOYDALANUVCHILARNI QR KOD ASOSIDA MOBILE-OTP ORQALI AUTENTIFIKATSIYALASH
Keywords:
QR kod, OTP, autentifikatsiyalash, online bank tizimlari.Abstract
Onlayn bank tizimlarida foydalanuvchilarni autentifikatsiya qilish onlayn-banking xizmatlarining xavfsizligi va ishonchliligini ta’minlashning muhim jarayonidir. Autentifikatsiya jarayoni odatda foydalanuvchining identifikatorini foydalanuvchi nomi va parol, xavfsizlik belgilari, biometrik tekshirish va boshqa usullar kabi bir yoki bir nechta omillar orqali tekshirishni o‘z ichiga oladi. Xavfsizlik va qulaylikni muvozanatlash onlayn-bank tizimlari uchun muhim muammo hisoblanadi. Ushbu maqolada online bank tizimlarida foydalauvchilarni autentifikatsiyalashda QR kod asosida mobile-OTP orqali autentifikatsiyalash usuli taklif etilgan.
References
Wang, Y., Zhang, Y., & Chen, L. (2011). Two-factor authentication for online banking using mobile phones. Journal of Network and Computer Applications, 34(1), 108-118.
Hossain, M. A., & Shamsuddin, S. M. (2016). A secure mobile-based authentication for online banking using QR code. Journal of Information Security and Applications, 26, 26-38.
Liu, H., Ma, Y., & Huang, L. (2020). A Survey on Security and Privacy Issues in Mobile Banking Applications. Future Internet, 12(4), 63. https://doi.org/10.3390/fi12040063.
Al-Saqaf, W., & Awad, A. (2019). Mobile Banking Security: A Comparative Study of Authentication Methods. Journal of Information Privacy and Security, 15(3), 115-131. https://doi.org/10.1080/15536548.2019.1676005.
European Banking Authority. (2019). Guidelines on the security measures for operational and security risks of payment services under Directive (EU) 2015/2366 (PSD2).
Federal Financial Institutions Examination Council. (2016). Authentication and Access to Financial Institution Services and Systems.
National Institute of Standards and Technology. (2017). Digital Identity Guidelines: Authentication and Lifecycle Management. https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-63-3.pdf.
Chen, Y., & Gong, Y. (2021). A survey of online banking authentication: Challenges and solutions. Journal of Network and Computer Applications, 178, 102978. https://doi.org/10.1016/j.jnca.2021.102978.
Kshetri, N., & Voas, J. (2019). Blockchain-enabled secure online voting system. Journal of Organizational Computing and Electronic Commerce, 29(4), 279-296. https://doi.org/10.1080/10919392.2019.1613412.
Zawoad, S., Hasan, R., & Hasan, M. (2018). A comprehensive survey on security and privacy issues of mobile banking and solutions to address them. Journal of Network and Computer Applications, 106, 1-26. https://doi.org/10.1016/j.jnca.2017.12.005.
National Institute of Standards and Technology. (2017). Digital Identity Guidelines: Enrollment and Identity Proofing. https://doi.org/10.6028/NIST.SP.800-63-2.
International Association of Privacy Professionals. (2019). GDPR Compliance and Data Protection for Financial Institutions. https://iapp.org/media/pdf/resource_center/IAPP-[GDPR](poe://www.poe.com/_api/key_phrase?phrase=GDPR&prompt=Tell%20me%20more%20about%20GDPR.)-Compliance-and-Data-Protection-for-Financial-Institutions.pdf.
Zhang, Y., & Chen, L. (2010). A survey of two-factor authentication schemes in wireless networks. Computer Communications, 33(9), 1071-1081. https://doi.org/10.1016/j.comcom.2010.02.001
Gao, J., Wang, X., & Li, H. (2021). A novel anonymous two-factor authentication scheme for online banking based on biometric and password. Multimedia Tools and Applications, 80(18), 27501-27519. https://doi.org/10.1007/s11042-021-10830-8.
European Central Bank. (2018). Cyber resilience oversight expectations for financial market infrastructures. https://www.ecb.europa.eu/paym/cyberresilience/html/index.en.html
American Bankers Association. (2018). The State of Bank and Credit Union Digital Marketing. https://www.aba.com/-/media/documents/2018-digital-marketing-report.pdf
