It is usually done by registering with the customer’s data and a key or a digital certificate. Other security measures are:
- Use the encrypted connection with strong encryption, in case there may be a sniffer. See SSL/TLS.
- Store the password in a safe place or, much better, memorize it and destroy it.
- Normally there is some method to recover it if it is forgotten: it can be requested in the cashier, via telephone or in the same web you can request the shipment to house.
- After sending it home, you can also request its activation by another means, such as the telephone. This minimizes the dangers of mail being intercepted.
- If the password is intercepted and used without the user knowing, it is the bank that bears the responsibility.
- Some security data can be requested for activation, to further reduce the risks.
- Browsers can store login information on the online banking site. If there is a risk that this information may be seen (for example, if it is not the home computer), the browser must be prevented from storing these data, especially the password.
- It may also be advisable not to save the bank’s cookies, since if the server recognizes them, it can fill in certain data in the form automatically. This is the case of Wikipedia, which, according to the cookie, fills in the user name.
- In addition to the password, another password is usually used, called a signature, which is necessary to carry out money movements. The security measures on the signature must be even greater.
- If we do not use a trusted computer, you may have installed a program that captures the keystrokes of the keyboard. As an additional security measure, the password can be entered by pressing a few buttons with the mouse. It is more difficult to find out the number pressed from the mouse position and even more so if the buttons change position each time authentication is requested.
Mobile Banking 