RSS
Логотип
Баннер в шапке 1
Баннер в шапке 2
2020/05/28 17:49:11

The simplified digital signature in banks

2020: The beginning of use in banks

On May 27, 2020 it became known that Banks in Russia began to use an analog of the electronic signature for protection of transfers. The new method should allow to protect clients of credit institutions from interception of passwords and to reduce a fraud risk by means of social engineering.

The essence of technology consists in the following: to the client the message about money transfer comes to the smartphone, that confirms transaction then  the electronic signature controlling authorship and the invariance of transaction is generated.  It is possible to deliver it only on one smartphone belonging to the client of bank.

Banks in Russia began to pass to an analog of the digital signature for protection of transfers
File:Aquote1.png
The document signed by means of a new solution cannot be changed or intercepted "on the way" — at the cellular operator and the SMS aggregator, as in a case with their sending through the SMS or push —  the Head of Department of information security of MKB Vyacheslav Kasimov explained to Izvestia.
File:Aquote2.png

According to the head of department of retail business of Novikombank Evgeny Gladilin, the new technology for transactions without code in the message will help with fight against fraudulent schemes of substitution of SIM cards or an input in online bank from someone else's devices.

The CEO of SafeTech Denis Kalemberg says that usually SMS with the password are short and are displayed in the heading of notifications and also do not allow to specify transaction parts. It happens because of economy of banks on cellular communication as it is necessary to pay each SMS.  The notification for use of the mobile signature contains much more information that protects the client from money transfer to the unfamiliar account.

Sberbank announced Izvestia plans for a fast output to the market of new products which allow to do without codes of verification in the SMS. The Zenit bank reported that consider the possibility of implementation of such technology.[1]

Notes