Presentation on theme: "Banks Banking on Network Security"— Presentation transcript:
1Banks Banking on Network Security By Kelly Crancerp. 328
2Security670,000 account numbers and balances were seized by New Jersey mastermind.Bank of America, Commerce Bancorp, PNC Financial Services Group, and Wachovia were the victimsIn the past, banks found the cost too high to invest in the security technology.Now, the market value of personal information becomes important, causing banks to invest in the technologies.
3Bank of america Worm reroutes the bank’s URL to thief's browser SiteKey-two factor authenticationImagePhraseThen, enter passwordUnusual computer-answer a personal question
4Wells fargo & company“Out-of-Wallet” questions-not found on driver’s licenseKey fobs-change password every 60 secondsTwo-factor authentication pilot-small businesses making electronic transfers will need the key fob
5E-trade financial corporation Customers with more than $50K-free Digital Security ID for network authenticationDisplays new 6-digit codes every 60 seconds to log on with
6Barclays bank Online-transfer delays to detect suspicious activity Due to phishing incidents-large transfers from victims’ accounts to “mules” accountsCreated based on solicitationsMonitoring actionsNotifies customers when logging in at different city than normal or numerous transfers
7questions Why is network security critical to financial institutions? What reason would a bank have for not wanting to adopt an online-transfer delay policy?Customers can’t access their funds immediately.Why is network security critical to financial institutions?All the bank’s money is accessible via the computer and could be stolen with little record of where it went.
8questionsExplain the differences between the types of network security offered by the banks in the case. Which bank would you open an account with and why?Bank of America has the best form to fit my needs with the two-factor authentication.I don’t see the need for key fobs with different passwords so frequently with Wells Fargo.E-Trade would be better for their customers with large sums of money using the device with a new code ever 60 seconds.Barclays’ delays would not be as important to me, with smaller sums of money because I need immediate access at certain times.
9questionsWhat additional types of network security, not mentioned in the case above, would you recommend a bank implement?I think a device with fingerprint hardware would be very valuable to online bank users.Identify three policies a bank should implement to help it improve network information security.Be willing to change with technology.Make users change their passwords frequently.Have monitory verification managers to watch suspicious activity.
10Current informationVishing-(high-tech scheme, low-tech tool) using the telephone to ask for account informationMakes the caller ID look legitimate“phishing”-V stands for voiceIf you get a call requesting this information, hang up and call your bankIf it was a real bank request, they will let you give it when you call backOtherwise, report the callerVishing Scams-Dialing For Your DollarsBy Justin Pritchard, About.com