|
Title:
|
HOME-BANKING SECURITY: A CASE STUDY |
|
Author(s):
|
Rafael Dueire Lins |
|
ISBN:
|
972-99353-6-X |
|
Editors:
|
Nuno Guimarães and Pedro Isaías |
|
Year:
|
2005 |
|
Edition:
|
1 |
|
Keywords:
|
Web Security, Home-Banking, Attacks, Java. |
|
Type:
|
Full Paper |
|
First Page:
|
321 |
|
Last Page:
|
328 |
|
Language:
|
English |
|
Cover:
|
|
|
Full Contents:
|
click to dowload 
|
|
Paper Abstract:
|
By the end of 1997, André Santos, Brazilian, doctoral student in computational system security at University of California at Santa Barbara, made public his attacks to the home banking system of Bank of Brazil. His attitude damaged the trust customers had in the service offered, causing direct and indirect financial losses to the Bank. Almost a year later, unable to explain the still frequent attacks, the Bank of Brazil presented the problem and the available information to the author of this paper. In October 1998, a hypothesis was formulated to explain the attacks. Since then, no doubt has been cast upon it. On the contrary, evidences corroborate the validity of the explanation provided. This paper presents the attack scenario step-by-step, together with evidences that strengthen its validity. Seven years after the attacks were perpetrated, the possibility of performing similar attacks has only grown stronger. Several ways of avoiding the same or similar attacks are presented. |
|
|
|
|
|
|
