Security Market Segment LS
Thursday, 26 October 2017 10:11

Innovation before security not serving industry well: ID expert


Online banking has led the way in innovation before security and this is a major reason why the security environment is what it is today, Richard Cookes, country manager ANZ of identity and access management company One Identity, claims.

During an informal chat about technology and the implications for security, he told iTWire that banks had to consider how much marketshare they could gain before being the first to venture into new technology. Due to intra-industry competition, factors like cost of delay to market, potential financial and reputational losses if they are hacked and the ability to recover should they be compromised also had to be evaluated.

"The reality of it is that the cost of adding in security features may be more than the potential loss the organisation faces," Cookes said. "So it's possible that businesses will be deciding between accepting a loss and fixing the issue, depending on how badly their reputation is affected.

"Specifically, with banks, most can recover financially from hacks as the money is transferred from one account to another. So if the bank catches this in time they are able to reverse the transfer without any financial loss to the victim or bank."

Cookes said the first type of security offered for online banking, back in 2007, was a four-digit PIN to authenticate on a closed iPhone ecosystem.

RichardCookes vert"We now use fingerprint authentication and app-based one-time password authorisation as security mechanisms for mobile banking, which is widely used across all four major banks and is more secure than PC passwords. With that in mind, there is no doubt that in the near future banks will begin to move towards facial authentication as the preferred method for security."

He favoured biometric authentication and app-based OTP authorisation when it came to online banking. "People's biometrics are unique and with proper security measures in place, such as two-factor authentication it can be very difficult to breach," Cookes said.

"That being said, nothing is perfect when it comes to security and nothing is 100% secure. For example, facial recognition can be used to authenticate a user within extreme physical detail, but in order to get a 100% positive authentication it could take more than two minutes to scan someone's face.

"In the consumer world, nobody will wait two minutes in order to access their online banking, so the security measures needed to be scaled back to work within five or ten seconds, this allows the chance for people to falsely authenticate and gain access to bank accounts."

He said improvements were possible only with proper education. "Educational awareness is a big part of security today. Many people still don't understand the difference between fingerprint authentication on a phone versus password authentication on a PC. It's surprising to see that most people think PCs are more secure than phones and that fingerprint recognition is gimmicky and less secure."

Read 3106 times

Please join our community here and become a VIP.

Subscribe to ITWIRE UPDATE Newsletter here
JOIN our iTWireTV our YouTube Community here


The past year has seen a meteoric rise in ransomware incidents worldwide.

Over the past 12 months, SonicWall Capture Labs threat researchers have diligently tracked the meteoric rise in cyberattacks, as well as trends and activity across all threat vectors, including:

Encrypted threats
IoT malware
Zero-day attacks and more

These exclusive findings are now available via the 2022 SonicWall Cyber Threat Report, which ensures SMBs, government agencies, enterprises and other organizations have the actionable threat intelligence needed to combat the rising tide of cybercrime.

Click the button below to get the report.



It's all about Webinars.

Marketing budgets are now focused on Webinars combined with Lead Generation.

If you wish to promote a Webinar we recommend at least a 3 to 4 week campaign prior to your event.

The iTWire campaign will include extensive adverts on our News Site and prominent Newsletter promotion and Promotional News & Editorial. Plus a video interview of the key speaker on iTWire TV which will be used in Promotional Posts on the iTWire Home Page.

Now we are coming out of Lockdown iTWire will be focussed to assisting with your webinars and campaigns and assistance via part payments and extended terms, a Webinar Business Booster Pack and other supportive programs. We can also create your adverts and written content plus coordinate your video interview.

We look forward to discussing your campaign goals with you. Please click the button below.


Sam Varghese

Sam Varghese has been writing for iTWire since 2006, a year after the site came into existence. For nearly a decade thereafter, he wrote mostly about free and open source software, based on his own use of this genre of software. Since May 2016, he has been writing across many areas of technology. He has been a journalist for nearly 40 years in India (Indian Express and Deccan Herald), the UAE (Khaleej Times) and Australia (Daily Commercial News (now defunct) and The Age). His personal blog is titled Irregular Expression.

Share News tips for the iTWire Journalists? Your tip will be anonymous




Guest Opinion

Guest Interviews

Guest Reviews

Guest Research

Guest Research & Case Studies

Channel News