Security Market Segment LS
Thursday, 26 October 2017 10:11

Innovation before security not serving industry well: ID expert

By

Online banking has led the way in innovation before security and this is a major reason why the security environment is what it is today, Richard Cookes, country manager ANZ of identity and access management company One Identity, claims.

During an informal chat about technology and the implications for security, he told iTWire that banks had to consider how much marketshare they could gain before being the first to venture into new technology. Due to intra-industry competition, factors like cost of delay to market, potential financial and reputational losses if they are hacked and the ability to recover should they be compromised also had to be evaluated.

"The reality of it is that the cost of adding in security features may be more than the potential loss the organisation faces," Cookes said. "So it's possible that businesses will be deciding between accepting a loss and fixing the issue, depending on how badly their reputation is affected.

"Specifically, with banks, most can recover financially from hacks as the money is transferred from one account to another. So if the bank catches this in time they are able to reverse the transfer without any financial loss to the victim or bank."

Cookes said the first type of security offered for online banking, back in 2007, was a four-digit PIN to authenticate on a closed iPhone ecosystem.

RichardCookes vert"We now use fingerprint authentication and app-based one-time password authorisation as security mechanisms for mobile banking, which is widely used across all four major banks and is more secure than PC passwords. With that in mind, there is no doubt that in the near future banks will begin to move towards facial authentication as the preferred method for security."

He favoured biometric authentication and app-based OTP authorisation when it came to online banking. "People's biometrics are unique and with proper security measures in place, such as two-factor authentication it can be very difficult to breach," Cookes said.

"That being said, nothing is perfect when it comes to security and nothing is 100% secure. For example, facial recognition can be used to authenticate a user within extreme physical detail, but in order to get a 100% positive authentication it could take more than two minutes to scan someone's face.

"In the consumer world, nobody will wait two minutes in order to access their online banking, so the security measures needed to be scaled back to work within five or ten seconds, this allows the chance for people to falsely authenticate and gain access to bank accounts."

He said improvements were possible only with proper education. "Educational awareness is a big part of security today. Many people still don't understand the difference between fingerprint authentication on a phone versus password authentication on a PC. It's surprising to see that most people think PCs are more secure than phones and that fingerprint recognition is gimmicky and less secure."


Subscribe to ITWIRE UPDATE Newsletter here

Now’s the Time for 400G Migration

The optical fibre community is anxiously awaiting the benefits that 400G capacity per wavelength will bring to existing and future fibre optic networks.

Nearly every business wants to leverage the latest in digital offerings to remain competitive in their respective markets and to provide support for fast and ever-increasing demands for data capacity. 400G is the answer.

Initial challenges are associated with supporting such project and upgrades to fulfil the promise of higher-capacity transport.

The foundation of optical networking infrastructure includes coherent optical transceivers and digital signal processing (DSP), mux/demux, ROADM, and optical amplifiers, all of which must be able to support 400G capacity.

With today’s proprietary power-hungry and high cost transceivers and DSP, how is migration to 400G networks going to be a viable option?

PacketLight's next-generation standardised solutions may be the answer. Click below to read the full article.

CLICK HERE!

WEBINAR PROMOTION ON ITWIRE: It's all about webinars

These days our customers Advertising & Marketing campaigns are mainly focussed on webinars.

If you wish to promote a Webinar we recommend at least a 2 week campaign prior to your event.

The iTWire campaign will include extensive adverts on our News Site itwire.com and prominent Newsletter promotion https://www.itwire.com/itwire-update.html and Promotional News & Editorial.

This coupled with the new capabilities 5G brings opens up huge opportunities for both network operators and enterprise organisations.

We have a Webinar Business Booster Pack and other supportive programs.

We look forward to discussing your campaign goals with you.

MORE INFO HERE!

BACK TO HOME PAGE
Sam Varghese

website statistics

Sam Varghese has been writing for iTWire since 2006, a year after the site came into existence. For nearly a decade thereafter, he wrote mostly about free and open source software, based on his own use of this genre of software. Since May 2016, he has been writing across many areas of technology. He has been a journalist for nearly 40 years in India (Indian Express and Deccan Herald), the UAE (Khaleej Times) and Australia (Daily Commercial News (now defunct) and The Age). His personal blog is titled Irregular Expression.

Share News tips for the iTWire Journalists? Your tip will be anonymous

WEBINARS ONLINE & ON-DEMAND

GUEST ARTICLES

VENDOR NEWS

Guest Opinion

Guest Interviews

Guest Reviews

Guest Research

Guest Research & Case Studies

Channel News

Comments