09-08-2012, 11:54 AM
TellerPass
1TellerPass.pdf (Size: 209.82 KB / Downloads: 22)
Introduction
In many countries, bank ATM machines strictly accept magnetic stripe cards. On many
occasions, fraudsters have successfully tapped ATM card inserts, red debit card's IDs,
captured the owners' PINs using micro-cameras or mock keyboards and built counterfeit
cloned debit cards; extracting money from the owner's account using another ATM, even
from across the globe. Tourists using ATMs in Southern Europe and the Balkans have
been especially vulnerable to attacks; although many of them use dual access smart- card / magnetic stripe debit or credit-cards to withdraw money from ATMs, most of the
local ATMs only employ the cards' magnetic stripes. PIN recording and playback is a
common attack method and a major problem for banks and their customers. A similar
case occurs in web-banking. Attackers try to capture login names and passwords to
devoid accounts from cash using spyware keyboard grabbers, phishing sites and social
engineering scams.
Practicability and business aspects
TellerPass is a mass market mobile application. It strong-holds over an established
hardware base, the SIM card, and aims to provide to cellphone users a fuss-free security
gadget that will make their transactions with universal eBanking services bulletproof and
transparent.
TellerPass addresses security lapses that cost international banks and their customers
millions of Euro in damages every year. ATM and web banking attacks cause an even
greater damage to the image of banking establishments. The necessary software
development from a bank's side is rather minimal and is estimated to cost no more than
two man-years per implementation (mainly due to back office database integration
services and ATM login server extensions involved).
The transmission and installation of the actual 3.5 Kbyte TellerPass applet to a cellphone
would cost something in the area of 0.10€/unit in bulk volume. Preliminary estimates
indicate that a TellerPass applet could be licensed for around 0.50€ - 0.70€ a piece,
according to negotiated terms and download volumes.
1TellerPass.pdf (Size: 209.82 KB / Downloads: 22)
Introduction
In many countries, bank ATM machines strictly accept magnetic stripe cards. On many
occasions, fraudsters have successfully tapped ATM card inserts, red debit card's IDs,
captured the owners' PINs using micro-cameras or mock keyboards and built counterfeit
cloned debit cards; extracting money from the owner's account using another ATM, even
from across the globe. Tourists using ATMs in Southern Europe and the Balkans have
been especially vulnerable to attacks; although many of them use dual access smart- card / magnetic stripe debit or credit-cards to withdraw money from ATMs, most of the
local ATMs only employ the cards' magnetic stripes. PIN recording and playback is a
common attack method and a major problem for banks and their customers. A similar
case occurs in web-banking. Attackers try to capture login names and passwords to
devoid accounts from cash using spyware keyboard grabbers, phishing sites and social
engineering scams.
Practicability and business aspects
TellerPass is a mass market mobile application. It strong-holds over an established
hardware base, the SIM card, and aims to provide to cellphone users a fuss-free security
gadget that will make their transactions with universal eBanking services bulletproof and
transparent.
TellerPass addresses security lapses that cost international banks and their customers
millions of Euro in damages every year. ATM and web banking attacks cause an even
greater damage to the image of banking establishments. The necessary software
development from a bank's side is rather minimal and is estimated to cost no more than
two man-years per implementation (mainly due to back office database integration
services and ATM login server extensions involved).
The transmission and installation of the actual 3.5 Kbyte TellerPass applet to a cellphone
would cost something in the area of 0.10€/unit in bulk volume. Preliminary estimates
indicate that a TellerPass applet could be licensed for around 0.50€ - 0.70€ a piece,
according to negotiated terms and download volumes.