ING Direct has strengthened its online banking security with the launch of two-factor, two-way authentication for all its customers.
It is using RSA’s just launched Adaptive Authentication tokenless technology, which leans heavily on the firm’s recently acquired Passmark Security software, to add another layer of security to its website.
The technology works by using a customer's PC or handheld device as the second-factor hardware device. The RSA system provides a positive identification based on device and network forensics, behavioural analysis and other parameters.
Customers registering for the service select an image from a library and create a personal phrase, which they will recognise when logging into their accounts. They also answer at least five security questions.
After enrolment, when a customer logs in, they need to answer two of the security questions and then select their image and input their phrase. According to ING, this approach means that users will be able to verify that it is safe to log in.
The system additionally scores transactions according to the perceived level of risk and automatically adds further security measures such as secret questions or an automated phone call if needed.
Vote for your IT greats
Who have been the most influential people in IT in the past 40 years? The greatest organisations? The best hardware and software technologies? As part of Computer Weekly’s 40th anniversary celebrations, we are asking our readers who and what has really made a difference?
Vote now at: www.computerweekly.com/ITgreats