Mutual authentication for cardless ATM withdrawal using location factor
DOI:
https://doi.org/10.55674/snrujst.v14i2.245396Keywords:
Mutual Authentication, Cardless ATM withdrawal, Location FactorAbstract
Many banks offer cardless ATMs, using a mobile banking application on the smartphone to overcome the high risk of attack with traditional PIN-based cards. Several pieces of research into cardless ATMs have focused on security strengthening, while others have focused on improving usability. Extra hardware devices may be required to increase both security and usability. This paper presents a location-based mutual authentication scheme. This technique combines both security and usability to achieve usable security without requiring additional hardware at the ATM machine. In addition, this paper analyses and discusses the security and usability issues of the proposed scheme, comparing with other systems using a simulation study. The results show that the proposed system has higher security levels with an equivalent standard of usability.
References
F. Zhang, A. Kondoro, S. Muftic, Location-based authentication and authorization using smart phones, IEEE International, Conference on Trust Security and Privacy in Computing and Communications 2012, Liverpool UK. 25 – 27 June 2012, 1285 – 1292.
F. Aloul, S. Zahidi, W. El-Hajj, Two factor authentication using mobile phones, IEEE/ACS International Conference on Computer Systems and Applications 2009, Rabat Morocco. 10 – 13 May 2009, 641 – 644.
J. Kim, G. Sharma, I.S. Cardenas, D.Y. Kim, N. Prabakar, S. S. Iyengar, Dynamic PIN: A novel approach towards secure ATM authentication, International Conference on Computational Science and Computational Intelligence 2017, Las Vegas USA. 14 – 16 December 2017, 68 – 73.
M.A. Imran, M.F. Mridha, M.K. Nur, OTP based cardless transaction using ATM, International Conference on Robotics, Electrical and Signal Processing Techniques 2019, Dhaka Bangladesh. 10 – 12 January 2019, 511 – 516.
Cardless Withdrawal, at http://scb.co.th/th/pe
rsonal-banking/digital-banking/scb-easy/how-to/cardless.html, 18 January 2021.
K. NurL, M. Firoz Mridha, OTP based cardless transction using ATM, International Conference on Robotics, Electrical and Signal Processing Techniques (ICREST) 2019, Bangladesh. 10 – 12 January 2019, 511 – 516.
L. Sportiello, Internet of smart cards: a pocket attacks scenario, Int. J. Crit. Infrastruct. Prot. 26 (2019) 1 – 15.
Cardless Withdrawal, at http://kasikornbank.com/en/personal/digital-banking/kplus/fun ction/cardless-withdrawal/Pages/index.html, 18 January 2021.
R. Khan, R. Hasan, J. Xu, SEPIA: Secure-PIN-Authentication-as-a-Service for ATM using mobile and wearable devices, IEEE International Conference on Mobile Cloud Computing Services and Engineering 2015, San Francisco USA. 30 March – 3 April 2015, 41 – 50.
N. Hegde, K.R Sharath, Cardless ATM cash withdrawal: a simple and alternate approach, Int. J. Comput. Sci. Inf. Technol. 7(1) (2016) 126 – 128.
S.V. Watzdorf, F. Michahelles, Accuracy of positioning data on smartphones, ACM Press, New York, 2010.
F. Nisar, Location based authentication service using 4G/5G Devices, International Conference on Communication Technologies 2019, Military College of Signals Pakistan. 20 – 21 March 2019, 120 – 126.
A. KwangJong, J. Cho, The simple location-based authentication method using multi-layer display in Korea, J. Bus. Retail. Manag. Res. 13(4) (2019) 256 – 264.
L. Fridman, S. Weber, R. Greenstadt, M. Kam, Active authentication on mobile devices via stylometry application usage web browsing and GPS location, IEEE Syst J. 11(2) (2017) 513 – 521.
T. Maqua, R. Neff, M. Wbbeling, Improve ATM withdrawal security and usability with your smartphone, Computer Science Conference for University of Bonn Students 2016, University of Bonn. 25 May 2016, 86 – 97.
J. Aguirre, A. Moquillaza, F. Paz, A user-centered framework for the design of usable atm interfaces, in: Wang W. (Eds), Lecture Notes in Computer Science, Springer Publishing, New York, 2019, pp. 163 – 178.
N. Mathew, M. Jacob, R.M. Jose, S. Siby, N. Sekhar, QR based card-less ATM Transactions, Int. J. Sci. Res. Dev. 2(2) (2016) 81 – 83.
Downloads
Published
How to Cite
Issue
Section
License
Copyright (c) 2022 SNRU Journal of Science and Technology
This work is licensed under a Creative Commons Attribution-NonCommercial-NoDerivatives 4.0 International License.