Companies Bid for Authentication Compliance Work
Financial institutions are getting started on security compliance regulations.
The new security standards for online banking, established in a report published earlier this month by the Federal Financial Institutions Examination Council (FFIEC), says banks need to use two-factor authentication to reduce the occurrence of account fraud and identity theft.
The standards, which call for institutions to use more measures than just names and passwords, are to be in place by the end of 2006.
''The rapid rise of online banking has created a tempting target for fraud and identity theft, and we are in complete agreement with the FFIEC on the need for stronger authentication,'' Stu Vaeth, chief security officer at Diversinet, said in a statement. ''We also believe that financial institutions deploying the right consumer security solutions will gain an important competitive advantage.''
The government's report, ''Authentication in an Internet Banking Environment'', says single-factor authentication is inadequate for high-risk transactions involving access to customer information or the movement of funds to other parties.