Internet banks insecure
Researchers at the University of Bergen (Department of Informatics) broke into Norwegian Internet banks from March to November to demonstrate their lack of security. Arne Skauge insists that the BankID system is fully secure. PHOTO: Furulund Svein Erik |
| Related stories: |
| Demands better net bank safety - 20.09.2006 |
| Electronic banking services down for the count - 09.05.2006 |
| Data security dangers widespread - 07.03.2006 |
| Customers liable in Internet banking theft - 08.09.2004 |
UiB professor Kjell Jørgen Hole argues that the ID system used by Norwegian net banks is vulnerable to crime, NRK (Norwegian Broadcasting) reports.
"The banks' ID system has, in the opinion of myself and other researchers, serious design flaws," Hole told NRK.
Arne Skauge of the Norwegian Financial Services Association (FNH) believes the banks' systems are completely secure, and that the researchers are not aware of all of the security systems in place.
"Of course business is aware of this but there is nothing in this that should make BankID customers uncertain about the security of the system. There is every reason to believe in a year and a half 2.5 million Internet banking customers in Norway will use BankID as their signature and identification.
A decision is about to be made on which system of electronic identification will be used for secure signatures on the Internet, for use on, for example, public documents. As the owner of BankID, the FNH has a clear interest in the selection of their system.
Minister of Government Administration and Reform Heidi Grande Røys refused to agree that BankID is in practical terms already chosen as the security solution, and said the decision about a national electronic signature method has yet to be taken, NRK reports.
Aftenposten English Web Desk
Jonathan Tisdall
No comments:
Post a Comment