Advertisement

04.19.2008 at 06:21AM PDT, ID: 23336511
[x]
Attachment Details

Bank Transaction receipts

Asked by tfewster in Miscellaneous Security, E-Commerce, Payment Processing Recommendation and Integrating

This seems such a blindingly obvious idea, I can't see why it isn't done already, so I'm looking for any feedback. Points will be distributed to anyone making a convincing point for or against.

When my banks online facility is used to make a _new_ transaction, I want to be sent a confirmation.  I like the convenience of Internet Banking, but I fear the security risks (As an IT professional, I know what can go wrong ;-)

It seems to me that the biggest risk is a phisher setting up a payment from a compromised account or changing account details; I suggest that any such "transactions" should be confirmed by email or SMS so customers would be immediately alerted and could block fraudulent transactions. Naturally, changing the registered email address and mobile number online would need to be disabled.

Not everyone has email or a mobile, but I'd guess > 99% of people who use online banking do. This doesn't stop phishing, but it could prevent the phisher actually profiting (So it _would_ reduce the number of phishing attempts).

I would not want email or mobile methods used for advertising material; That should remain a separate opt-in. I don't want receipts for all transactions, e.g. cheques or regular payments, as they're covered by other security - just "new" online ones. Though it would be nice to get a confirmation that my salary had been paid in!

I know that some phishers send fake receipts to try to get you to give them your bank details to "cancel" a transaction, e.g. http://www.cheshire.gov.uk/tradingstandards/scams/latest_scams.htm  That doesn't invalidate the idea, but _some_ education would be needed to teach customers not to click links. Actually, once they get used to their bank sending them receipts, phishing emails will stand out as being different.

This wouldn't be patentable as there is prior art - e.g. every e-tailer sends a receipt confirming transactions

Start Free Trial
 
Keywords: Bank Transaction receipts
 
Loading Advertisement...
 
[+][-]04.19.2008 at 07:13AM PDT, ID: 21392609

Often, when Experts are collaborating with members who have asked questions, they will request additional information about the problem. Askers respond with an author comment like this one.

Start your 7-day free trial to view this Author Comment or ask the Experts your question.

 
[+][-]04.19.2008 at 07:20AM PDT, ID: 21392652

Often, when Experts are collaborating with members who have asked questions, they will request additional information about the problem. Askers respond with an author comment like this one.

Start your 7-day free trial to view this Author Comment or ask the Experts your question.

 
[+][-]04.19.2008 at 07:54AM PDT, ID: 21392749

View this solution now by starting your 7-day free trial. Setting up your free trial is quick, easy, and secure. We will return you to this solution, unlocked, when you're done.

 

About this solution

Zones: Miscellaneous Security, E-Commerce, Payment Processing Recommendation and Integrating
Sign Up Now!
Solution Provided By: MentorJay
Participating Experts: 1
Solution Grade: C
 
 
[+][-]04.19.2008 at 08:13AM PDT, ID: 21392794

Often, when Experts are collaborating with members who have asked questions, they will request additional information about the problem. Askers respond with an author comment like this one.

Start your 7-day free trial to view this Author Comment or ask the Experts your question.

 
 
Loading Advertisement...
20080716-EE-VQP-32 / EE_QW_2_20070628