Palisade Magazine
 
Mobile Banking Architecture

May 2007

Mobile Banking Architecture

by Suraj Sankaran

This two-part series on mobile banking security will help Bank security officers and auditors understand the security threats in Mobile banking. Here, I will present two popular mobile banking architectures and dive into the exchange of messages between the components. Next month, we will look at the threats inherent in this architecture and how to mitigate them.… more →

Wi-Fi Protected Access

by Balaji V

Wired Equivalent Privacy (WEP), the previous security mechanism for wireless LANs can today be broken in about 2 minutes. So wireless equipment vendors provided improved security mechanisms in their products. But these enhanced security mechanisms were proprietary and did not work with one another. So the Wi-Fi Alliance introduced Wi-Fi Protected Access – it has become an effective standard implemented across multi-vendor devices.… more →

QuizQuiz: CAPTCHAs

Which of these is not a recommended best practice for implementing CAPTCHAs?

  1. Have a fixed set of images with dynamic filenames
  2. Send the CAPTCHA to the client with a random token
  3. Invalidate the token after one use
  4. None of the above

more →

On the blog recently

Past quizzes

  • Nov '05 : Our applet implements an algorithm that's proprietary and a trade secret. How do I protect the algorithm from getting stolen at the browser?
  • Jul '05 :
  • Aug '05 : What kind of attacks does SSL prevent?
  • Apr '05 : How can I prevent Cross Site Scripting attacks on my application?
  • Oct '05 : Which logging mechanism is best to trace back to the culprit in case of an application fraud, for example, when a fraudster may have illegally transferred money from somebody else’s account to his own account?

Search this website

 Search website

Stay Informed

Want to know when the new issues are out? Just fill in your details, we will take care of notifying you when new issues are released:




Subscribe  Unsubscribe

Write to Us

All flowers, brickbats and suggestions are welcome. You can put in yours on the feedback page.

News & Events

  • 20.02.07. Paladion conducts Operational Risk Management Conference in Dubai, Bahrain
  • 27.11.06. Paladion enables ORC achieve ISO 27001:2005
  • 10.11.06. Deloitte’s Asia Pacific Technology Fast 500 calls Paladion/Plynt one of the fastest growing technology companies.
  • 10.11.06. Paladion/Plynt ranked among the fastest growing 50 technology companies in India by Deloitte.
  • 01.08.06. Rajat speaks on the current state of security in Financial firms outsourcing to India