All Topics  
Online banking

 

 
   Email Print
   Bookmark   Link
 

 

Online banking
 
 
  Topics Online banking Topic Home

Online banking (or Internet banking) allows customers to conduct financial transactions on a secure website operated by their retail or virtual
Virtual bank

A direct bank is a bank without any branch . It offers its financial services by:* Telephone banking* Online banking* Automated teller machines ...
 bank
Bank

A bank is a financial institution whose primary activity is to act as a payment agent for customers and to borrow and lend money. It is an institution for receiving, keeping, and lending money....
, credit union
Credit union

A credit union is a Cooperative banking financial institution that is owned and controlled by its members, and operated for the purpose of promoting thrift, providing credit at reasonable rates, and providing other financial services to its members....
 or building society
Building society

A building society is a financial institution, Mutual organization, that offers Banking institution and other financial services, especially mortgage loan....
.

ne banking solutions have many features and capabilities in common, but traditionally also have some that are application specific.

The common features fall broadly into several categories:



Features commonly unique to business banking include:

Features commonly unique to Internet banking include:

History
The precursor for the modern home online banking services were the distance banking services over electronic media from the early '80s.






Discussion
Ask a question about 'Online banking'
Start a new discussion about 'Online banking'
Answer questions from other users
Full Discussion Forum



Encyclopedia


Online banking (or Internet banking) allows customers to conduct financial transactions on a secure website operated by their retail or virtual
Virtual bank

A direct bank is a bank without any branch . It offers its financial services by:* Telephone banking* Online banking* Automated teller machines ...
 bank
Bank

A bank is a financial institution whose primary activity is to act as a payment agent for customers and to borrow and lend money. It is an institution for receiving, keeping, and lending money....
, credit union
Credit union

A credit union is a Cooperative banking financial institution that is owned and controlled by its members, and operated for the purpose of promoting thrift, providing credit at reasonable rates, and providing other financial services to its members....
 or building society
Building society

A building society is a financial institution, Mutual organization, that offers Banking institution and other financial services, especially mortgage loan....
.

Features

Online banking solutions have many features and capabilities in common, but traditionally also have some that are application specific.

The common features fall broadly into several categories:
  • Transactional (e.g., performing a financial transaction such as an account to account transfer, paying a bill, wire transfer... and applications... apply for a loan, new account, etc.)
    • Electronic bill presentment and payment - EBPP
      EBPP

      Electronic Billing is the electronic delivery and presentation of financial statements, Bill s, invoices, and related information sent by a company to its customers....
    • Funds transfer
      Giro

      A giro or giro transfer is a method of payment. It is the opposite of a cheque, which is given to a payee who deposits it in a bank. A giro is given by the payer to his bank, which transfers funds into the payee's bank account....
       between a customer's own checking and savings account
      Savings account

      Savings accounts are accounts maintained by retail financial institutions that pay interest but can not be used directly as money . These accounts let customers set aside a portion of their liquid assets while earning a monetary return....
      s, or to another customer's account
    • Investment
      Investment

      Investment or investing is a term with several closely-related meanings in business management, finance and economics, related to Saving or deferring Consumption ....
       purchase or sale
    • Loan
      Loan

      A loan is a type of debt. This article focuses exclusively on monetary loans, although, in practice, any material object might be lent. Like all debt instruments, a loan entails the redistribution of financial assets over time, between the wiktionary:lender and the wiktionary:borrower....
       applications and transactions, such as repayments


  • Non-transactional (e.g., online statements, check links, cobrowsing, chat)
    • Bank statement
      Bank statement

      An account statement or a bank statement is a summary of all financial transactions occurring over a given period of time on a deposit account, a credit card, or any other type of account offered by a financial institution....
      s
  • Financial Institution Administration - features allowing the financial institution to manage the online experience of their end users
  • ASP/Hosting Administration - features allowing the hosting company to administer the solution across financial institutions


Features commonly unique to business banking include:
  • Support of multiple users having varying levels of authority
  • Transaction approval process
  • Wire transfer


Features commonly unique to Internet banking include:
  • Personal financial management support, such as importing data into personal accounting software
    Accounting software

    Accounting software is application software that records and processes accounting transactions within functional modules such as accounts payable, accounts receivable, payroll, and trial balance....
    . Some online banking platforms support account aggregation
    Account aggregation

    Account aggregation is a method that involves compiling information from different accounts, which may include bank accounts, credit card accounts, investment accounts, and other consumer or business accounts, into a single place....
     to allow the customers to monitor all of their accounts in one place whether they are with their main bank or with other institutions...


History


The precursor for the modern home online banking services were the distance banking services over electronic media from the early '80s. The term online became popular in the late '80s and referred to the use of a terminal, keyboard and TV (or monitor) to access the banking system using a phone line. ‘Home banking’ can also refer to the use of a numeric keypad to send tones down a phone line with instructions to the bank. Online services started in New York in 1981 when four of the city’s major banks (Citibank
Citibank

Citibank is a major international bank, founded in 1812 as the City Bank of New York, later First National City Bank of New York. Citibank is now the consumer banking arm of financial services giant Citigroup, one of the largest companies in the world....
, Chase Manhattan, Chemical and Manufacturers Hanover) offered home banking services using the videotex
Videotex

Videotex was one of the earliest implementations of an "end-user information system". From the late 1970s to mid-1980s, it was used to deliver information to a user in computer-like format, typically to be displayed on a television....
 system. Because of the commercial failure of videotex these banking services never became popular except in France where the use of videotex (Minitel
Minitel

The Minitel is a Videotex online service accessible through the telephone lines, and is considered one of the world's most successful pre-World Wide Web online services....
) was subsidised by the telecom provider and the UK, where the Prestel
Prestel

Prestel , the brand name for the UK Post Office UK's Viewdata technology, was an interactive videotex system developed during the late 1970s and commercially launched in 1979....
 system was used.

The UK’s first home online banking services was set up by the Nottingham Building Society
Nottingham Building Society

Nottingham Building Society is a building society founded in 1849 by a group led by Samuel Fox , a Quaker and prominent local grocer. The purpose of the society was to promote the construction of a better class of dwellings, suitable for the working and middle classes, as well as provide a safe and profitable place for small savings....
 (NBS) in 1983 . The system used was based on the UK's Prestel
Prestel

Prestel , the brand name for the UK Post Office UK's Viewdata technology, was an interactive videotex system developed during the late 1970s and commercially launched in 1979....
 system and used a computer, such as the BBC Micro
BBC Micro

The BBC Microcomputer System, or BBC Micro, was a series of microcomputers and associated peripherals designed and built by Acorn Computers for the BBC Computer Literacy Project, operated by the British Broadcasting Corporation....
, or keyboard (Tandata Td1400) connected to the telephone system and television set. The system (known as 'Homelink
Homelink

Homelink was the UK's first online banking system. It was set up by the Nottingham Building Society in 1983 in association with the Bank of Scotland, using the UK Post Office 's Prestel Viewdata system....
') allowed on-line viewing of statements, bank transfers and bill payments. In order to make bank transfers and bill payments, a written instruction giving details of the intended recipient had to be sent to the NBS who set the details up on the Homelink system. Typical recipients were gas, electricity and telephone companies and accounts with other banks. Details of payments to be made were input into the NBS system by the account holder via Prestel. A cheque was then sent by NBS to the payee and an advice giving details of the payment was sent to the account holder. BACS
BACS

BACS is a United Kingdom scheme for the electronic processing of financial transactions. Direct Debits and BACS Direct Credits are made using the BACS system....
 was later used to transfer the payment directly.

Stanford Federal Credit Union was the first financial institution to offer online internet banking services to all of its members in Oct, 1994.

Security


Protection through single password
Password

A password is a secret word or string of Character that is used for authentication, to prove identity or gain access to a resource . The password must be kept Secrecy from those not allowed access....
 authentication
Authentication

Authentication is the act of establishing or confirming something as authentic, that is, that claims made by or about the subject are true....
, as is the case in most secure Internet shopping sites, is not considered secure enough for personal online banking applications in some countries. Basically there exist two different security methods for online banking.
  • The PIN
    Personal identification number

    A personal identification number is a secret numeric password shared between a user and a system that can be used to authenticate the user to the system....
    /TAN
    Transaction authentication number

    A Transaction authentication number or TAN is used by some online banking services as a form of single use one-time passwords to authorize financial transactions....
     system where the PIN represents a password, used for the login and TANs representing one-time password
    One-time password

    The purpose of a one-time password is to make it more difficult to gain unauthorized access to restricted resources, like a computer account. Traditionally static passwords can more easily be accessed by an unauthorized intruder given enough attempts and time....
    s to authenticate transactions. TANs can be distributed in different ways, the most popular one is to send a list of TANs to the online banking user by postal letter. The most secure way of using TANs is to generate them by need using a security token
    Security token

    A security token may be a physical device that an authorized user of computer services is given to ease authentication. The term may also refer to software tokens....
    . These token generated TANs depend on the time and a unique secret, stored in the security token (this is called two-factor authentication
    Two-factor authentication

    An authentication factor is a piece of information and process used to authenticate or verify a person's identity or other entity requesting access under security constraints....
     or 2FA). Usually online banking with PIN/TAN is done via a web browser using SSL secured connections, so that there is no additional encryption needed.
  • Signature based online banking where all transactions are signed and encrypted digitally. The Keys for the signature generation and encryption can be stored on smartcards or any memory medium, depending on the concrete implementation.


Attacks

Most of the attacks on online banking used today are based on deceiving the user to steal login data and valid TANs. Two well known examples for those attacks are phishing
Phishing

In the field of computer security, phishing is the criminally fraudulent process of attempting to acquire sensitive information such as usernames, passwords and credit card details by masquerading as a trustworthy entity in an electronic communication....
 and pharming
Pharming

Pharming is a Black hat's attack aiming to redirect a website's traffic to another, bogus website. Pharming can be conducted either by changing the hosts file on a victim?s computer or by Exploit of a vulnerability in Domain name system software....
. Cross-site scripting
Cross-site scripting

Cross-site scripting is a type of computer insecurity vulnerability typically found in web applications which allow code injection by malicious web users into the web pages viewed by other users....
 and keylogger/Trojan horses
Trojan horse (computing)

The Trojan horse, also known as trojan, in the context of computer software, describes a class of computer threats that appears to perform a desirable function but in fact performs undisclosed malicious functions that allow unauthorized access to the host machine, giving them the ability to save their files on the user's computer...
 can also be used to steal login information.

A method to attack signature based online banking methods is to manipulate the used software in a way, that correct transactions are shown on the screen and faked transactions are signed in the background.

A recent FDIC Technology Incident Report, compiled from suspicious activity reports banks file quarterly, lists 536 cases of computer intrusion, with an average loss per incident of $30,000. That adds up to a nearly $16-million loss in the second quarter of 2007. Computer intrusions increased by 150 percent between the first quarter of 2007 and the second. In 80 percent of the cases, the source of the intrusion is unknown but it occurred during online banking, the report states.

Countermeasures

There exist several countermeasures which try to avoid attacks. Digital certificates are used against phishing and pharming, the use of class-3 card readers is a measure to avoid manipulation of transactions by the software in signature based online banking variants. To protect their systems against Trojan horses, users should use virus scanners and be careful with downloaded software or e-mail attachments.

In 2001 the FFIEC issued guidance for multifactor authentication (MFA) and then required to be in place by the end of 2006.

See also

  • Current account
  • Enhanced Telephone
    Enhanced Telephone

    The Enhanced Telephone is a telephone developed by Citibank in the late 1980s for customers to do banking and other financial transactions from their home....
  • Guide to E-payments
  • Mobile banking
    Mobile Banking

    Mobile banking is a term used for performing balance checks, account transactions, payments etc. via a mobile device such as a mobile phone. Mobile banking today is most often performed via SMS or the Mobile Internet but can also use special programs called clients downloaded to the mobile device....
  • Online lenders
    Online lenders

    Online lenders make loans to consumers via computer websites, online. Online lenders generally provide loan information, application forms, email or instant message assistance right on their website....
  • On-line and off-line
  • SMS Banking
    SMS Banking

    SMS banking is a technology-enabled service offering from banks to its customers, permitting them to operate selected banking services over their mobile phones using SMS ....
  • Telephone banking
    Telephone banking

    Telephone banking is a service provided by a financial institution which allows its customers to perform financial transaction over the telephone....