Anti-Phishing Strong Authentication Technology Options

摘要

The United States banking industry has been directed by its regulatory agencies to provide authentication stronger than single factor for "high risk" transactions, as a defense against phishing. Financial institutions have a wide array of options available to them to meet this requirement, and choosing among those options is likely not a simple matter. Factors involved in the decision process include usability, security, and acceptability to the regulatory agencies. This paper presents an overview of the options available in the commercial market, and proposes future research to monitor the activities of financial institutions as they move toward the deadline.