Phishing is an online criminal activity using the collection of social engineering methods such as messages and emails to make the users to disclose their sensitive information such as personal details, username /password, etc. Since 2007 Net-Banking transactions are the target of the phishers. The strong techniques are required to avoid phishing attacks. In our paper, we proposed Multi Factor Authentication (MFA) and secure session key generation using Gaussian distribution to reduce the attacks caused by the phishers. Multi Factor Authentication technique authenticates the users using user's signature image recognition and secret question answer. After successful authentication of user using Multi Factor Authentication technique, session key generated using Gaussian distribution is sent to user's mobile phone. User proceeds with the transaction only after entering the session key received 1 . By incorporating above mentioned techniques users can perform online transactions safely and securely.
展开▼
