a novel security scheme for online banking based on virtual machine
文献类型:会议论文
| 作者 | Guan Bei ; Wu Yanjun ; Wang Yongji |
| 出版日期 | 2012 |
| 会议名称 | 2012 IEEE 6th International Conference on Software Security and Reliability Companion, SERE-C 2012 |
| 会议日期 | June 20, 2012 - June 22, 2012 |
| 会议地点 | Gaithersburg, MD, United states |
| 关键词 | C (programming language) Computer crime Computer simulation Internet protocols Software reliability Viruses Web services Websites |
| 页码 | 12-17 |
| 中文摘要 | Current online banking scheme built on ordinary software stack, which comprises of the operating system and its applications running on it, is facing attacks including Phishing, Pharming, Malicious Software Attacks (MSW), Man in the Middle Attacks (MITM) and Keylogger. Today's countermeasures either prevent only part of these attacks or have high cost on performance and usability. In this paper, we introduce the Domain Online Banking (DOBank), a novel security scheme for online banking that combines the virtual machine (VM) technology with web services. Firstly, DOBank encapsulates the banking service into a lightweight domain and protects it from any attacks caused by virus from the user's host. Secondly, the domain can access certain hardware devices exclusively against Keylogger and gains nearly native performance using the passthrough technology. Finally, we use the virtual Trusted Platform Module (vTPM) for the online banking domain's integrity verification as well as the SSL/TLS (Security Sockets Layer/Transport Layer Security) protocol for the confidentiality of data transaction over the internet. We show that this scheme is secure enough to prevent typical viruses that threaten the online banking. The experiments on the network throughput and the time consumed of integrity measurement show it adds little overhead to the overall system. © 2012 IEEE. |
| 英文摘要 | Current online banking scheme built on ordinary software stack, which comprises of the operating system and its applications running on it, is facing attacks including Phishing, Pharming, Malicious Software Attacks (MSW), Man in the Middle Attacks (MITM) and Keylogger. Today's countermeasures either prevent only part of these attacks or have high cost on performance and usability. In this paper, we introduce the Domain Online Banking (DOBank), a novel security scheme for online banking that combines the virtual machine (VM) technology with web services. Firstly, DOBank encapsulates the banking service into a lightweight domain and protects it from any attacks caused by virus from the user's host. Secondly, the domain can access certain hardware devices exclusively against Keylogger and gains nearly native performance using the passthrough technology. Finally, we use the virtual Trusted Platform Module (vTPM) for the online banking domain's integrity verification as well as the SSL/TLS (Security Sockets Layer/Transport Layer Security) protocol for the confidentiality of data transaction over the internet. We show that this scheme is secure enough to prevent typical viruses that threaten the online banking. The experiments on the network throughput and the time consumed of integrity measurement show it adds little overhead to the overall system. © 2012 IEEE. |
| 收录类别 | EI |
| 会议主办者 | IEEE Reliability Society |
| 会议录 | Proceedings of the 2012 IEEE 6th International Conference on Software Security and Reliability Companion, SERE-C 2012
 |
| 语种 | 英语 |
| ISBN号 | 9780769547435 |
| 源URL | [http://ir.iscas.ac.cn/handle/311060/15775]  |
| 专题 | 软件研究所_软件所图书馆_会议论文 |
| 推荐引用方式 GB/T 7714 | Guan Bei,Wu Yanjun,Wang Yongji. a novel security scheme for online banking based on virtual machine[C]. 见:2012 IEEE 6th International Conference on Software Security and Reliability Companion, SERE-C 2012. Gaithersburg, MD, United states. June 20, 2012 - June 22, 2012. |
入库方式: OAI收割
来源:软件研究所
浏览0
下载0
收藏0
其他版本
除非特别说明,本系统中所有内容都受版权保护,并保留所有权利。