中国科学院软件研究所机构知识库
Advanced  
ISCAS OpenIR  > 软件所图书馆  > 会议论文
Title:
a novel security scheme for online banking based on virtual machine
Author: Guan Bei ; Wu Yanjun ; Wang Yongji
Source: Proceedings of the 2012 IEEE 6th International Conference on Software Security and Reliability Companion, SERE-C 2012
Conference Name: 2012 IEEE 6th International Conference on Software Security and Reliability Companion, SERE-C 2012
Conference Date: June 20, 2012 - June 22, 2012
Issued Date: 2012
Conference Place: Gaithersburg, MD, United states
Keyword: C (programming language) ; Computer crime ; Computer simulation ; Internet protocols ; Software reliability ; Viruses ; Web services ; Websites
Indexed Type: EI
ISBN: 9780769547435
Department: (1) National Engineering Research Center for Fundamental Software Institute of Software China; (2) State Key Laboratory of Computer Science Institute of Software China; (3) Graduate University Chinese Academy of Sciences Beijing 100049 China
Sponsorship: IEEE Reliability Society
Abstract: Current online banking scheme built on ordinary software stack, which comprises of the operating system and its applications running on it, is facing attacks including Phishing, Pharming, Malicious Software Attacks (MSW), Man in the Middle Attacks (MITM) and Keylogger. Today's countermeasures either prevent only part of these attacks or have high cost on performance and usability. In this paper, we introduce the Domain Online Banking (DOBank), a novel security scheme for online banking that combines the virtual machine (VM) technology with web services. Firstly, DOBank encapsulates the banking service into a lightweight domain and protects it from any attacks caused by virus from the user's host. Secondly, the domain can access certain hardware devices exclusively against Keylogger and gains nearly native performance using the passthrough technology. Finally, we use the virtual Trusted Platform Module (vTPM) for the online banking domain's integrity verification as well as the SSL/TLS (Security Sockets Layer/Transport Layer Security) protocol for the confidentiality of data transaction over the internet. We show that this scheme is secure enough to prevent typical viruses that threaten the online banking. The experiments on the network throughput and the time consumed of integrity measurement show it adds little overhead to the overall system. © 2012 IEEE.
English Abstract: Current online banking scheme built on ordinary software stack, which comprises of the operating system and its applications running on it, is facing attacks including Phishing, Pharming, Malicious Software Attacks (MSW), Man in the Middle Attacks (MITM) and Keylogger. Today's countermeasures either prevent only part of these attacks or have high cost on performance and usability. In this paper, we introduce the Domain Online Banking (DOBank), a novel security scheme for online banking that combines the virtual machine (VM) technology with web services. Firstly, DOBank encapsulates the banking service into a lightweight domain and protects it from any attacks caused by virus from the user's host. Secondly, the domain can access certain hardware devices exclusively against Keylogger and gains nearly native performance using the passthrough technology. Finally, we use the virtual Trusted Platform Module (vTPM) for the online banking domain's integrity verification as well as the SSL/TLS (Security Sockets Layer/Transport Layer Security) protocol for the confidentiality of data transaction over the internet. We show that this scheme is secure enough to prevent typical viruses that threaten the online banking. The experiments on the network throughput and the time consumed of integrity measurement show it adds little overhead to the overall system. © 2012 IEEE.
Language: 英语
Content Type: 会议论文
URI: http://ir.iscas.ac.cn/handle/311060/15775
Appears in Collections:软件所图书馆_会议论文

Files in This Item:

There are no files associated with this item.


Recommended Citation:
Guan Bei,Wu Yanjun,Wang Yongji. a novel security scheme for online banking based on virtual machine[C]. 见:2012 IEEE 6th International Conference on Software Security and Reliability Companion, SERE-C 2012. Gaithersburg, MD, United states. June 20, 2012 - June 22, 2012.
Service
Recommend this item
Sava as my favorate item
Show this item's statistics
Export Endnote File
Google Scholar
Similar articles in Google Scholar
[Guan Bei]'s Articles
[Wu Yanjun]'s Articles
[Wang Yongji]'s Articles
CSDL cross search
Similar articles in CSDL Cross Search
[Guan Bei]‘s Articles
[Wu Yanjun]‘s Articles
[Wang Yongji]‘s Articles
Related Copyright Policies
Null
Social Bookmarking
Add to CiteULike Add to Connotea Add to Del.icio.us Add to Digg Add to Reddit
所有评论 (0)
暂无评论
 
评注功能仅针对注册用户开放,请您登录
您对该条目有什么异议,请填写以下表单,管理员会尽快联系您。
内 容:
Email:  *
单位:
验证码:   刷新
您在IR的使用过程中有什么好的想法或者建议可以反馈给我们。
标 题:
 *
内 容:
Email:  *
验证码:   刷新

Items in IR are protected by copyright, with all rights reserved, unless otherwise indicated.

 

 

Valid XHTML 1.0!
Copyright © 2007-2019  中国科学院软件研究所 - Feedback
Powered by CSpace