Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
A
A
alpa_kz2017-03-07 16:01:15
Encryption
alpa_kz, 2017-03-07 16:01:15

How to protect the client-bank application from hacking?

There are many articles that talk about the theft of money from Bank customers. The main mistake is that the client application is infected, because of this, the attacker gains access to the application. And with the next money transfer, the money goes to the hacker's account. How to protect the client side, and the server side, and the database in which the transactions of the bank's clients take place. Can you share ways and methods. Or give information about the current vulnerability of banking applications ???
------------------------------
Can you tell me what vulnerabilities often remain in client applications? or How to protect the server from penetration from a client application error?

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

3 answer(s)
Report
N
nirvimel, 2017-03-07
@nirvimel

Training:
Work:
Just don't say it's NOT GOOD.
First, it's not true; starting / stopping / rolling back VirtualBox (for example) is no more difficult than printing an invoice in 1C.
Secondly, even if it were really not convenient, it would still not matter when it comes to the security of banking operations.

Report
S
Spetros, 2017-03-07
@Spetros

Payment Application Data Security Standard (PA-DSS)

Report
D
Dmitry Ivanov, 2017-03-07
@Hopkins777

Not so simple. It is no accident that they steal money even from the largest banks (Sberbank, VTB, etc.). They also monitor safety and do everything possible. BUT there are two big problems. Firstly: in order to steal money, you don’t need to hack the client, you just need to gain access to the device. The device is also not 100% secure. Viruses have not been canceled - they will always be. Secondly: you can’t come up with protection from the human factor (installing unknown applications, visiting various kinds of sites, reporting your personal data). Therefore, you will not protect the client side by 100%. Server even more or less can be protected from external attacks. It's not so easy on the client side. As for the data, no one will tell you the current data. That's why they are relevant - if you tell them to everyone - the banks will recognize them - they will come up with protection. And so only a few know it - they use it.

Similar questions
P
Pavel2018-08-31 08:09:39
How to properly encrypt text in openssl? 0Reply
E
Evgeny2016-04-11 13:59:53
Is it possible to use one pair of keys for both encryption and EDS? 3Reply
A
Alexey Koval2016-04-12 11:50:58
Are there crypto containers with the ability to change their size? 1Reply
C
Chesterfield252021-12-04 18:41:23
How to hide a link? 0Reply
W
wutiarn2014-03-01 17:25:44
How to implement websocket traffic encryption between angular application and python server without ssl? 2Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question