Access member only content, take part in discussions with comments on blogs, news and reviews and receive all the latest security industry news directly to your inbox. Join now for free.
A confirmation email has been sent to your email address - SUPPLIED EMAIL HERE. Please click on the link in the email to verify your email address. You need to verify your email before you can start posting.
If you do not receive your confirmation email within the next few minutes, it may be because the email has been captured by a junk mail filter. Please ensure you add the domain @scmagazine.com.au to your white-listed senders.
An Australian inventor says his flexible personal identification number is the answer to baffle cyber crooks and ATM skimmers.
The FlexiPIN is a form of two-factor authentication that exercises its user's intellectual muscles rather than relying on a device such as a mobile phone or a token.
The user needs to know four numbers, as they would with a traditional PIN, but these are combined using a formula in different ways each time the user enters their authentication details. Users registered with their financial institution or e-commerce provider prior to first using the FlexiPIN to determine their formula and other details.
Inventor Gabby Molnar said the system relied on the user being able to do simple mathematics in their head to access their account.
"A person who tested my program works for the police and she had her card skimmed not so long ago - she's about 28 years old and she had no problems whatsoever," Molnar said. "She said it's even easier to remember than her regular PIN."
The user chooses two numbers and then a formula (such as adding the first integer of the PIN to the minute displayed on screen) and from those selects where the resulting sum is placed in the PIN's chain.
Molnar said that using such a system it would be safe to share FlexiPINs with friends for one-time transactions and keystroke loggers would be powerless because the keys would be different each time.
He said the probability of guessing the code was 7000 to one.
Molnar, who had a background developing e-commerce websites, wanted to speak to banks and providers of physical security systems to licence to them the concept on which a patent is pending.
To begin commenting right away, you can log in below or register an account if you don't yet have one. Please read our guidelines on commenting. Offending posts will be removed and your access may be suspended. Abusive or obscene language will not be tolerated. The comments below do not necessarily reflect the views or opinions of SC Magazine, Haymarket Media or its employees.