Slashdot Mirror

← Back to Stories (view on slashdot.org)

Bank on Your Cell Phone

Posted by CowboyNeal on from the little-big-business dept.

AnonGirl writes "Big banks are launching mobile banks to 'keep customers and generate more payment revenue down the line.' Citibank is working on two pilots: one with Obopay, and the other for contact-less payments. AT&T phones will have Wachovia already installed in their phones by fourth quarter 2007. The downside: 'Even though banks are not charging for their service, carriers do charge for accessing data through their phone.'"

18 of 89 comments (clear)

  1. How telling... by sethstorm · · Score: 2, Funny

    AT&T phones will have Wachovia already installed in their phones by fourth quarter 2007.
    I guess the "ph" in iPhone will get a strange emphasis with people's accounts "mysteriously drained" for some reason.

    --
    Twitter supports and protects racists - by smearing their critics with the "Hate Speech" label.
  2. I wonder... by Whuffo · · Score: 4, Insightful
    Did any of these banks actually do any analysis of the security of cell phone data?

    It hasn't been that long since Paris Hilton's cell got hacked and everyone got to see what she kept on her phone; maybe AT&T has better security on this stuff - but I'd bet not.

    I don't think this is going to turn out well...

    1. Re:I wonder... by ushering05401 · · Score: 2, Insightful

      When is the last time that a major company put security ahead of profits?

      Wouldn't it be nice if the internet, the greatest resource created in our time, was actually treated as a vital community resource... to be protected and respected by institutions, public and private alike.

      Unfortunately the net and all related tech will be exploited via the path of least resistance...

      Regards.

    2. Re:I wonder... by jorghis · · Score: 4, Interesting

      Well most stuff in the real world has pretty poor security. The thing that stops thieves is that whole "youll go to jail if you do this" thing. I mean how easy is it for a waiter to copy down your credit card number when he goes back to run it? Or take a quick cell phone picture when the guy in front of you in line hands the clerk his credit card. And yet somehow people still use their credit cards. I suspect that it is because we have this cool thing called law enforcement in this country that deters people from committing crimes. It wont be any easier to steal your info now than it was then.

      If anything I would trust this more because it actually has the potential (if implemented well) to be far more secure than a number printed on the front of the card for the world to see. Even if they are broadcasting data unencrypted it will still be more secure than regular credit card use because the difficulty of electronic eavesdropping is much higher than the difficulty of reading a number on a card.

    3. Re:I wonder... by Short+Circuit · · Score: 2, Informative

      When is the last time that a major company put security ahead of profits? Around here, banks are required to by law.
      --
      tasks(723) drafts(105) languages(484) examples(29106)
    4. Re:I wonder... by jshurst1 · · Score: 2, Insightful

      I'm a developer for one of the larger US banks and am currently in the pilot for the mobile personal banking rollout. I don't actually work on the mobile team, but I do have access to most of the internal security reports, and I can assure you that at least our company has thoroughly reviewed the many security concerns. Is it perfectly secure? No, and pretty much no system is. But from what I've read, the security risks are on par with (although different than) connecting to the bank through a personal computer.

      One interesting thing to note, is this is actually my employer's second rollout of personal mobile banking. They were the first major bank to offer mobile services (over a decade ago) but canceled the program because of lack of interest. Perhaps features looming on the horizon like "contact-less payments" will draw more attention, but the response amongst most my coworkers on the pilot has been pretty ho-hum: kind of neat, but I don't think I'd use it very often.

    5. Re:I wonder... by Foerstner · · Score: 3, Insightful

      The thing that stops thieves is that whole "youll go to jail if you do this" thing.

      That, right there, is why "cybercrime" is so attractive. Eavesdropping on an electronic signal can be done from anywhere, with no pesky eyewitnesses. The thieves believe that they'll never be caught, because there's practically no chance of them being observed in the act. Stupid but true.

      Even if they are broadcasting data unencrypted it will still be more secure than regular credit card use because the difficulty of electronic eavesdropping is much higher than the difficulty of reading a number on a card.

      If you're talking about random crimes of opportunity, you're right. But once word got out that a major provider was broadcasting data in the clear, serious criminals would organize and get busy. One reasonably tech-savvy criminal could farm out the actual data-gathering, using some automated tools, to a half-dozen lackeys who just know how to drive around, run a script and hold an antenna. There are plenty of serious credit-card-fraud syndicates out there. For such an organization, this would be just one low-risk way to get fresh numbers.

      --
      The US free market: two halves of a government-granted duopoly are free to set the market price.
  3. Is this new? by janek78 · · Score: 4, Informative

    I live in Europe and I've had my bank in my mobile phone for several years now (can't actually even remember how long). Making payments, checking balances, getting information. I also use my mobile to get the security confirmation code when using the online internet banking.

    True, the mobile does not have all the functions of internet banking, but it is good enough to transfer money to your friend who just paid the bill in a pub when you forgot your money at home. You just need to make sure you punch in the right number of zeros, in case you had more glasses to drink.

    1. Re:Is this new? by Anonymous Coward · · Score: 5, Insightful

      USA is a backwater for mobile technologies...

    2. Re:Is this new? by Rexdude · · Score: 2, Interesting

      In India, we've had this since 1999 or 2000. Initially the service was using SMS ('text messages' to u americans) codes sent to a predefined number.You can query account balance, summary of transactions, stop payments, cheque book requests and so on-for eg send 'BAL' to get your account balance. For security, you have to register your mobile number with the bank first-via a signed paper form. A few banks have even launched WAP portals ever since more users began to use GPRS/EDGE services. And the latest innovation from ICICI Bank is a J2ME application that sends the control SMSes on your behalf (so you don't have to remember them each time). Oh, and not just banking- SMS services are very common. TV channels frequently ask users to vote on various issues by sending an SMS. You can book movie tickets, airline/railway tickets, check booking status and departure schedules, choose to be alerted via SMS of any delays. The flip side-SMS spam offering credit cards, loans and insurance in addition to regular operator spam for content downloads.

      --
      "..One hosts to look them up, one DNS to find them, and in the darkness BIND them."
  4. My bank has worked with my mobile for a long time by dybdahl · · Score: 4, Informative

    The Danish bank http://www.jyskenetbank.dk/ easily works with Mobile Phones, and has done so for some time, at least a year, and probably for several years. Their official list of supported operating systems include Macintosh, Linux and Windows 3.1, and the homebanking system features all the usual stuff.

    I can even use my mobile phone to design a new picture for the front side of my next Visa card, in case I don't like any of the standard visa credit card looks, that the bank provides.

    And why does it work? They use standards-compliant HTML code, an OS independent authentication system and use few bytes per page view.

  5. really? by hjf · · Score: 3, Interesting

    I live in Argentina, and I've had this for a long time already. There are 2 ATM networks here. Link and Banelco. Link is usually used by government-owned banks, and Banelco for private banks. Banelco is years ahead of links in a lot of features, including mobile banking: a Java app where I can check account status, movements, balance, make transfers, pay bills, whatever. Citibank Argentina uses Banelco so yes, if I were a Citibank customer I'd have this feature too (but I am a customer of Standard Bank, formerly --2 months ago-- BankBoston. It was the last BankBoston in existence -- Fleet or Bank of America didn't rename it, so 2007 was the last time the brand "Boston" was used. Not a nice way of ending a bank that operated in my country (1790) since it was even a country (only in 1816 we had independence from Spain). Also Standard is so boring with their white-on-blue logo :)

    Oh, yes, Standard, like Boston (and HSBC, Citi, BBVA, Santander,...), uses Banelco. So I do have this feature (and a Visa debit card). And I use it quite often.

  6. Re:my phone is not an ATM by MobileTatsu-NJG · · Score: 3, Insightful

    My phone is not an ATM, why are they trying to make it like one? Sure, I can transfer balances on a whim to different accounts, but who really needs to do this on a regular (i.e. more than once a month) basis? And for those transfers like credit card payments, i'm sure you sit down in front of your computer at least ONCE a month.


    I agree with you today, but I'm not sure how I'd feel a year from now. I recently bought a Treo and have an unlimited data plan with Sprint. More and more I find myself using it to do things I normally do on the computer. I frequent Wikipedia, IMDB, Google News, and so on. Heck, I even found myself browsing Amazon a bit with it. The reason I'm using the phone instead of the computer? I'm often away from it. Amazon, for example, is great to peek at if I'm at a store and I find something I might want to get. I'll get a review and an idea of if the price is roughly in the right ballpark.

    Okay, I'm probably not thrilling you with my tales of my mighty Treo browsing experience, but hear me out. I often get hit with an idea to do something when I'm away from the computer, and the Treo's awfully available. Sometimes I'll be out and about and realize I haven't paid my credit card bill yet. Well, that's when I notice how limited it can be sometimes. I've found out that the silly site they use won't support it. That's a bummer, I end up having to remember to take care of it when I get home. That's all fine and dandy, nothing wrong with that, except it's crunch mode where I work right now. My mind is full of tasks and I have precious few hours in the day to handle my home expenses. My point is that I can see the appeal of something like this if it's handled well and securely. Necessary? Nah, but there are people out there it has the potential to be convenient to.

    I'm tired and I'm not sure how clear I'm being, so I'll put it a little more concisely: Yes, I am in front of a computer enough to take care of bills. However, I also find my phone is available at times when my computer isn't. It's not a cure for cancer, but it's semi-interesting to somebody like me who finds spare time to be a bit pricey.
    --

    "I like to lick butts!" by MobileTatsu-NJG (#32700246) (Score:5, Informative)

  7. The march of history by kahei · · Score: 4, Interesting

    So when this became commonplace in Japan, it wasn't news.
    And then when it became commonplace in Korea and Singapore, it still wasn't news.
    And then when it became commonplace in Europe, it still wasn't news.
    And then when it became common in Latin America (at least cities I've been to), it still wasn't news.
    But now... the USA is catching up! And that's *news* folks!

    And quite rightly. There weren't any barriers to the adoption of techs like this in asia etc., whereas in the US there has been a powerful, entrenched telecoms industry with no impetus to compete or change. If that barrier is becoming less effective then that could have important implications.

    The question is, is it just 'technological osmosis', or is there an actual change in the balance of power...

    Disclaimer: I don't even have a mobile (that works), so it's possible the barrier to progress is actually me.

    --
    Whence? Hence. Whither? Thither.
    1. Re:The march of history by mindstormpt · · Score: 2, Informative

      In Portugal and most european countries the service doesn't depend on the telco (we like the common carrier stuff). The bank provides a mobile site (the same way they offer the usual site) and you use it (it's also available by sms/voice). If someone didn't want to compete/change it was probably the banking industry.

  8. LINK in the UK by rapiddescent · · Score: 4, Informative
    Abbey National had a WAP mobile solution in 2000 that was simply a thin presentation veneer on their J2EE eBanking platform (that also served SKY Digital Satelite TV at the time). It was never very popular and has been switched off now - which is a pity because the guys working on this really struggled to get it the interface to work on a 12x6 char screen!

    back in the day (1998), I designed a mobile banking product for the palm pilot for the consultancy I worked for - the idea was that you could sync the palm pilot using IR through the front windows of the high street bank securly. needless to say, it never sold. for those that developed palm apps; it uses the palm prc identifier "BANK" !!!

    The bank I'm working at now is going down the mobile banking route. Here in the UK the operator of one of the largest cash machine (ATM) networks LINK is producing a national white labelled system so that all banks can buy into it at low risk. One of the problems with this is that with some 2 factor authentication schemes using the mobile phone will end up losing "a factor" and will have to use other 2 factor schemes such as one time passcode schemes or the APACS CAP EMV Cards with a card reader.

    The problem with the mobile devices is their security of static data - as much blogged by mikko at f-secure

    rd

  9. Bring down the prices by moosesocks · · Score: 4, Interesting

    The cell phone companies have a huge untapped market for customers that's completely inaccessible because of the massively high price of data plans.

    Once a provider starts offering a plan that either gives me a reasonable amount of data bundled in with my calling plan, or allows me to trade my talking minutes for the equivalent amount of data (I'd imagine that their costs would work out to be the same, given that everything's digital and is most likely routed alongside IP traffic).

    The problem is that cell providers in the US have an awful habit of nickel-and-diming their customers out of every little fee they can find. There's *NO* reason why a teeny-tiny text message should cost the same as a minute of talk time.

    Some day, one of the companies is going to realize this, and within two years (because of the stupid abusive-contracts-that-really-should-be-illegal) they'll have captured a huge share of the market. The service industries in America really need to learn to treat their customers like humans.

    --
    -- If you try to fail and succeed, which have you done? - Uli's moose
  10. This has been done in Norway for some time by bossmop · · Score: 2, Informative

    A Norwegian bank called sparebanken-hedmark (www.sparebanken-hedmark.no) has done this for about a year. They were also one of the first Norwegian banks who started with online banking. Thats actually quite funny since they are a regional bank in a region perceived as slow when it comes to development. I also see that there has been some comments on security, and the Norwegian bank is working closely with a Norwegian college and their programme of master study to ensure the security. Good to see that the big banks are following in an inevitable trend.