• Mehr als 3 Millionen Wörter Inhalt
  • |
  • info@itmedialaw.com
  • |
  • Tel: 03322 5078053
Rechtsanwalt Marian Härtel - ITMediaLaw

No products in the cart.

  • en English
  • de Deutsch
  • Informationen
    • Ideal partner
    • About lawyer Marian Härtel
    • Quick and flexible access
    • Principles as a lawyer
    • Why a lawyer and business consultant?
    • Focus areas of attorney Marian Härtel
      • Focus on start-ups
      • Investment advice
      • Corporate law
      • Cryptocurrencies, Blockchain and Games
      • AI and SaaS
      • Streamers and influencers
      • Games and esports law
      • IT/IP Law
      • Law firm for GMBH,UG, GbR
      • Law firm for IT/IP and media law
    • The everyday life of an IT lawyer
    • How can I help clients?
    • Testimonials
    • Team: Saskia Härtel – WHO AM I?
    • Agile and lean law firm
    • Price overview
    • Various information
      • Terms
      • Privacy policy
      • Imprint
  • Services
    • Support and advice of agencies
    • Contract review and preparation
    • Games law consulting
    • Consulting for influencers and streamers
    • Advice in e-commerce
    • DLT and Blockchain consulting
    • Legal advice in corporate law: from incorporation to structuring
    • Legal compliance and expert opinions
    • Outsourcing – for companies or law firms
    • Booking as speaker
  • News
    • Gloss / Opinion
    • Law on the Internet
    • Online retail
    • Law and computer games
    • Law and Esport
    • Blockchain and web law
    • Data protection Law
    • Copyright
    • Labour law
    • Competition law
    • Corporate
    • EU law
    • Law on the protection of minors
    • Tax
    • Other
    • Internally
  • Podcast
    • ITMediaLaw Podcast
  • Knowledge base
    • Laws
    • Legal terms
    • Contract types
    • Clause types
    • Forms of financing
    • Legal means
    • Authorities
    • Company forms
    • Tax
    • Concepts
  • Videos
    • Information videos – about Marian Härtel
    • Videos – about me (Couch)
    • Blogpost – individual videos
    • Videos on services
    • Shorts
    • Podcast format
    • Third-party videos
    • Other videos
  • Contact
Kurzberatung
  • Informationen
    • Ideal partner
    • About lawyer Marian Härtel
    • Quick and flexible access
    • Principles as a lawyer
    • Why a lawyer and business consultant?
    • Focus areas of attorney Marian Härtel
      • Focus on start-ups
      • Investment advice
      • Corporate law
      • Cryptocurrencies, Blockchain and Games
      • AI and SaaS
      • Streamers and influencers
      • Games and esports law
      • IT/IP Law
      • Law firm for GMBH,UG, GbR
      • Law firm for IT/IP and media law
    • The everyday life of an IT lawyer
    • How can I help clients?
    • Testimonials
    • Team: Saskia Härtel – WHO AM I?
    • Agile and lean law firm
    • Price overview
    • Various information
      • Terms
      • Privacy policy
      • Imprint
  • Services
    • Support and advice of agencies
    • Contract review and preparation
    • Games law consulting
    • Consulting for influencers and streamers
    • Advice in e-commerce
    • DLT and Blockchain consulting
    • Legal advice in corporate law: from incorporation to structuring
    • Legal compliance and expert opinions
    • Outsourcing – for companies or law firms
    • Booking as speaker
  • News
    • Gloss / Opinion
    • Law on the Internet
    • Online retail
    • Law and computer games
    • Law and Esport
    • Blockchain and web law
    • Data protection Law
    • Copyright
    • Labour law
    • Competition law
    • Corporate
    • EU law
    • Law on the protection of minors
    • Tax
    • Other
    • Internally
  • Podcast
    • ITMediaLaw Podcast
  • Knowledge base
    • Laws
    • Legal terms
    • Contract types
    • Clause types
    • Forms of financing
    • Legal means
    • Authorities
    • Company forms
    • Tax
    • Concepts
  • Videos
    • Information videos – about Marian Härtel
    • Videos – about me (Couch)
    • Blogpost – individual videos
    • Videos on services
    • Shorts
    • Podcast format
    • Third-party videos
    • Other videos
  • Contact
Rechtsanwalt Marian Härtel - ITMediaLaw

Security deficiencies in online banking: A look at a recent ruling by the Heilbronn Regional Court and the legal situation

11. October 2023
in Other
Reading Time: 2 mins read
0 0
A A
0
online banking 3559760 1280
Key Facts
  • The digital transformation has made online banking popular, but has also increased security concerns.
  • A ruling by the Heilbronn Regional Court considers the use of banking and PushTAN apps on the same device to be inadequate.
  • Two-factor authentication (2FA) requires two independent elements from different categories for authentication.
  • If both apps are on the same device, the independence of the authentication elements is questionable.
  • A compromised smartphone can compromise both apps, which increases the risk of unauthorized access.
  • Banks may need to revise their security protocols and recommend separate devices.
  • The ruling calls on all parties involved to critically scrutinize security practices in online banking.

Introduction:

Content Hide
1. Introduction:
2. Main part:
3. Graduation:
3.1. Author: Marian Härtel

Digital transformation has made online banking a popular and convenient way to manage finances. But as online transactions increase, so do the number of security concerns and legal challenges. In my practice, I am currently experiencing a significant increase in mandates and mandate requests dealing with unlawful online banking debits. A recurring theme here is the question of whether users were negligent or whether the banks’ systems offered inadequate protection. A recent ruling by the Heilbronn Regional Court brings interesting insights to this discussion and sheds light on the practice of using banking apps and PushTAN apps on the same device.

Main part:

In the decision of the Heilbronn Regional Court (see Heilbronn Regional Court ruling), the use of a banking app together with a PushTAN app on the same smartphone was deemed insufficient. This ruling is based on the principles of two-factor authentication (2FA) set forth in Regulation (EU) No. 2018/389, better known as Regulatory Technical Standards (RTS) for Strong Customer Authentication and Secure Communications.

The RTS specify that two independent elements are required for authentication, which must come from two different categories: Knowledge (something only the user knows), Possession (something only the user possesses), and Inherence (something the user is). However, if both the banking app and the PushTAN app are installed on the same device, the question arises as to whether these elements are actually independent of each other.

The court’s concerns are clear: If the smartphone is compromised, e.g. by malware, both apps could be affected at the same time, which significantly increases the risk of unauthorized access to the bank account.

The implications of this ruling could be far-reaching. Banks may now be forced to revise their security protocols and encourage users to use separate devices for banking and TAN generation. This new requirement could be especially challenging for those who value the convenience of mobile banking and now need to reevaluate their security practices.

Graduation:

The Heilbronn Regional Court’s ruling is a clear indication that security protocols in online banking need to be critically scrutinized and, if necessary, adapted. Both banks and customers should be prepared to take the necessary steps to ensure a secure online banking experience, even though this may involve some additional effort.

Marian Härtel
Author: Marian Härtel

Marian Härtel ist Rechtsanwalt und Fachanwalt für IT-Recht mit einer über 25-jährigen Erfahrung als Unternehmer und Berater in den Bereichen Games, E-Sport, Blockchain, SaaS und Künstliche Intelligenz. Seine Beratungsschwerpunkte umfassen neben dem IT-Recht insbesondere das Urheberrecht, Medienrecht sowie Wettbewerbsrecht. Er betreut schwerpunktmäßig Start-ups, Agenturen und Influencer, die er in strategischen Fragen, komplexen Vertragsangelegenheiten sowie bei Investitionsprojekten begleitet. Dabei zeichnet sich seine Beratung durch einen interdisziplinären Ansatz aus, der juristische Expertise und langjährige unternehmerische Erfahrung miteinander verbindet. Ziel seiner Tätigkeit ist stets, Mandanten praxisorientierte Lösungen anzubieten und rechtlich fundierte Unterstützung bei der Umsetzung innovativer Geschäftsmodelle zu gewährleisten.

Tags: AuthenticationEuJudgmentRegulationRiskSmartphone

Weitere spannende Blogposts

Draft law to strengthen fair competition

Online shops: Attention to advertising with EIA
7. November 2022

The German government has introduced a new bill to strengthen fair competition, which could help small and medium-sized companies in...

Read moreDetails

ECJ: Rubik’s Cube cannot be protected as a 3D mark

Lego brick still protected as a design patent
12. November 2019

What is it all about? At the request of Seven Towns, a British company which, inter alia, manages the intellectual...

Read moreDetails

Federal Constitutional Court: Right to Be Forgotten I

Federal Constitutional Court: Right to Be Forgotten I
27. November 2019

Confernation The "Right to be Forgotten I" decision published today, which is complemented by the "Right to be Forgotten II"...

Read moreDetails

No Google deletion claim from DSGVO

LG Munich: Data protection consent on dating platform
7. November 2022

The Dresden Higher Regional Court has ruled that the General Data Protection Regulation does not give rise to a claim...

Read moreDetails

OLG Braunschweig: “Nicht Geimpft” star on Facebook is not a punishable incitement to hatred

OLG Braunschweig: “Nicht Geimpft” star on Facebook is not a punishable incitement to hatred
20. September 2023

It is well known that the use of symbols related to National Socialism is not only socially wrong, but also...

Read moreDetails

T&Cs, regulation & compliance in blockchain & computer games: What you need to know

T&Cs, regulation & compliance in blockchain & computer games: What you need to know
14. December 2022

Introduction: why T&Cs, regulation & compliance are important in the blockchain and computer gaming space. Entering new technologies and industries...

Read moreDetails

OLG Frankfurt am Main vs. OLG Celle – FernUSG in B2B Contracts

OLG Frankfurt am Main vs. OLG Celle – FernUSG in B2B Contracts
30. October 2023

There has been noticeable uncertainty in the coaching industry to date, particularly with regard to the applicability of the Distance...

Read moreDetails

Facebook may block accounts without clear names

Facebook/Instagram: Court deliveries also permitted in German!
7. November 2022

The Munich Higher Regional Court ruled that Facebook was entitled to prohibit the use of pseudonyms and justified this primarily...

Read moreDetails

Liability risks when deploying APIs: What you need to know

Liability risks when deploying APIs: What you need to know
11. September 2023

Introduction In my daily work, I experience how APIs, also known as Application Programming Interfaces, are much more than just...

Read moreDetails
law 447487 1280

Uwg

24. June 2023

Introduction The Unfair Competition Act, abbreviated UWG, is an essential part of competition law in many countries, including Germany. It...

Read moreDetails
Trade custom

Trade custom

1. July 2023

Obligation to file for insolvency

11. April 2025
Cyberbullying

Cyberbullying

16. October 2024
Software maintenance contract

Software maintenance contract

16. October 2024

Podcast Folgen

8315f1ef298eb54dfeed2f5e55c8b9da 1

Erste Testfolge des ITMediaLaw Podcast

26. August 2024

Erste TestfolgeLiebe Leserinnen und Leser,ich freue mich, heute den ersten Testlauf unseres brandneuen IT Media Law Podcasts zu präsentieren! In diesem Podcast...

Auf der dunklen Seite? Ein Rechtsanwalt im Spannungsfeld innovativer Startups

Auf der dunklen Seite? Ein Rechtsanwalt im Spannungsfeld innovativer Startups

25. September 2024

In dieser persönlichen und fesselnden Episode taucht der erfahrene IT- und Medienrechtsanwalt tief in die Grauzone seiner beruflichen Tätigkeit ein....

Rechtliche Beratung für Startups – Investitionen, die sich lohnen

Rechtliche Beratung für Startups – Investitionen, die sich lohnen

17. November 2024

In dieser Episode des ITmedialaw.com Podcasts dreht sich alles um die Bedeutung rechtlicher Beratung für Startups. Host Marian Härtel spricht...

Die Rolle des IT-Rechtsanwalts

Die Rolle des IT-Rechtsanwalts

5. September 2024

In dieser spannenden Podcast-Episode tauchen wir ein in die faszinierende Welt der IT-Startups und erfahren, warum ein erfahrener Rechtsanwalt für...

  • Privacy policy
  • Imprint
  • Contact
  • About lawyer Marian Härtel
Marian Härtel, Rathenaustr. 58a, 14612 Falkensee, info@itmedialaw.com

Marian Härtel - Rechtsanwalt für IT-Recht, Medienrecht und Startups, mit einem Fokus auf innovative Geschäftsmodelle, Games, KI und Finanzierungsberatung.

Welcome Back!

Login to your account below

Forgotten Password? Sign Up

Create New Account!

Fill the forms below to register

All fields are required. Log In

Retrieve your password

Please enter your username or email address to reset your password.

Log In
  • Informationen
    • Ideal partner
    • About lawyer Marian Härtel
    • Quick and flexible access
    • Principles as a lawyer
    • Why a lawyer and business consultant?
    • Focus areas of attorney Marian Härtel
      • Focus on start-ups
      • Investment advice
      • Corporate law
      • Cryptocurrencies, Blockchain and Games
      • AI and SaaS
      • Streamers and influencers
      • Games and esports law
      • IT/IP Law
      • Law firm for GMBH,UG, GbR
      • Law firm for IT/IP and media law
    • The everyday life of an IT lawyer
    • How can I help clients?
    • Testimonials
    • Team: Saskia Härtel – WHO AM I?
    • Agile and lean law firm
    • Price overview
    • Various information
      • Terms
      • Privacy policy
      • Imprint
  • Services
    • Support and advice of agencies
    • Contract review and preparation
    • Games law consulting
    • Consulting for influencers and streamers
    • Advice in e-commerce
    • DLT and Blockchain consulting
    • Legal advice in corporate law: from incorporation to structuring
    • Legal compliance and expert opinions
    • Outsourcing – for companies or law firms
    • Booking as speaker
  • News
    • Gloss / Opinion
    • Law on the Internet
    • Online retail
    • Law and computer games
    • Law and Esport
    • Blockchain and web law
    • Data protection Law
    • Copyright
    • Labour law
    • Competition law
    • Corporate
    • EU law
    • Law on the protection of minors
    • Tax
    • Other
    • Internally
  • Podcast
    • ITMediaLaw Podcast
  • Knowledge base
    • Laws
    • Legal terms
    • Contract types
    • Clause types
    • Forms of financing
    • Legal means
    • Authorities
    • Company forms
    • Tax
    • Concepts
  • Videos
    • Information videos – about Marian Härtel
    • Videos – about me (Couch)
    • Blogpost – individual videos
    • Videos on services
    • Shorts
    • Podcast format
    • Third-party videos
    • Other videos
  • Contact
  • en English
  • de Deutsch
Kostenlose Kurzberatung