Мікросервісна архітектура системи адаптивної автентифікації користувачів фінансових установ.

І.  Burlachenko; D. Zavorotnii

doi:10.36910/6775-2524-0560-2025-60-46

І. Burlachenko https://orcid.org/0000-0001-5088-6709
D. Zavorotnii https://orcid.org/0009-0005-3895-8964

DOI: https://doi.org/10.36910/6775-2524-0560-2025-60-46

Keywords: adaptive authentication, multi-factor authentication, microservice architecture, OTP, fintech

Abstract

The article addresses the problem of developing a microservice architecture for an adaptive authentication system of financial institutions’ users as a key direction for enhancing the security, scalability, and flexibility of modern information systems. The authors analyze current authentication methods, including single-factor, two-factor, and multi-factor approaches, and emphasize the particular importance of adaptive authentication, which provides dynamic adjustment of identity verification parameters depending on the assessed risk level of an operation. The study explores methods successfully applied in the financial sector, such as behavioral biometrics, contextual authentication, anomaly detection, and the use of machine learning algorithms. The proposed conceptual model implements a division of functionality into independent microservices, which facilitates flexibility, modularity, and easy integration with national and international identification standards (including BankID and Diia services). Special attention is given to the visualization of architectural dependencies, UML diagrams, and the use of modern client- and server-side software development tools such as Vue.js, Nest.js, and Spring Boot. The system provides multi-channel authentication (email, SMS, QR code), supports load balancing, and incorporates fault tolerance checking, which are critically significant for financial organizations. The results of the study may serve as a foundation for implementing scalable and reliable cybersecurity solutions, as well as a basis for further research in the field of adaptive authentication.

References

1. Bumiller A., Challita S., et al. On Understanding Context Modelling for Adaptive Authentication Systems. ACM Transactions on Autonomous and Adaptive Systems. – 2023. – Vol. 18, No. 1. – P. 3:1–3:35.
2. Bello H. O., Ige A. B., Ameyaw M. N. Adaptive machine learning models: Concepts for real-time financial fraud prevention in dynamic environments. World Journal of Advanced Engineering Technology and Sciences. — 2024. — Vol. 12, No. 2. — P. 021–034.
3. Tiwari A., Sanyal G. A Multi-factor Security Framework for Cloud Computing. Journal of Cloud Computing. – 2022. – Vol. 11, No. 2. – P. 143–167.
4. Bhatt S., Patwa P., Battu V. Secure adaptive authentication system using behavioral biometrics. Journal of Information Security and Applications. – 2023. – Vol. 62. – P. 102994.
5. Yang L., Guo Y., Ding X. A Comprehensive Review of Adaptive Authentication Systems for Financial Applications. IEEE Access. – 2023. – Vol. 11. – P. 9437–9451.

Microservice Architecture of an Adaptive Authentication System for Users of Financial Institutions

Abstract

References