With challenges and limitations associated with security in the fintech industry, the rise to the need for data protection increases. However, the current existing passwordless and password-based peer to peer transactions in online banking systems are vulnerable to advanced forms of digital attacks. The influx of modern data protection methods keeps better records of the transactions, but it still does not address the issue of authentication and account takeovers during transactions. To the address the mentioned issue, this paper proposes a novel and robust peer to peer transaction system which employs best cloud security practices, proper use of cryptography and trusted computing to mitigate common vulnerabilities. We will be implementing FIDO2 compatible Smart Card to securely authenticate the user using physical smart cards and store the records in the cloud which enables access control by allowing access only when an access is requested. The standard incorporates multiple layers of security on cloud computing models to ensure secrecy of the said data. Services of the standard adhere to regulations provides by the government and assures privacy to the information of the payee or the end-user. The whole system has been implemented in the Internet of Things scenario.

翻译：随着金融科技行业面临的安全挑战与局限日益凸显，数据保护的需求不断增长。然而，当前在线银行系统中现有的无密码及基于密码的点对点交易模式，在面对高级数字攻击时仍显脆弱。现代数据保护方法的引入虽能更好地记录交易信息，但仍未解决交易过程中的身份认证与账户接管问题。为应对上述问题，本文提出一种新颖且鲁棒的点对点交易系统，该系统采用最佳云安全实践、合理运用密码学与可信计算技术，以缓解常见安全漏洞。我们将实现兼容FIDO2标准的智能卡，通过物理智能卡对用户进行安全认证，并将记录存储于云端；该系统通过仅在访问请求时授权访问来实现访问控制。该标准在云计算模型中构建了多层安全机制，以确保相关数据的机密性。其服务遵循政府法规要求，并保障收款方或终端用户的信息隐私。整个系统已在物联网场景中完成部署。