[15734] in cryptography@c2.net mail archive
RE: identification + Re: authentication and authorization
daemon@ATHENA.MIT.EDU (bear)
Sat Jul 10 18:45:24 2004
X-Original-To: cryptography@metzdowd.com
X-Original-To: cryptography@metzdowd.com
Date: Sat, 10 Jul 2004 13:07:06 -0700 (PDT)
From: bear <bear@sonic.net>
To: Anton Stiglic <astiglic@okiok.com>
Cc: cryptography@metzdowd.com
In-Reply-To: <20040708193149.2C95BB4083@mail.okiok.com>
On Thu, 8 Jul 2004, Anton Stiglic wrote:
>The problem is not really authentication theft, its identity theft, or if
>you want to put it even more precisely, it's "identity theft and
>authenticating as the individual to whom the identity belongs to". But the
>latte doesn't make for a good buz-word :)
I have always thought that "credential fraud" would make a better
description than "identity theft." The crime about which we are
concerned, literally, is the use of your credentials by someone
else in the commission of a fraud.
"Theft" would imply to me that he simply walked into the bank (or
wherever) and took the money (or whatever) at gunpoint, directing
them to charge your account; an image I find more than a little
preposterous. There has to be some kind of fraud or subterfuge
for the proposed crime to even be credible.
Bear
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo@metzdowd.com
