[16635] in cryptography@c2.net mail archive


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: Banks Test ID Device for Online Security

daemon@ATHENA.MIT.EDU (Mads Rasmussen)
Wed Jan 5 17:40:24 2005

X-Original-To: cryptography@metzdowd.com
X-Original-To: cryptography@metzdowd.com
Date: Wed, 05 Jan 2005 14:43:00 -0300
From: Mads Rasmussen <mads@opencs.com.br>
To: Bill Stewart <bill.stewart@pobox.com>, cryptography@metzdowd.com
In-Reply-To: <20050105032142.7E8D4F2CB@red.metdow.com>

Bill Stewart wrote:

>
> That's still a serious risk for a bank,
> since the scammer can use it to log in to the web site
> and then do a bunch of transactions quickly;
> it's less vulnerable if the bank insists on a new SecurID hit for
> every dangerous transaction, but that's too annoying for most customers.
>
Here in Brazil it's common to ask for a new pin for every transaction

Mads


---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo@metzdowd.com


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[16635] in cryptography@c2.net mail archive

Re: Banks Test ID Device for Online Security

daemon@ATHENA.MIT.EDU (Mads Rasmussen)Wed Jan 5 17:40:24 2005

daemon@ATHENA.MIT.EDU (Mads Rasmussen)
Wed Jan 5 17:40:24 2005