[17512] in cryptography@c2.net mail archive
Re: massive data theft at MasterCard processor
daemon@ATHENA.MIT.EDU (Ka-Ping Yee)
Mon Jun 20 15:31:00 2005
X-Original-To: cryptography@metzdowd.com
X-Original-To: cryptography@metzdowd.com
Date: Mon, 20 Jun 2005 14:04:48 -0500 (CDT)
From: Ka-Ping Yee <cryptography@zesty.ca>
To: "Steven M. Bellovin" <smb@cs.columbia.edu>
Cc: cryptography@metzdowd.com
In-Reply-To: <20050617225211.C08E33BFE96@berkshire.machshav.com>
On Fri, 17 Jun 2005, Steven M. Bellovin wrote:
> Designing a system that deflects this sort of attack is challenging.
> The right answer is smart cards that can digitally sign transactions,
> but that would require rolling out new readers to all the merchants.
I was amazed to hear of the UK's fast progress in rolling out their
Chip-and-PIN system. I would not have guessed that they could get
about 85% of cardholders to switch and 75% of retail equipment
upgraded by the end of 2004, only 15 months after the beginning of
the rollout.
http://www.chipandpin.co.uk/reflib/super_barometer_2004.pdf
Naturally, conditions are different in the United States, but it's
still an impressive result.
-- ?!ng
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo@metzdowd.com
