[17738] in cryptography@c2.net mail archive
Re: Why Blockbuster looks at your ID.
daemon@ATHENA.MIT.EDU (Simple Nomad)
Sat Jul 9 13:30:40 2005
X-Original-To: cryptography@metzdowd.com
X-Original-To: cryptography@metzdowd.com
From: Simple Nomad <thegnome@nmrc.org>
To: Dan Kaminsky <dan@doxpara.com>
Date: Sat, 9 Jul 2005 11:23:03 -0500
Cc: "Perry E. Metzger" <perry@piermont.com>,
Edgar Danielyan <e.danielyan@gmail.com>, cryptography@metzdowd.com
In-Reply-To: <42CEB302.9070407@doxpara.com>
--nextPart3541652.1c0Ndczsxz
Content-Type: text/plain;
charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
Content-Disposition: inline
On Friday 08 July 2005 12:08, Dan Kaminsky wrote:
> >I'm think you wrong on that one. Financial cost and benefit are easily
> >assessed on this, and I think the numbers add up. Credit card fraud
> >costs in the hundreds of billions of dollars a year, much of which
> >could be eliminated by a change to the sort of system I
> >mention. That's not a small amount of money. Indeed, it is more than
> >enough incentive for a major change.
>
> Credit card fraud has gone *down* since 1992, and is actually falling:
>
> 1992: $2.6B
> 2003: $882M
> 2004: $788M
>
> We're on the order of 4.7 cents on the $100.
>
> http://www.businessweek.com/technology/content/jun2005/tc20050621_3238_tc=
02
>4.htm
>
> If it's any consolation, I was rather surprised myself.
I was very surprised, since my government says it is tons worse.
The U.S. Government is claiming a lot more than these figures when discussi=
ng=20
identity theft, some high amount like $40b or so. Of course, if you factor =
in=20
check fraud and debit card abuse, which credit card companies treat=20
differently and so they may not include, that might account for some of the=
=20
discrepancy, but not all.
The original Nilson Report quoting these figures was from March of this yea=
r=20
(http://www.nilsonreport.com/issues/2005/830.htm has the cover page), I'd=20
like to see the entire article. I wonder if the government's identity theft=
=20
numbers include the cost to combat fraud as opposed to just losses (cost to=
=20
secure transactions, cost to the consumer who has to take time off of work =
to=20
close/reapply/cancel/change perhaps dozens of minute items of personal valu=
e=20
stored in various databases, cost for the development of Prozac to help=20
people cope with the stress of society which includes fraud and identity=20
theft, etc).
I'm not saying someone is lying, but someone is not defining context very=20
well...
=2D-=20
# Simple Nomad, C=B2ISSP -- thegnome@nmrc.org #
# C1B1 E749 25DF 867C 36D4 1E14 247A A4BD 6838 F11D #
# http://www.nmrc.org/~thegnome/ #
--nextPart3541652.1c0Ndczsxz
Content-Type: application/pgp-signature
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.6 (GNU/Linux)
iD8DBQBCz/nzJHqkvWg48R0RApGiAKD+rC8DFFuQvM/CiCEh83/t2y4eqgCeMEEd
SsD1oE+wXhYXfgrZJRIH+iU=
=iaoB
-----END PGP SIGNATURE-----
--nextPart3541652.1c0Ndczsxz--
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo@metzdowd.com
