Current authentication procedures
Adam Atkinson (ETL)
adam.atkinson at etl.ericsson.se
Thu, 24 Jun 1999 13:35:52 +0200
> it is clear that the bank's
> procedures make no allowance whatever for authenticating
> themselves to the
> customer, even when they are phoning the customer.
This happened to me not long ago as well. Someone
claiming to be from my bank called to ask me some
questions. I asked them to prove they were from
the bank and they gave me a number I could call.
I pointed out that that number could very well
belong to someone claiming to be from the bank,
as part of some scam.
I said I would answer questions as long as they
seemed harmless. They actually wanted me to
rate them out of 100 in several different areas.
I refused to do this on the grounds that (i)
I didn't think there were 101 different levels
of satisfaction I would be able to perceive
in each of several areas of bank services and
(ii) I couldn't see that my 0-100 ratings would
be comparable to other people's anyway.