Chip and PIN
James Cox
ukcrypto at chiark.greenend.org.uk
Thu, 24 Jan 2008 14:54:04 +0000
On 24 Jan 2008, at 14:13, Roland Perry wrote:
> In article <95D2BBE3-152F-4DFF-BFC0-110029282AFD@imaj.es>, James Cox
> <james@imaj.es> writes
>> I remember that when these devices were first introduced, they were
>> easy to place your hand over the keypad, (imagine like you're
>> playing the piano) and very deftly hit the right keys to enter your
>> pin. It'd be done in a second and anyone shoulder surfing would
>> have a hard time to see what you were typing
>
> My favourite C&P pad is on the petrol pump at my local ASDA, it's
> mounted vertically, no shield, and at about eye-level. Try using
> *that* discretely.
And they have small-button keypads which are a pain to use. I agree
that sucks. However, i revert to my previous statement that, if my
card number + pin + cv2 + address etc did get cloned, i'd simply get
another one - my credit alert and other id theft protections make that
less of an issue, just an annoyance.
Still, i would like to see more privacy conscious pin boxes...
- james