Chip and PIN
Roger Hird
ukcrypto at chiark.greenend.org.uk
Thu, 24 Jan 2008 19:50:27 +0000 (GMT)
In article <200801241551.23946.pol@geekstuff.tv>,
Paul S. Brown <pol@geekstuff.tv> wrote:
> I have to admit, I have a similar axe to grind with "Verified by Visa" -
> a lovely little scheme to move the risk for fraudulent online
> transactions to the customer whilst simultaneously lowering the overall
> security levels by popping up offsite windows demanding personally
> identifying information before it will let transactions complete.
> So, you're getting a popup from somewhere that you've never heard of and
> can only take the webpages word that it's your bank which in turn
> demands your name/DoB/CVV2 and therefore enough information to identify
> you and also demands a password.
This email list is a little island of sanity in a mad world. Does anyone
know the name of whoever at Nationwide is in charge of information systems
security? They are pressing me to use use Verified by Visa and I'd like to
rehearse with them some of the arguments I've seen here.
--
Roger Hird
roger.hird@argonet.co.uk
Running RISCOS 4.39 on an Acorn StrongARM RiscPC