The Underscore Archives

On 5 Dec 2007, at 13:02, amias wrote:

> The last thing a bank wants to do is to support a device on an account
> holders computer , the tech support would be horrendous.
> Also , most importantly , if someone broke it then the banks would be
> 100% liable[1], they can't afford to do that and deliver affordable
> merchant rates.
>
> I was working at metacharge when they implimented 3d secure on their
> systems , the banks make each transaction cheaper if you use 3d  
> secure.
> Why ? because liability is expensive and 3d secure changes the risk
> model enough to allow price breaks from their underwriters. The less
> risky you are the cheaper your merchant services become.
>
> This has to be sold as major technical enhancement to but
> really its just a slight improvement to security and a bigger boost to
> the credit card companies image of security.


My swedish friends have a nifty thing from their bank. It's a little  
challenge-response keypad - when they login to their bank, the site  
gives them a code to enter into the device, which returns another code  
in response. The device is also pin-protected. A second factor in the  
authentication, at least.
Scandiwegian speakers can see info here: http://snipurl.com/1uscy



--
Matt Kane, Lead Developer, Clementine
http://www.clevr.com/

Clementine is a trading name of Sphex LLP