homepage Welcome to WebmasterWorld Guest from 54.226.235.222
register, free tools, login, search, pro membership, help, library, announcements, recent posts, open posts,
Become a Pro Member

Home / Forums Index / WebmasterWorld / Ecommerce
Forum Library, Charter, Moderators: buckworks

Ecommerce Forum

    
VeriSign Identity Protection System Brings out Heavy Hitters
Brett_Tabke




msg:643117
 12:13 am on Feb 14, 2006 (gmt 0)


story [banktech.com]

VeriSign on Monday unveiled a new security system to protect online buyers from identity theft, and said it had signed up PayPal, eBay, and Yahoo as the first sites to support the authentication service.

Called VeriSign Identity Protection (VIP), the system will let consumers use a single security device to authenticate themselves to any VIP-enabled Web site. Using a shared authentication network operated by VeriSign, VIP allows e-tailing sites and enterprises to provide customers or users with one authentication credential -- perhaps a USB-based token that plugs into the computer -- for verifying identity.

[edited by: shri at 12:35 am (utc) on Feb. 14, 2006]
[edit reason] Fixed Link [/edit]

 

shri




msg:643118
 2:04 am on Feb 14, 2006 (gmt 0)

HSBC has been using a little device which generates a unique serial number for the last year or so and I like it.

Would be good to see something like that come into play across the various locations where my credit card info might be stored online.

I would like to see some biometric security in that device.

I'm not that keen on a USB device for the simple reason that I want access to that account 24x7 from a web browser and there are many locations which do not allow me to plug a USB key into a computer.

Also, with mobile phone / PDA / Linux usage on the rise, a USB based device might actually prevent universal access, if it is tied into Windows.

Morgenhund




msg:643119
 12:43 pm on Feb 14, 2006 (gmt 0)

Banks have been using various "what you have" (ie some device generating one-time passwords) + "what-you-know" (ie your personal password and account number) authentication schemes since years.

It is impossible to believe, how insecure are credit cards in comparison with these authentication schemes!

It is like someone impersonated can steal your money knowing only your bank account number and your name.

Something wrong is with this world, if VISA was able to put such a raw and insecure technology into mainstream.

If someone was able to mass-market technology where payee authentication is based on some stronger method (like one-time password generating device in addition to just card number), who'd consider even using #*$!ty VISA? (I say it, because I have good grounds to do, many times being in the situation where losing my time and hope to return my stealed money.)

caine




msg:643120
 12:46 pm on Feb 14, 2006 (gmt 0)

we have the HSBC system operating across our locations - it seems to work very well - and is alot more secure than previous system we have used.

Global Options:
 top home search open messages active posts  
 

Home / Forums Index / WebmasterWorld / Ecommerce
rss feed

All trademarks and copyrights held by respective owners. Member comments are owned by the poster.
Home ¦ Free Tools ¦ Terms of Service ¦ Privacy Policy ¦ Report Problem ¦ About ¦ Library ¦ Newsletter
WebmasterWorld is a Developer Shed Community owned by Jim Boykin.
© Webmaster World 1996-2014 all rights reserved