enigma1 - 9:16 am on Jul 18, 2010 (gmt 0)
You do realize what the point of VBV/SC is right?
No personally I haven't, aside of the technicalities. All I see is adding another level of complexity with extra digits and passwords and eventually a consumer looks for alternatives to buy online.
What's the point of having 2, 3, 4 or a dozen different sets of numbers and having the customer to sign-in/verify into different terminals?
I don't see how it will improve security. On the one hand, the customer's PC could be compromised so no matter how many numbers he has to enter, will be known to others, on the other hand, if the bank's server is compromised everything a fraudster needs to perform various transactions is right there.
CC companies validate for a very long time now: Name, Shipping Address on record, cc number, expiry on the card which is a good combination and the merchant has tools to verify if the shipping address matches which in most cases should protect the merchant because the consumer will receive what he orders.
If the customer's info is leaked will an extra number or password make a difference? Why you think the extra number or extra password isn't going to leak?