Welcome to WebmasterWorld Guest from 54.167.155.147

Forum Moderators: buckworks

Message Too Old, No Replies

VeriSign Identity Protection System Brings out Heavy Hitters

   
12:13 am on Feb 14, 2006 (gmt 0)

WebmasterWorld Administrator brett_tabke is a WebmasterWorld Top Contributor of All Time 10+ Year Member Top Contributors Of The Month




story [banktech.com]

VeriSign on Monday unveiled a new security system to protect online buyers from identity theft, and said it had signed up PayPal, eBay, and Yahoo as the first sites to support the authentication service.

Called VeriSign Identity Protection (VIP), the system will let consumers use a single security device to authenticate themselves to any VIP-enabled Web site. Using a shared authentication network operated by VeriSign, VIP allows e-tailing sites and enterprises to provide customers or users with one authentication credential -- perhaps a USB-based token that plugs into the computer -- for verifying identity.

[edited by: shri at 12:35 am (utc) on Feb. 14, 2006]
[edit reason] Fixed Link [/edit]

2:04 am on Feb 14, 2006 (gmt 0)

WebmasterWorld Senior Member 10+ Year Member



HSBC has been using a little device which generates a unique serial number for the last year or so and I like it.

Would be good to see something like that come into play across the various locations where my credit card info might be stored online.

I would like to see some biometric security in that device.

I'm not that keen on a USB device for the simple reason that I want access to that account 24x7 from a web browser and there are many locations which do not allow me to plug a USB key into a computer.

Also, with mobile phone / PDA / Linux usage on the rise, a USB based device might actually prevent universal access, if it is tied into Windows.

12:43 pm on Feb 14, 2006 (gmt 0)

10+ Year Member



Banks have been using various "what you have" (ie some device generating one-time passwords) + "what-you-know" (ie your personal password and account number) authentication schemes since years.

It is impossible to believe, how insecure are credit cards in comparison with these authentication schemes!

It is like someone impersonated can steal your money knowing only your bank account number and your name.

Something wrong is with this world, if VISA was able to put such a raw and insecure technology into mainstream.

If someone was able to mass-market technology where payee authentication is based on some stronger method (like one-time password generating device in addition to just card number), who'd consider even using #*$!ty VISA? (I say it, because I have good grounds to do, many times being in the situation where losing my time and hope to return my stealed money.)

12:46 pm on Feb 14, 2006 (gmt 0)

WebmasterWorld Senior Member 10+ Year Member



we have the HSBC system operating across our locations - it seems to work very well - and is alot more secure than previous system we have used.