Re: Banks Test ID Device for Online Security

On Wed, Jan 05, 2005 at 02:43:00PM -0300, Mads Rasmussen wrote: Here in Brazil it's common to ask for a new pin for every transaction Ditto in Germany, when PIN/TAN method is used. There's also HBCI-based banking, which either uses keys living in filesystems, or smartcards -- this one doesn't

Re: Banks Test ID Device for Online Security

On Wed, Jan 05, 2005 at 02:43:00PM -0300, Mads Rasmussen wrote: Here in Brazil it's common to ask for a new pin for every transaction Ditto in Germany, when PIN/TAN method is used. There's also HBCI-based banking, which either uses keys living in filesystems, or smartcards -- this one doesn't

Re: Banks Test ID Device for Online Security

Bill Stewart wrote: Yup. It's the little keychain frob that gives you a string of numbers, updated every 30 seconds or so, which stays roughly in sync with a server, so you can use them as one-time passwords instead of storing a password that's good for a long term. So if the phisher cons you

Re: Banks Test ID Device for Online Security

On Tue, Jan 04, 2005 at 03:24:56PM -0500, Trei, Peter wrote: R.A. Hettinga wrote: Okay. So AOL and Banks are *selling* RSA keys??? Could someone explain this to me? No. Really. I'm serious... Cheers, RAH The slashdot article title is really, really misleading. In

Re: Banks Test ID Device for Online Security

Bill Stewart wrote: Yup. It's the little keychain frob that gives you a string of numbers, updated every 30 seconds or so, which stays roughly in sync with a server, so you can use them as one-time passwords instead of storing a password that's good for a long term. So if the phisher cons you

Re: Banks Test ID Device for Online Security

On Tue, Jan 04, 2005 at 03:24:56PM -0500, Trei, Peter wrote: R.A. Hettinga wrote: Okay. So AOL and Banks are *selling* RSA keys??? Could someone explain this to me? No. Really. I'm serious... Cheers, RAH The slashdot article title is really, really misleading. In

RE: Banks Test ID Device for Online Security

R.A. Hettinga wrote: Okay. So AOL and Banks are *selling* RSA keys??? Could someone explain this to me? At 12:24 PM 1/4/2005, Trei, Peter wrote: The slashdot article title is really, really misleading. In both cases, this is SecurID. Yup. It's the little keychain frob that gives you a string

RE: Banks Test ID Device for Online Security

R.A. Hettinga wrote: Okay. So AOL and Banks are *selling* RSA keys??? Could someone explain this to me? No. Really. I'm serious... Cheers, RAH The slashdot article title is really, really misleading. In both cases, this is SecurID. Peter

RE: Banks Test ID Device for Online Security

R.A. Hettinga wrote: Okay. So AOL and Banks are *selling* RSA keys??? Could someone explain this to me? At 12:24 PM 1/4/2005, Trei, Peter wrote: The slashdot article title is really, really misleading. In both cases, this is SecurID. Yup. It's the little keychain frob that gives you a string

RE: Banks Test ID Device for Online Security

R.A. Hettinga wrote: Okay. So AOL and Banks are *selling* RSA keys??? Could someone explain this to me? No. Really. I'm serious... Cheers, RAH The slashdot article title is really, really misleading. In both cases, this is SecurID. Peter