Network Security: Detailed info on Re: Proposal to anti-phishing

Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.

Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.

Network Security Web-App-Sec

[Top] [All Lists]

Re: Proposal to anti-phishing

from [Florian Weimer] Network Security

[Permanent Link]

Subject:	Re: Proposal to anti-phishing
Date:	Sun, 16 Jan 2005 21:42:06 +0100

* Frank Knobbe:

On Fri, 2005-01-14 at 23:58 +0100, Florian Weimer wrote:

The solution is based in a hardware token that is
delivered to every customer.


It's acceptable neither to customers nor to banks.  These days,
zero-setup online banking is an absolute must.

perhaps that is true for regular consumer-grade banking clients. But for
high dollar transaction processing, zero-setup online banking, which
lack any type of security controls, is not acceptable -- neither to the
account owner nor the banks.


Of course, but these customers usually do not demand online banking
(at least over here).  Other services, like batch processing of
transactions, are more important.  Often, these procedures are not
inherently more secure than online banking, they are just very, very
different.  But impersonating the bank in the real world is a bit more
difficult, I think, at least for non-consumer transactions which
involve real people.

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
RE: Proposal to anti-phishing, (continued) RE: Proposal to anti-phishing, Lyal Collins RE: Proposal to anti-phishing, Lyal Collins RE: Proposal to anti-phishing, lists Re: Proposal to anti-phishing, Kurt Seifried Re: Proposal to anti-phishing, Rogan Dawes Re: Proposal to anti-phishing, Moksha Faced Re: Proposal to anti-phishing, Jimi Thompson RE: Proposal to anti-phishing, Lyal Collins Re: Proposal to anti-phishing, Robert Hajime Lanning Re: Proposal to anti-phishing, Frank Knobbe Re: Proposal to anti-phishing, Florian Weimer <= RE: Proposal to anti-phishing, ACMurray RE: Proposal to anti-phishing, Michael Silk Re: Proposal to anti-phishing, exon RE: Proposal to anti-phishing, Michael Silk Re: Proposal to anti-phishing, Rogan Dawes Re: Proposal to anti-phishing, Michael Silk Re: Proposal to anti-phishing, Rogan Dawes Re: Proposal to anti-phishing, Michael Silk Re: Proposal to anti-phishing, Rogan Dawes RE: Proposal to anti-phishing, Michael Silk

Previous by Date:	Re: Proposal to anti-phishing, Frank Knobbe
Next by Date:	RE: Proposal to anti-phishing, Lyal Collins
Previous by Thread:	Re: Proposal to anti-phishing, Frank Knobbe
Next by Thread:	RE: Proposal to anti-phishing, ACMurray
Indexes:	[Date] [Thread] [Top] [All Lists]