|
![](/i/fill.gif) |
> Am 25.12.2013 13:39, schrieb Warp:
>> clipka <ano### [at] anonymous org> wrote:
>>> What bank uses a sheet of single-use codes and thinks that it's safe?
>>
>> Well, much safer than a fixed password.
>>
>> You can't do anything with the sheet alone if you don't have the
>> user's ID.
>> Granted, it's not impossible to acquire both, but if you don't store your
>> ID anywhere and instead have it memorized, it becomes difficult.
>> (Basically
>> they would need to install some spyware in the computer you are using in
>> order to get the ID, and then physically steal the passcode sheet. Not
>> impossible, but not likely to happen.)
>
> Just two words:
>
> (1) Phising.
>
> (2) Man-in-the-middle attack.
>
>>> Over here in Germany we're past that age. Codes dynamically generated
>>> from transaction details it is for us.
>>
>> How does that even work?
>
> There are two variants in use:
>
> (A) Each time you submit a transaction via browser, you get a
> transaction-specific authorization code via SMS to your mobile phone,
> including some essentials of the transaction (like the amount of money
> transferred, and the target bank account) to make sure that you and the
> bank are talking about the same deal.
So I now need to have a separate cell-phone contract just to be allowed
to pay my bills online?
I have a company-issued cell phone, and my employer allows me to make a
limited number of personal phone call per month, e.g. to let my family
know I'll be late for dinner, etc..., but I don't think they'd like it
If I started letting my bank send me confirmation requests to it.
Also, we lead a very boring life, so there not enough people outside of
work who need to reach us to justify having a personal cell phone on top
of our land line.
--
/*Francois Labreque*/#local a=x+y;#local b=x+a;#local c=a+b;#macro P(F//
/* flabreque */L)polygon{5,F,F+z,L+z,L,F pigment{rgb 9}}#end union
/* @ */{P(0,a)P(a,b)P(b,c)P(2*a,2*b)P(2*b,b+c)P(b+c,<2,3>)
/* gmail.com */}camera{orthographic location<6,1.25,-6>look_at a }
Post a reply to this message
|
![](/i/fill.gif) |