Search: Home Bugtraq Vulnerabilities Mailing Lists Jobs Tools Vista
Banks 'wasting millions' on two-factor authentication
John Leyden, The Register 2005-03-15

Banks are spending millions on two-factor authentication for their customers but the approach no longer provides adequate protection against fraud or identity theft, according to Bruce Schneier, the encryption guru.

Comments Mode:
I'd hardly call even a temporary drop in fraud "wasting millions" 2005-03-15
Bruce K. Marshall (3 replies)
I'd hardly call even a temporary drop in fraud "wasting millions" 2005-03-15
bwatson_at_nettracers.com
SSL 2005-03-16
Rory Alsop
I'd hardly call even a temporary drop in fraud "wasting millions" 2005-03-16
Anonymous
Banks 'wasting millions' on two-factor authentication 2005-03-15
Anonymous
Banks 'wasting millions' on two-factor authentication 2005-03-15
Comic Book Guy
Banks 'wasting millions' on two-factor authentication 2005-03-15
Anonymous
Banks 'wasting millions' on two-factor authentication 2005-03-15
Lavid Detterman
Banks 'wasting millions' on two-factor authentication 2005-03-15
Anonymous
Don't we all have one of these guys at work? 2005-03-15
Anonymous
There is no solution though 2005-03-15
Anonymous
Banks 'wasting millions' on two-factor authentication 2005-03-15
Anonymous
Banks 'wasting millions' on two-factor authentication 2005-03-16
Anonymous
Banks 'wasting millions' on two-factor authentication 2005-03-16
Marcus Augustus
Banks 'wasting millions' on two-factor authentication 2005-03-16
LiquidBrain
Banks 'wasting millions' on two-factor authentication 2005-03-16
Anonymos
Banks 'wasting millions' on two-factor authentication 2005-03-16
Anonymos
Banks 'wasting millions' on two-factor authentication 2005-03-16
Anonymous
so called "expert" 2005-03-16
Anonymous (1 replies)
Re: so called "expert" 2005-11-18
twofish
Banks 'wasting millions' on two-factor authentication 2005-03-16
Anonymous
Banks 'wasting millions' on two-factor authentication 2005-03-16
Anonymous
Banks 'wasting millions' on two-factor authentication 2005-03-16
Scott, posted by Fred
Banks 'wasting millions' on two-factor authentication 2005-03-16
Anonymous
Banks 'wasting millions' on two-factor authentication 2005-03-16
Anonymous
It's too late.... 2005-03-16
en0k
Banks 'wasting millions' on two-factor authentication - Holy Grail 2005-03-16
Anymouse
Banks 'wasting millions' on two-factor authentication 2005-03-16
Anonymous
Is it a coincidence that Counterpane, the company founded by Bruce Schneier, offers a managed security service and security consulting to banks, which would be far less attractive for a bank which has implemented two factor authentication?

Mr. Schneier has also personally designed a password storage product called Password Safe. Having done so, it would seem illogical to then denegrate the value of passwords in favor of something like two factor authentication, which Password Safe would be unable to accomodate.

IMHO, Mr. Schneier's article, by not suggesting an alternative approach, is clearly designed to illicit the question, "What other options are there?" I'm sure he's hoping Counterpane will be called to provide the answer, for a "modest" consulting fee.

[ reply ]

Link to this comment: http://www.securityfocus.com/comments/articles/10694/30955#30955
Banks 'wasting millions' on two-factor authentication 2005-03-17
lovebug.org







 

Privacy Statement
Copyright 2008, SecurityFocus