Two-factor banking

Two-factor banking
Kelly Martin, 2005-10-18

People who lived through the Second World War, like my grandparents, had a very different view of money than those of us who grew up in the Information Age. Many of us still remember being told how foolish it is to keep one's life savings under a bed mattress, because the banks were known as trusted entities that will always do a better job of looking after your money. Even my grandparents, albeit reluctantly, came to realize that putting trust in financial institutions was the only way to go.

Expand all | Post comment

Two-factor banking 2005-10-18
Anonymous (3 replies)

Re: Two-factor banking 2005-10-19
Anonymous

Re: Two-factor banking 2005-10-20
Anonymous

Re: Two-factor banking 2006-04-13
Anonymous

Two-factor banking 2005-10-19
Todd Knarr (2 replies)

Re: Two-factor banking 2005-10-19
Anonymous (1 replies)

Re: Re: Two-factor banking 2005-10-19
Todd Knarr (1 replies)

Re: Re: Re: Two-factor banking 2005-10-19
Anonymous (2 replies)

Re: Re: Re: Re: Two-factor banking 2005-10-22
Anonymous2

Re: Re: Re: Re: Two-factor banking 2005-10-23
Anonymous

Re: Two-factor banking 2006-04-05
Anonymous

Two-factor banking 2005-10-19
Theuns (1 replies)

Re: Two-factor banking 2005-10-23
Anonymous

Two-factor banking 2005-10-19
tarun_the_nut

Two-factor banking 2005-10-19
Anonymous

Two-factor banking 2005-10-19
Anonymous (1 replies)

Re: Two-factor banking 2005-10-20
Anonymous (1 replies)

Re: Re: Two-factor banking 2005-10-31
Anonymous

Two-factor banking 2005-10-19
Anonymous (1 replies)

Re: Two-factor banking 2005-10-22
Anonymous

Two-factor banking 2005-10-19
Anonymous (1 replies)

Re: Two-factor banking 2005-10-20
Mitch F.

Two-factor banking? I don't think so.... 2005-10-19
Anonymous

Two-factor banking 2005-10-19
HumbleOpinion

Two-factor banking 2005-10-19
Anonymous2 (1 replies)

Re: Two-factor banking 2005-10-19
Thor

Open source Two-factor banking 2005-10-19
Anonymous

One more stupid device to carry around 2005-10-20
Anonymous

Two-factor banking 2005-10-20
Anonymous

The solution isn't placing all the burden on banks - this would (if it were ever implemented) just cost consumers lots and lots of money. Why? Because there is no difference between being taken by a phishing scam and giving your information to your friend. Either way, you wouldn't lose but the bank would. Never happen because it is too open to fraud.

Giving relatively expensive, easy-to-lose tokens to customers just makes it harder, but does not 100% stop attacks. What would stop attacks is (1) complete end-to-end cooperation on user tracking by all ISPs and (2) forceful and swift enforcement by both banks and law enforcement.

How would this stop someone in Russia? Easy. If the ISP doesn't want to play ball to assist in prosecuting criminals - criminals by Russian law as well as US - cut them off. No Internet access. Period. They can't walk away from the table and stay in business, they have to negotiate.

[ reply ]

Link to this comment: http://www.securityfocus.com/comments/columns/363/32555#32555

The regulation does not require two-factor authentication 2005-10-20
Anonymous (2 replies)

Re: The regulation does not require two-factor authentication 2005-10-28
Anonymous (1 replies)

Re: Re: The regulation does not require two-factor authentication 2005-11-01
Kelly Martin (author)

Re: The regulation does not require two-factor authentication 2005-11-01
Kelly Martin (author)

Two-factor banking 2005-10-20
Anonymous (1 replies)

Re: Two-factor banking 2005-10-23
Anonymous

One Time Passwords via Mobile Text Messaging 2005-10-20
Anonymous (1 replies)

Re: One Time Passwords via Mobile Text Messaging 2005-10-23
Anonymous

Two-factor banking 2005-10-20
Anonymous (1 replies)

Re: Two-factor banking 2005-10-23
Anonymous

Two-factor banking 2005-10-20
Anonymous (3 replies)

Re: Two-factor banking 2005-10-21
Anonymous