[funsec] NZ: Banks Demand a Look Inside Customer PCs in Fraud Case
s
Fergie
fergdawg at netzero.net
Wed Jun 27 19:34:39 CDT 2007
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
- -- "Dennis Henderson" <hendomatic at gmail.com> wrote:
>When will the customer have to have at least some responsibility for
>their action/inactions?
Well, this is kind of complicated, and I personally believe it is
the wrong question.
All to often, consumers are completely unwitting victims, through
no fault of their own.
I'd like to understand how any additional "responsibility" by
a user, who is not doing anything "risky", solves anything.
Basic security shouldn't require a consumer to be a rocket
scientist.
>I guess the person who invents the perfectly secure internet
>transaction will be the richest person on the planet. Imagine being
>able to conduct a secure pc based internet transaction with every kind
>of trojan and keylogger installed....
This is one of my major complaints with people thinking that
"Internet security" means encrypting or securing the end-to-end
transaction -- once the consumer PC is compromised, all bets are off.
- - ferg
-----BEGIN PGP SIGNATURE-----
Version: PGP Desktop 9.6.2 (Build 2014)
wj8DBQFGgwIZq1pz9mNUZTMRAsDTAJ4x11gnSoTrcIiLCGfHP8ljbCUObACg3uzQ
8jUhEem9udnJ3uB6PpQOnFg=
=IKR2
-----END PGP SIGNATURE-----
--
"Fergie", a.k.a. Paul Ferguson
Engineering Architecture for the Internet
fergdawg(at)netzero.net
ferg's tech blog: http://fergdawg.blogspot.com/
More information about the funsec
mailing list