Don't you just love it when academics tell business that their security systems are pants, why not employ the academics in the first place to help build the security systems.........
Cambridge University academics have labelled the 3-D Secure protocol, adopted by banks and card schemes via 'Verified by Visa' and 'MasterCard SecureCode', as 'a textbook example of how not to design an authentication protocol'. In a paper submitted to the Financial Cryptography Conference in Tenerife, the researchers said the system has 'lousy technology' and presents 'significant vulnerabilities'
No comments:
Post a Comment