Community

Join the Community

22,037
Expert opinions
43,964
Total members
420
New members (last 30 days)
182
New opinions (last 30 days)
28,682
Total comments
Join Sign in

Finextra video interview on CAP vulnerabilities

  0 Be the first to comment
Steven Murdoch
Steven Murdoch
Royal Society University Research Fellow
University College London
Location
London
Followers
1
Opinions
9
Unfollow

Today, Finextra published a video interview with me, discussing my research on banks using card readers for online banking, which was recently featured on TV.

In this interview, I discuss some of the more technical aspects of the attacks on card readers, including the one demonstrated on TV (which requires compromising a Chip & PIN terminal), as well as others which instead require that the victim’s PC be compromised, but which can be carried out on a larger scale.

I also compare the approaches taken by the banking community to protocol design, with that of the Internet community. Financial organizations typically develop protocols internally, and so are subject to public scrutiny late in deployment, if at all. This is in contrast with Internet protocols which are commonly first discussed within industry and academia, then the specification is made public, and only then is it implemented. As a consequence, vulnerabilities in banking security systems are often more expensive to fix...

Read more at Light Blue Touchpaper...

External

This content is provided by an external author without editing by Finextra. It expresses the views and opinions of the author.

4491
 

Share

 
 
 
 
 

Channels

/security
 

Information Security

The risks from Cyber cime - Hacking - Loss of Data Privacy - Identity Theft and other topical threats - can be greatly reduced by implementation of robust IT Security controls ...

Join group

216 opinions 45 members

Comments: (0)

Steven Murdoch
Steven Murdoch
Royal Society University Research Fellow
University College London
Member since
01 Jul 2009
Location
London
Followers
1
Following
0
Opinions
9
Unfollow

Chip and Skim: cloning EMV cards with the pre-play attack

UK Cards Association attempt to supress Cambridge research

Reliability of Chip and PIN evidence in banking disputes

Chip and PIN is broken

Verified by Visa and MasterCard SecureCode

See all Opinions from Steven

More expert opinions

Bo Harald

Bo Harald Chairman/Founding member, board member at Trust Infra for Real Time Economy Prgrm & MyData,

AI horror stories need to be addressed

1

Vitaliy Shtyrkin

Vitaliy Shtyrkin Chief Product Officer at B2BINPAY

Crypto Commission Models Redefined: Game Rules Change for Payment Platforms

Kunal Jhunjhunwala

Kunal Jhunjhunwala Founder at airpay payment services

How Cross-Border Payment Platforms Contribute to India's Global Trade Ambitions

Azimkhon Askarov

Azimkhon Askarov Co-partner at CONCRYT

The Impact of the 72-Hour Payment Delay

See all opinions

External

This content is provided by an external author without editing by Finextra. It expresses the views and opinions of the author.

Join the Community

22,037
Expert opinions
43,964
Total members
420
New members (last 30 days)
182
New opinions (last 30 days)
28,682
Total comments
Join Sign in

Trending

David Smith

David Smith Information Analyst at ManpowerGroup

Best 5 White-Label Neobank Solutions in 2024

Konstantin Rabin

Konstantin Rabin Head of Marketing at Kontomatik

Why Cronos, Polkadot, and Avalanche Are Q4's Hidden Gems

Ruoyu Xie

Ruoyu Xie Marketing Manager at Grand Compliance

Governance, Risk and Compliance: How AI will Make Fintech Comply?

Seth Perlman

Seth Perlman Global Head of Product at i2c Inc.

Understanding the Advantages and Current Challenges of Digital Banking Transformation

Now Hiring

All companies

Welcome to Finextra. We use cookies to help us to deliver our services. You may change your preferences at our Cookie Centre.

Please read our Privacy Policy.

Accept