Join the Community

22,252
Expert opinions
44,219
Total members
417
New members (last 30 days)
210
New opinions (last 30 days)
28,759
Total comments

Finextra video interview on CAP vulnerabilities

Today, Finextra published a video interview with me, discussing my research on banks using card readers for online banking, which was recently featured on TV.

In this interview, I discuss some of the more technical aspects of the attacks on card readers, including the one demonstrated on TV (which requires compromising a Chip & PIN terminal), as well as others which instead require that the victim’s PC be compromised, but which can be carried out on a larger scale.

I also compare the approaches taken by the banking community to protocol design, with that of the Internet community. Financial organizations typically develop protocols internally, and so are subject to public scrutiny late in deployment, if at all. This is in contrast with Internet protocols which are commonly first discussed within industry and academia, then the specification is made public, and only then is it implemented. As a consequence, vulnerabilities in banking security systems are often more expensive to fix...

Read more at Light Blue Touchpaper...

External

This content is provided by an external author without editing by Finextra. It expresses the views and opinions of the author.

Join the Community

22,252
Expert opinions
44,219
Total members
417
New members (last 30 days)
210
New opinions (last 30 days)
28,759
Total comments

Now Hiring