[Asterisk-biz] CC Fraud

Dean Collins Dean at collins.net.pr
Mon Jun 20 11:20:53 MST 2005


 
> There is only one way to get around this right now, and that is to use
> Visa's 3d Secure, which requires the user to basically log into a Visa
> authorized site, and provide more information. MasterCard has
something
> called SecuriCode (I think?) which is supposed to be deployed later
this
> year around the globe, and is basically the same thing.
> 
> Look, the "Card Verification Codes" (CVC/CVV/CVV2) don't do jack. It
was
> a BS marketing ploy by MasterCard in the mid 90s to create an illusion
> of security. All it does is extend the card number by 3 or 4 random
> digits. The solution to this isn't an account/pin solution (which is
> what a CVC really is) but a fully qualified challenge/response
> mechanism. Otherwise, CVC codes just become databased like anything
> else.

[DC] 


My thoughts exactly.

Cheers,
Dean
 
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.digium.com/pipermail/asterisk-biz/attachments/20050620/1b3fb2d5/attachment.htm


More information about the asterisk-biz mailing list