[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: INTERNET SECURITY RISKS FOR CONSUMERS OVERBLOWN

To: Andrew Loewenstern <[email protected]>
Subject: Re: INTERNET SECURITY RISKS FOR CONSUMERS OVERBLOWN
From: Scott Brickner <[email protected]>
Date: Mon, 04 Dec 1995 14:26:55 -0600
Cc: [email protected] (Michael Coates), [email protected]
In-Reply-To: (Your message of Mon, 04 Dec 1995 12:21:47 CST.) <9512041821.AA00569@ch1d157nwk>
Sender: [email protected]

Andrew Loewenstern writes:
>>  "If someone wanted to steal a credit card number, all they would
>>  have to do is go to any gas station and look on the ground around
>>  the pumps," says the CTO at Internet security firm Terisa Systems.
>
>Sure, if you wanted to steal a card number or two the ground around a  
>gas-station would probably be a good choice.  However, if you wanted to steal 
>a thousand card numbers (or maybe even thirty thousand), just sniff packets  
>off a hub near a large Web site that accepts unencrypted (or weakly  
>encrypted) card transactions or hack your favorite ISP's machines.

Duh.  The point of the article the original poster quoted was that
there's little risk to individual *consumers*.  If someone sniffs
thirty thousand credit cards from a poorly secured web-site, the
consumers are still only liable for $50.  Of course, the card company
gets a big bill, and probably will try to sue the site to recover, and
both will pass those costs back to the consumer, assuming they
survive.  The total cost is still pretty small to the individual.

References:
- Re: INTERNET SECURITY RISKS FOR CONSUMERS OVERBLOWN
  - From: Andrew Loewenstern <[email protected]>

Prev by Date: Re: [POINTER:] Crypto Articles in Dr. Jobbs Journal
Next by Date: Commercial Apachessl
Prev by thread: Re: INTERNET SECURITY RISKS FOR CONSUMERS OVERBLOWN
Next by thread: Re: INTERNET SECURITY RISKS FOR CONSUMERS OVERBLOWN
Index(es):
- Date
- Thread