[Previous] [Next] - [Index] [Thread Index] - [Previous in Thread] [Next in Thread]

Subject: Re: UKNM: Credit card fraud
From: Steve Johnston
Date: Mon, 29 Jun 1998 12:08:21 +0100

On 26/06/98, at 09:27, Craig Pickup wrote:
>But when fulfilling orders on-line such as provision of software or access to
>on-line services then the transaction tends to be real-time with no address
>provided and so harder to spot and/or deal with. Other than the likes of SET
>(when/if it eventually is adopted and released) what means are there to check
>for fraud in these circumstances?

At the consumer end, all that SET really does is verify that the computer in use has a verified certificate which is supported in a transaction by the the card-holder's relevant PIN number. So imagine how hard it must be to swindle some software or other digital goodies from a colleague's PC at work, when they have probably stored their PIN number somewhere really obvious. In this event it will be the most fabulously encrypted fraudulent transaction ever. And don't forget the SET enabled customer is not saying to their bank "I am only using SET now, please refuse any other credit card transactions on my card details".

Companies like Cybersource http://www.cybersource.com/ have an interesting solution (solution? well nothing's foolproof) for digital goods delivery, and the IMRG is working very hard in the background too....

Steve Johnston
Director of Development
IMRG (Interactive Media in Retail Group)

Stonecutter Court, 1 Stonecutter Street
London EC4A 4TR, UK
Tel: +44 (0)171 303 6603
Fax: +44 (0)171 303 5881
Personal No: +44 (0) 7050 6050 33
E-mail: steveatimrg [dot] org
The IMRG is the best source of commercial
advantage for retail in the 4th channel

  Re: UKNM: Credit card fraud, Craig Pickup

[Previous] [Next] - [Index] [Thread Index] - [Next in Thread] [Previous in Thread]