Re: UKNM: Credit card fraud

[Steve Johnston]

On 26/06/98, at 09:27, Craig Pickup  wrote: 

>But when fulfilling orders on-line such as provision of software or access to

>on-line services then the transaction tends to be real-time with no address

>provided and so harder to spot and/or deal with. Other than the likes of SET

>(when/if it eventually is adopted and released) what means are there to check

>for fraud in these circumstances?


At the consumer end, all that SET really does is verify that the computer in use has a verified certificate which is supported in a transaction by the the card-holder's relevant PIN number. So imagine how hard it must be to swindle some software or other digital goodies from a colleague's PC at work, when they have probably stored their PIN number somewhere really obvious. In this event it will be the most fabulously encrypted fraudulent transaction ever. And don't forget the SET enabled customer is not saying to their bank "I am only using SET now, please refuse any other credit card transactions on my card details".


Companies like Cybersource http://www.cybersource.com/ have an interesting solution (solution? well nothing's foolproof) for digital goods delivery, and the IMRG is working very hard in the background too.... 



Steve Johnston

Director of Development

IMRG (Interactive Media in Retail Group)


http://www.imrg.org/

-----------------------------------------------------------------

Stonecutter Court, 1 Stonecutter Street

London EC4A 4TR, UK

Tel: +44 (0)171 303 6603 

Fax: +44 (0)171 303 5881

Personal No: +44 (0) 7050 6050 33

E-mail:

steveimrg [dot] org

-----------------------------------------------------------------

The IMRG is the best source of commercial 

advantage for retail in the 4th channel