News | Publications | Services | Jobs | Companies | About
Saturday 04 Feb, 2012
Categories
Interviews
Online Payments
Mobile Payments
E-invoicing
Online Banking
E-commerce
E-identity
Cards
Payments General
Products
Events
Free headlines
Feeds
Online Paypers
Mobile Paypers
E-invoicing Paypers
SEPA Paypers
Free trial subscription
Publications
Tailor-made services
E-identity
Cambridge researchers claim 3D Secure system is not safe Monday 1 February 2010 | 11:10 AM CET

University of Cambridge security researchers Steven J. Murdoch and Ross Anderson have published a paper claiming that the 3D Secure system for online payment card fraud prevention fails to deliver on its promises and features several security flaws.

In a paper presented at the recent Financial Cryptography and Data Security '10 conference, the two scientists insist that the 3D Secure system – known under the brand names of “Verified by VISA” and “MasterCard SecureCode” – “does just about everything wrong”. Among the vulnerabilities listed by Murdoch and Anderson’s paper are the increased risks of falling prey to phishing attacks, as well as the fact that customers could end up being held liable in case of fraud.

“This is yet another case where security economics trumps security engineering, but in a predatory way that leaves cardholders less secure. We conclude with a suggestion on what bank regulators might do to fix the problem”, Anderson wrote in a blog entry prior to presenting the paper.
Print | Contact editor | Mail
© 2012 The Paypers
More: Abstract | Link
News|Paypers
Register to our free news update.
Online | Paypers The Online Paypers provides news and analytical articles about      developments in payment methods, markets,     online banking, technologies, corporates, and more.
Download a copy
Mobile | Paypers The Mobile Paypers provides news and analytical articles about developments in mobile payments, m-commerce, markets, technologies, corporates, and more.

Mobile Paypers Download a copy
SEPA | Paypers The SEPA Paypers provides news and analysis about developments in the Single Euro Payments Area. Expert reflections mark the particular value of this journal.
Download a copy
E-invoicing | Paypers The E-invoicing Paypers provides news and analytical articles about developments in       electronic invoicing and billing, markets, technologies, corporates, and more.
E-invoicing Paypers Download a copy

This Month

Next Month