Catch up on stories from the past week (and beyond) at the Slashdot story archive

 



Forgot your password?
typodupeerror

Slashdot videos: Now with more Slashdot!

  • View

  • Discuss

  • Share

We've improved Slashdot's video section; now you can view our video interviews, product close-ups and site visits with all the usual Slashdot options to comment, share, etc. No more walled garden! It's a work in progress -- we hope you'll check it out (Learn more about the recent updates).

×
Security

+ - Everything you know about password-stealing is wrong-> 1

Submitted by isoloisti
isoloisti (1610133) writes "An article by some Microsofties in the latest issue of Computing Now magazine claims we have got passwords all wrong.

When money is stolen consumers are reimbursed for stolen funds and it is money mules, not banks or retail customers, who end up with the loss. Stealing passwords is easy, but getting money out is very hard. Passwords are not the bottleneck in cyber-crime and replacing them with something stronger won’t reduce losses. The article concludes that banks have no interest in shifting liability to consumers, and that the switch to financially-motivated cyber-crime is good news, not bad.

Article is online at computer.org site (hard-to-read multipage format)
http://www.computer.org/portal/web/computingnow/content?g=53319&type=article&urlTitle=is-everything-we-know-about-password-stealing-wrong-
or pdf at author’s site.
http://research.microsoft.com/pubs/161829/EverythingWeKnow.pdf"

Link to Original Source
This discussion was created for logged-in users only, but now has been archived. No new comments can be posted.

Everything you know about password-stealing is wrong

Comments Filter:
  • "banks have no interest in shifting liability to consumers" ...but i must admit i actually sort of agree with this, or at least it doesn't seem way beyond the realm of possibility even though it seems unlikely in this era of bank super profits and legal shomozzles.

    i'm with ing and just about every revision to their t.o.s. seems to be about protecting online banking more and offering more protections, so while they seem to be alert to the problem, i haven't seen much in the way of duck shoving or passing the

"Truth never comes into the world but like a bastard, to the ignominy of him that brought her birth." -- Milton

Working...