Chip & PIN terminal playing Tetris 228
Fearful Bank Customer writes "When British banks introduced the Chip-and-Pin smartcard-based debit and credit card system three years ago, they assured the public it was impervious to fraud. However, the EMV protocol it's based on requires customers to type their bank account pin number into store terminals in order to make any purchase. Security researchers at the University of Cambridge Computer Laboratory derided the system as insecure at the time, as it gave access to customer's bank account pin numbers to every store they bought from. Despite these objections, the system was deployed, so researchers Steven Murdoch and Saar Drimer recently modified a straight-off-e-bay chip-and-pin terminal to play Tetris, with a video on YouTube, demonstrating that devices are neither tamper-resistant nor tamper-evident, and that even students with a spare weekend can take control of them. The banks are claiming that this can be reproduced only "in the laboratory" but seem to have missed the point: if customers have to type their bank account pin into every device they see, then the bad guys can capture both critical card information *and* the pin number for the bank account, leaving customers even more vulnerable than they were under the old system."
Hold on a sec here... (Score:5, Insightful)
Re:Hold on a sec here... (Score:5, Insightful)
Re:Hold on a sec here... (Score:1, Insightful)
liability shifty (Score:5, Insightful)
Re:Hold on a sec here... (Score:4, Insightful)
Re:Hold on a sec here... (Score:2, Insightful)
Bear in mind that Tesco is large enough that if they say "No", you're a bit stuck. It's estimated that £1 in every £4 earned in the UK is spent there.
Re:They replaced all the innards! (Score:1, Insightful)
My idea.... (Score:3, Insightful)
My thoughts are that after you swipe your card, the terminal should give YOU a PIN number that should match a PIN that the bank sends you with your card. At this point, once you verify that it is indeed legit, you provide your counterpart PIN.
And since it doesn't have to be entered, it could be a word, or with LCDs, even an image.
Hell, for that matter, even an image of YOU would work (in fact, this would also have a good usage to prevent fraud in cases of CREDIT transaction (as opposed to the debit transactions that we're talking about)
In other words: Chip and Pin is a scam! (Score:1, Insightful)
I assume you were doing your best to avoid saying it outright?
Re:Debit Cards (Score:1, Insightful)
I pay off my credit card balance every month, from a checking account that earns a modest interest rate (currently in the range 3.0-3.5% annually). So the 30 days of float I get means in effect that the bank is paying me roughly a 0.25% bonus for everything I charge.
With a debit card, the money is siphoned out of the account immediately at the point-of-sale. The attractiveness of this from the bank's point of view is obvious. It would also not surprise me if the Visa people ding merchants at a lower rate for debit than they do for credit.
A second major flaw is the fraud angle. If fraudulent charges show up on my credit card, I call my bank and refuse to pay the charges until the matter is settled. With a debit card, the money is gone, and I have to convince someone to give it back to me. Having the first sign of fraud be the fact that my checking account has been cleaned out is not a good feature, IMO.
Debit cards also lose out to ATM cards for the same reason. With an ATM card, there's a one-day limit of something like $300-$500. So if my pin or card gets compromised, there are limits to how much damage they can do. (Of course liability limits are much lower, and you should *eventually* get all of your money back, but again I don't want to start from the position of having my checking account cleaned out, and then trying to recover.)
Re:I wrote Tesco's system you should all listen to (Score:3, Insightful)