Re: Someone's knocking on my door

On 2006-04-12, Phil <pj@xxxxxxxxxxxxxxxxxxxxxxxx> wrote:
Justin C <justin.0604@xxxxxxxxxxxxxx> writes:

That's not the same device that was in the newsletter I received by post
last week. That's not even the same web-site with which I am familiar;
looks like HSBC Global rather than the UK bank. Have to wait and see
what arrives in the post.

This link just arrived
http://www.computerweekly.com/Articles/Article.aspx?liArticleID=215324&liFlavourID=1

It only seems to be aimed at business customers.

I can see the confusion. My thoughts on something being available for
home/personal use were along the lines of using the one-time password
program to generate the passwords which are then stored on a device for
easy retrieval of any of, say, 1000 passwords while you are using
insecure systems to access your own network.

As a personal customer I would find the above solution acceptible. I have seen other
reports, but cannot find them at the moment which use words like 'customers PC' and
USB card reader.

Forcing me to use either windows, or not have a portable service, would result in a
closed account.

In the news-letter I received it explicitly stated that, where currently
one must use a PC on which your certificate is stored, the new service
will enable access through any computer (probably end up being
restricted to IE though - though currently we use Netscape). And, yes, I
am referring to business banking.

I can't see why they wouldn't extend this, if it's successful, to
personal accounts as well.


Justin.

--
Justin C, by the sea.
.

Relevant Pages

  • Re: Reverse agent forwarding architecture
    ... At that point he might save all the customers' passwords and use them for personal gains without our authorization. ... With the default authentication options of SSH only public keys seem to enable keeping the secret out of the hands of employees. ... That's why we're looking for a solution that would only require adding a row to the authorized_keys file on each new server we need access to and a private key that should never leave our trusted server but only be used for calculating responses to the authentication requests. ...
    (SSH)
  • Re: Someones knocking on my door
    ... That's not even the same web-site with which I am familiar; ... what arrives in the post. ... It only seems to be aimed at business customers. ... easy retrieval of any of, say, 1000 passwords while you are using ...
    (uk.comp.os.linux)
  • Re: can ping, but cant ftp
    ... > A SETPARMS.arpa.sys file has never been included in a FTP ... > implementation of security/3000 passwords (instead of MPE ... >> I have customers from all over the world logging to my ...
    (comp.sys.hp.mpe)
  • Re: AT&T WiFi at McDonalds, etc
    ... do, or simply forget their credentials (or worse, post their credentials ... customers passwords, a rather dangerous and wasted exercise. ... My own policy is to have absolutely nothing to do with client passwords ... medical office customers, when someone forgets their dongle at home. ...
    (alt.internet.wireless)