business transactions
- one end to end trust feature which would be helpful to online business transactions would be for financial institutions which allow their credit cards to be used for online purchasing, to figure out some way to allow for an electronic signature, which only the cardholder has access to, and can be provided for proof of ownership and authorization for online purchases. This signature would allow a company to be paid for products or services purchased online.
current situation:
client orders product from online company, pays with credit card.
Client receives product, contacts credit card company and cancels transaction saying "I didn't make that purchase".
Credit card company reverses the transaction to online company.
the online company has no recourse to recover the product or receive payment because the financial company which owns the credit card requires a signature, and online companies have no current ability to obtain an electronic signature.
所有回覆
- That's a great suggestion, and goes in to multifactor authentication. There is a general problem with this, and some companies have even moved away from accepting some cards because of this. Until the payment card system provides a solution, there isn't really a good way to do this. Even today, people sign stuff at stores every day when they are not the cardholder.
Eric Irvin, MCP, MCSA, MCSE, MCITP:Enterprise Admin, CISSP http://www.diggingup.com Hello everyone.
The owner of the credit card know that need a signature to pay the purchase that is made. This information is provided by the bank to the holder of that card when opened this bank account.
There are several types of credit cards.
The owner of the card can always go to the bank and ask to change the method of confirmation (signature + code)to only code that needs to sign a statement of responsibility obviously.Why is the company to recover the product has not sold?...^ Some good ideas are indeed shared above
The bad news is that: Credit card fraud will not appreciably improve until it costs banks more in losses, than than gain from the very loose environment we have today. Thus, identity theft, fraud, and other misuse will continue until improved verfications emerge that help ensure the person using the card is the true owner :-(
A tiny bit of good news is that: Some credit card issues are beginning to use improved technology (e.g., withing magnetic strip encoding, photos on credit cards themselves, etc) to gradually enhance controls and ensure better identity verifications. But as expressed above much more is needed.
Harry Waldron, Microsoft MVP - Enterprise Security- I read about 8 years ago when the Discovery magazine was a scince journal, that a german scientist was developing a genome macromolecules detector. I dont know what overlap is there but this may be one solution to the "in person" purchase. As for online purchases, seems that everyone who would try to steal, has to pay to be online. This is how the FBI traces illicit activity. Seems to me that where third parties will not suffice (large purchases) as part of the signing you would need a new RFC and a short lived, lean packet stream, PPTP to verify. Souldnt be to hard to mask the operation from "bad" ISPs or traffic handlers who might MIM. As MPLS becomes more widespread perhaps it could be a none TCP so the State and Federal institutions could monitor and tax. What are the alternatives?
Pappkartoosh
Just another speck in a fibernachi sequence of stars about to be reordered by Andromeda
