[Gllug] OT - chip & pin
damerell at chiark.greenend.org.uk
Tue Apr 4 10:48:27 UTC 2006
On Tuesday, 4 Apr 2006, David Damerell wrote:
>On Monday, 3 Apr 2006, Paul Rayner wrote:
>>The PIN (in encrypted form) *is* stored on the card (as not all readers
>>can always be online - you can see this by the number of readers that
>>return "PIN OK" immediately).
>That is not correct. It's simply the case that, for the large
>supermarkets and similar organisations, it is cheaper to not check
>PINs when they are offline and accept the possibility that stolen
>cards can be used then than it is to stop doing business.
Whoops, I'm thinking of pre-C&P arrangements. Don't mind me.
David Damerell <damerell at chiark.greenend.org.uk> Kill the tomato!
Today is Second Potmos, April.
Gllug mailing list - Gllug at gllug.org.uk
More information about the GLLUG