[Gllug] OT - chip & pin

David Damerell damerell at chiark.greenend.org.uk
Tue Apr 4 10:48:27 UTC 2006

On Tuesday, 4 Apr 2006, David Damerell wrote:
>On Monday, 3 Apr 2006, Paul Rayner wrote:
>>The PIN (in encrypted form) *is* stored on the card (as not all readers 
>>can always be online - you can see this by the number of readers that 
>>return "PIN OK" immediately).
>That is not correct. It's simply the case that, for the large
>supermarkets and similar organisations, it is cheaper to not check
>PINs when they are offline and accept the possibility that stolen
>cards can be used then than it is to stop doing business.

Whoops, I'm thinking of pre-C&P arrangements. Don't mind me.

David Damerell <damerell at chiark.greenend.org.uk> Kill the tomato!
Today is Second Potmos, April.
Gllug mailing list  -  Gllug at gllug.org.uk

More information about the GLLUG mailing list