Richard's Kingdom

Credit-card companies claim their 3D-Secure system – branded as Verified by Visa and Mastercard SecureCode – provides an extra layer of security against online fraud. Back in November I suggested that, rather than protecting consumers, the extra security appears to benefit banks and merchants by pushing fraud liability onto card-holders.
Now Ross Anderson and Steven Murdoch, [...]

Last Friday I travelled to London to see a talk by security visionary and cryptographer Bruce Schneier. The event was a fund-raiser for the Open Rights Group, and was chaired by its Executive Director, Jim Killock. His was not a demanding role. The capacity crowd of disciples, many of whom were also ORG supporters, needed [...]

Back in April I wrote about problems with the credit-industry password scheme Verified by Visa. At the time I compared it to so-called phishing scams – fraud committed by tricking unwary email users into handing over their passwords, bank account details or credit-card numbers, then ordering goods or transfering cash from their accounts.
It turns out [...]

The UK National Identity Card can be cloned and altered by IT security experts.
Colour me unsurprised.
The consultants who carried out this work are from the same community of experts who have been warning [pdf] that the cards would be cracked since the Home Office first disclosed the mechanics of the scheme.
The alterations can be detected [...]

Dear Richard Caborn MP,
In recent days the Home Secretary has announced that airside workers at Manchester and City airports will no longer be compelled to enroll with the National Identity Register as a condition of their continued employment. This news has been presented as a pledge that Identity Cards will never be compulsory for UK [...]