Premium Email @ireland.com
Find your ancestors
Close
- News
- Ireland
- World
- Supplements
- Property
- Commercial Property
- Motors
- In Depth
- Other
- News Features
- Obituaries
- Science Today
- An Teanga Bheo
- Today's paper
- Business
- Latest
- Markets
- Exchange Rates
- Agenda
- Personal Finance
- The Economy
- Management
- Technology
- Innovation
- Diary
- Life & Culture
- Features
- Entertainment
- Weekend
- Magazine
- Travel
- Health
- Pricewatch
- Education
- Crossword Club
- Sudoku
- Competitions
- Events
- Weather
- Email to a friend
- Email to Author
- RSS
- Text Size:
Credit card companies not secure, warns expert
John Collins
Credit card companies have a much greater exposure to fraud than they are currently admitting to, a US technology security expert claimed yesterday.
Richard Rushing, chief security officer with AirDefense, said the major credit card issuers would not be going to the expense of introducing the new Payment Card Industries (PCI) security standards if the level of card fraud was actually 3 per cent as they claim.
PCI provides a defined set of enhanced security standards that are designed to increase security at the retail level.
But Mr Rushing says retailers are engaging in unsecure practices, such as using wireless communications or using credit and debit card details as unique identifiers in customer databases, to provide convenience for customers.
The use of poorly-secured wireless technology led to the security breach at TJX, the parent company of discount retailer TK Maxx.
In that instance, 45.7 million credit and debit cards were found to have been compromised.
Mr Rushing said the inclusion of sections relating to wireless technology in the PCI standards suggested it is a growing problem for retailers and the card industry.
"Why would you even bring up rogue [ wireless] access points if you haven't had problems with these devices in the past?" asked Mr Rushing.
He said securing wireless communications over the Wi-Fi standard was challenging because radio waves are difficult to contain in a single building.
He also advised retailers who secure connections between point of sale systems, where customers input their Pin numbers, and their back office systems with the WEP standard, to desist.
WEP, which is the most common form of Wi-Fi security, was at the root of the recent security flaw discovered in 250,000 Netopia broadband routers distributed by Eircom.
"When you do it with wireless everyone can see everything," said Mr Rushing.
"It's like screaming your credit card number across the pub when the guy says 'you have to pay for that pint'."
© 2007 The Irish Times
This article appears in the print edition of the Irish Times
ADVERTISEMENT
Latest »
Popular Stories
Latest »
- 22:31Bray fight back to share spoils
- 21:42Roadside bomb defused in Co Fermanagh
- 21:35Government unveils unemployment initiatives
- 20:46Spurs to contend without Pavlyuchenko
- 20:25Russia to extend Georgia pullback
- 20:20Double taxation agreement with Turkey approved
- 20:13Britain to launch bank rescue deal
- 19:44Three PSNI officers injured in car crash
Popular Stories
Your Vote »
ADVERTISEMENT
Budget 2009Full coverage of budget 2009
US ElectionsFull coverage of the US Presidential election
Campaign Trail 2008Have your say on the US election at Denis Staunton's blog
Label ConsciousBeware of health conscious claims on products marketed for children, writes Sylvia Thompson
Schoolday BluesIn Education Today, Louise Holden reports on troubling times at CUS
- ADVERTISEMENT
- CLASSIFIED
Homes
Jobs
Select your categoriesNext »Cars
Dating
It may be colourful, but the new Suzuki Splash causes few ripples