Internet security code said vulnerable to hackers

Adam Shostack adam at homeport.org
Thu Apr 10 14:08:04 PDT 1997


Robert Hettinga wrote:

| Date:  Thu, 10 Apr 1997 09:47:06 -0400
| From: "Joseph M. Reagle Jr." <reagle at rpcp.mit.edu>
| To: Multiple recipients of <e$@thumper.vmeng.com>

|   	 ATLANTA, April 9 (Reuter) - The new security protocol for

|   	 Steve Mott, senior vice president of electronic commerce
|   and new ventures for MasterCard International, said it could
|   take hackers as little as a year to break the industry's
|   standard encryption code, which is supposed to render
|   credit-card numbers unreadable to outsiders on the Internet's
|   World Wide Web.

	The security problem with SET is not its crypto, but its
complexity, which makes it impossible to determine if the thing is
secure or not.  Its also a nightmare to implement, and was supposed to
be ready six months ago.

Adam


-- 
"It is seldom that liberty of any kind is lost all at once."
					               -Hume








More information about the cypherpunks-legacy mailing list