The latest issue (Number 10) of the Electronic Payment Systems Observatory - Newsletter (ePSO-N) deals with authentication.
The enclosed table of contents was mailed to the 'smartcards' mailing list. ---------- Forwarded message ---------- Date: Tue, 11 Dec 2001 16:01:27 +0100 From: Knud Bohle <[EMAIL PROTECTED]> Reply-To: [EMAIL PROTECTED] To: [EMAIL PROTECTED] Subject: [SC] ePSO-N 09 Dear list, again we send the contents page of the ePSO-Newsletter. The focus of ePSO-N 10 is on authentication, but also other articles might be of interest. In this issue we also announce the final ePSO Conference. Regards Knud Boehle ************************************************** ELECTRONIC PAYMENT SYSTEMS OBSERVATORY-NEWSLETTER ePSO-Newsletter - No 10 - November 2001 http://epso.jrc.es/newsletter OVERVIEW of ePSO-N 10 [10&1] Editorial: Authentication, Privacy and Regulation Simon Lelieveldt ([EMAIL PROTECTED]), Amsterdam, The Netherlands, and Arnd Weber ([EMAIL PROTECTED]), ITAS, Karlsruhe, Germany /security/privacy/regulation This issue focuses on authentication and privacy. The development of credit card charge backs is addressed, these being a major driving force for proposals such as 3D Secure (Verified by Visa), SPA/UCAF, and pseudo card numbers. The pros and cons of these technical solutions are reviewed. Furthermore, this issue addresses the achievability of unobservable purchases and payments on networks. In addition there are comments on the demise of Flooz and Beenz, there is a review of the new "Blue Book" of the European Central Bank, and the ePSO Conference taking place in Brussels on February 19, 2002 is announced. http://epso.jrc.es/newsletter/vol10/1.html __________________________________________________ [10&2] Guaranteed Transactions, the Quest for the 'Holy Grail' Oliver Steeley ([EMAIL PROTECTED]), Consult Hyperion, Guildford, United Kingdom /credit cards/Internet payment systems/security In a change to their previous strategy of collaboration, Visa and MasterCard have recently announced their own separate initiatives with regards to securing Internet transactions. 3D Secure and SPA/UCAF are variations on a theme of passing the cardholder back to their card-issuer to authenticate themselves before the merchant seeks an authorisation. This is one more step in a long and arduous journey, which shows no signs of coming to a speedy conclusion. http://epso.jrc.es/newsletter/vol10/2.html __________________________________________________ [10&3] Interview: Largest German Credit Card Issuer on Massive Reduction of Charge Backs Ulrich Riehm ([EMAIL PROTECTED]) and Arnd Weber ([EMAIL PROTECTED]), ITAS, Karlsruhe, Germany, talk to Tilo Schürer ([EMAIL PROTECTED]), Bankgesellschaft Berlin, Germany /credit cards/security Tilo Schürer is responsible for product management in the field of electronic business at Bankgesellschaft Berlin, Germany's largest credit card issuer. Schürer points out that the charge back problem in the Internet business has massively lost importance during recent years. The decisive measure was not improved technology but economic penalties imposed by the credit card organisations. In the interview, there is also a discussion of the viability of new authentication measures (e.g. 3D-Secure or SPA/UCAF). Schürer subsumes that charge back figures are currently so low that the banks could theoretically announce zero liability, at least once a new user of the Internet has registered for a new authentication process. http://epso.jrc.es/newsletter/vol10/3.html __________________________________________________ [10&4] Hi-tech Payment Technologies in Russia: The Case of Paycash Victor Dostov ([EMAIL PROTECTED]), Paycash Group, St. Petersburg, Russia /electronic money/privacy/Internet payment systems/Russia Paycash is a Russian-born Internet payment system based on digital cash. With Paycash, an account can be opened pseudonymously on the Internet. The payments are untraceable, though payments of a single "Paybook" can be linked. In Russia, 200 shops are connected, and more than 400 transactions per day are processed. The company is expanding its business to abroad. http://epso.jrc.es/newsletter/vol10/4.html __________________________________________________ [10&5] JAP: A Cloak of Invisibility on the Internet Hannes Federrath ([EMAIL PROTECTED]), Dresden University of Technology, Germany/privacy/electronic commerce/JAP is an Internet service designed to enable the unobservable use of the world wide web. In the future, JAP could also be used for anonymous shopping or banking. Invisibility is achieved by communication not taking place directly with the web server, but by detour through a so called mix proxy cascade. http://epso.jrc.es/newsletter/vol10/5.html __________________________________________________ [10&6] Failure of Beenz and Flooz Indicates the End of Digital Web-Currencies? Hugo Godschalk ([EMAIL PROTECTED]), PaySys Consultancy, Frankfurt, Germany/electronic money/InternetThe article provides an overview of the business of Beenz and Flooz, which started as micropayment solutions, and blurred the line between incentive points and currencies. Saying the end of these pioneers indicates the failure of private currencies would be a rash conclusion and rather wishful thinking of players within the traditional payment industry (central banks included). http://epso.jrc.es/newsletter/vol10/6.html __________________________________________________ [10&7] ePSO Final Conference on Consumer Online Payments: Trends and Challenges for Europe Ioannis Maghiros ([EMAIL PROTECTED]), IPTS, Seville, Spain /electronic payment systems/European Commission/ePSOAs part of the ePSO project deliverables, a one day conference entitled "ePSO Final Conference on Consumer Online Payments: Trends and Challenges for Europe", will be held in Brussels on February 19, 2002. The conference will: (a) set the stage for state-of-the-art e-payment systems presentations; (b) allow actors to exchange views on existing trends and future developments, and (c) reinforce and extend the interaction links established by ePSO during its operation. http://epso.jrc.es/newsletter/vol10/7.html __________________________________________________ [10&8] Meet the Heavyweight of Payment System Statistics: ECB's 'Blue Book' Leo Van Hove ([EMAIL PROTECTED]), Free University of Brussels, Belgium /review/statistics/payment systems/settlement systems/EU Not counting the yearly statistical addenda, the previous edition of "Payment and Securities Settlement Systems in the European Union" dated back from 1996. In the meantime advances in technology have had a profound effect on payment systems. It was therefore a timely decision of the European Central Bank to publish an update of its 'Blue Book'. An overview and some personal observations are provided. http://epso.jrc.es/newsletter/vol10/8.html __________________________________________________ [10&9] Masthead Electronic Payment Systems Observatory-Newsletter ePSO-Newsletter - 2001 - No 10 - November 2001 The Electronic Payment Systems Observatory-Newsletter (ePSO-N) is an activity within the "electronic Payment Systems Observatory" (ePSO) project of the Institute for Prospective Technological Studies (IPTS), one of the eight institutes of DG Joint Research Center. The Institute for Technology Assessment and Systems Analysis (ITAS) of Karlsruhe Research Centre edits this newsletter. Michael Rader co-ordinating editor [EMAIL PROTECTED] Yannis Maghiros ePSO project leader [EMAIL PROTECTED] For subscription you may go directly to http://epso.jrc.es/newsletter/subscribe.cfm Complete Masthead: http://epso.jrc.es/newsletter/vol10/9.html ************************************************** --------------------------------------------------------------------- The Cryptography Mailing List Unsubscribe by sending "unsubscribe cryptography" to [EMAIL PROTECTED]