>Dear JP, > >> A reminder that 1mdc-grams INHERENTLY USES a >> "click on this" pin-number approach as a security >> supplement. >> 1mdc-grams also applauds e-gold's optional "SRK" interface. >
Hi Jim! >Yeah. If nothing else, e-gold can claim some major >improvements on the patents of Turk et al. Implementation >matters a great deal, as Gold Barter Holdings has learned. > (Actually, I think goldmoney also have a click-in-your-password option?) Mind you, goldmoney has client-cert possibility as well. All good stuff. >JP, please tell me: does your inherent "click-on-this >interface" involve choosing the original password in that >fashion? As you can see, if the password is typed even one >time, when it is first set up, it is at risk of key sniffer >technology. Jim, 1mdc ALSO HAS a pin number (ie, like on your ATM) in addition to a password. Just click here and look: https://www.1mdc.com/create.html and you'll immediately get the idea. ie, to log in to your account you need to enter your number AND your "pin" AND your initials..etc etc. FYI: >A recent advanced version of PGP offers >a TEMPEST-resistant screen (dark blue on light blue, and >fuzzy) some people dont realize most current PGP has tempest deterrent BUILT IN. i, type me a message, ii, hit PGP ... iii, choose my key .. move it to the lower box .. iv, click that "options" box you never normally click v, turn on "tempest resistance" cool eh? certainly all mac implementations of PGP have tempest-proofing built in. (Does anyone use a PC for anything even vaguely secure?) >As you can see, there are many ways to get at your secure >data. Quite so. Goldmoney's client-side certs are pretty hard core, and Eric Hollander's seminal metalsavings.com (now largely defunct, I believe) offered crypto-card log-on (you get mailed the phsycial cryptocard device in the post) which is, essentially, as secure as you can get today and essentially unbreakable except by social engineering (ie, a hot chic-spy sleeps with you and physically steals the device) Regarding key sniffers, all serious development companies use only Macintoshes for general use to 99% avoid that problem. Windoze is a joke. Again just click on here Jim https://www.1mdc.com/create.html to see the simple addition that alleviates many/most keysniffing problems. Note that you *have to* use this to use 1mdc-grams. I doubt if many people use the SRK, no matter how good an idea it is. Also, note that 1mdc-grams does not just have a number (eg, I'm 241164), you have to specify initials AS WELL to make a spend etc. Example, I am 241164 jpm. So in a stroke that 99% elminates the problem of spending to the wrong account, which plagues other DGCs. The "check spend" feature eliminates the other 1% problem of the wrong destination - use it for large spends. Basically 1mdc-grams craps on all other DGCs, use-wise, as its the only DGC done by a programming company, rather than, a bullion company, etc. The interface is tremendously easier & quicker to use than all other DGCs and has far more features (it includes graphs etc of your spend habits, 'blank check' type spends etc) -- and there are NO spend fees at all, and indeed no storage fees! Plus - total privacy. It is not even openly released yet (although the system is all up) and there is a large amount of activity -- it's a hit! 1mdc grams are e-gold grams themselves! JP --- You are currently subscribed to e-gold-list as: [email protected] To unsubscribe send a blank email to [EMAIL PROTECTED] http://www.e-gold.com/stats.html lets you observe the e-gold system's activity now!
