On Tuesday, March 27, 2001 9:31 PM, Anders Rundgren wrote:
> Well, not really. There are quite a few changes (based on relatively
> limited info available).
With all due respect, Anders, the changes you have described are not changes
to the SET protocol.
> There is just one cert/key per brand at the customer's bank. I.e. the
> bank uses its "VISA-stamp" on behalf of the customer. A very good idea
> indeed.
Most server wallet implementations using the unsigned version of SET
although a wallet implementation may enable a bank (if it chooses) create a
unique certificate per cardholder account. However, it is not possible with
SET 1.0 to have a single certificate that is used to sign on behalf of all
cardholders.
> There is a brand-directory holding URL-links to the banks keeping a
> certain card-number series which the merchants use to redirect
> transaction requests.
That is not an element of 3-D SET. I think you are confusing it with some
other protocol.
> AND THE BIGGEST CHANGE IS YET TO COME!
>
> 3D-SET will (if it takes off), challenge the idea of using smart
> credit-cards for on-line transactions as it seems more logical to use
> another security solution that the banks will anyway have to use for
> other transactions. This security resource will be stored inside a
> mobile phone. I.e. the time is running out for EMV, only a miracle can
> get it back on track. Or a total fail for Bluetooth.
> http://www.mobilephones-tng.com/papers/thenewswissarmyknife.html
I'm not sure what connection you're making between 3-D SET and mobile
phones. There are no published extensions to SET to enable mobile phones.
_________________________________________________________________
Tony Lewis ([EMAIL PROTECTED])
Chief Systems Architect, Internet Commerce
Visa International Service Association
