My internet bank requires a customer number, password chosen by me based on
private information and three numbers randomly chosen from a fixed six
figure number sent to me only on application for internet banking. Once I am
in, I do not have to enter any further passwords for any transaction, i.e.
All the security is in gaining the initial access.
Looks like a variation on that provided by your bank.
Mike
> From: "Simon Howarth (WSL)" <[log in to unmask]>
> Organization: Webtech Systems Limited
> Reply-To: "Simon Howarth (WSL)" <[log in to unmask]>
> Date: Mon, 8 Nov 2004 09:03:45 -0000
> To: <[log in to unmask]>
> Subject: Re: Cahoot
>
>> None of my Internet banking facilities allow me (after logging in) to
>> look up financial information *only*, and not go on to make
>> transactions. Does Cahoot have some sort of 2-tier login?
>
> I would be worried if my bank did not have a two-tier system in place! Who
> do you bank with?!?!
>
> My provider allows me to log in using a 16 digit userid and a password. I
> can then see my statements and account in general. However once I decide to
> move money in any way I have to insert part of a different password (e.g.
> type in the 1st and 6th characters of your password), to verify that I am
> allowed to move money.
>
> I would not be happy with a single security layer....
>
> Simon Howarth.
>
> ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
> All archives of messages are stored permanently and are
> available to the world wide web community at large at
> http://www.jiscmail.ac.uk/lists/data-protection.html
> If you wish to leave this list please send the command
> leave data-protection to [log in to unmask]
> All user commands can be found at : -
> http://www.jiscmail.ac.uk/help/commandref.htm
> (all commands go to [log in to unmask] not the list please)
> ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
All archives of messages are stored permanently and are
available to the world wide web community at large at
http://www.jiscmail.ac.uk/lists/data-protection.html
If you wish to leave this list please send the command
leave data-protection to [log in to unmask]
All user commands can be found at : -
http://www.jiscmail.ac.uk/help/commandref.htm
(all commands go to [log in to unmask] not the list please)
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
|