{"id":64,"date":"2006-10-05T15:27:51","date_gmt":"2006-10-05T15:27:51","guid":{"rendered":"http:\/\/kera.name\/articles\/2006\/10\/security-oversights-for-the-casual-shopper\/"},"modified":"2006-11-02T20:46:21","modified_gmt":"2006-11-02T20:46:21","slug":"security-oversights-for-the-casual-shopper","status":"publish","type":"post","link":"https:\/\/kera.name\/articles\/2006\/10\/security-oversights-for-the-casual-shopper\/","title":{"rendered":"Security Oversights for the Casual Shopper"},"content":{"rendered":"

\"TescoI moaned about Tesco<\/a>'s self-service tills ages ago. So long ago, in fact, that my moaning predates this blog so there's no link I can give you. But basically I grew concerned, having scanned my shopping and having been forced to take a plastic bag for a handful of items, I swiped my debit card and was shocked when I was not asked for my PIN number.<\/p>\n

Beyond the obvious initial shock at Tesco for not asking for a PIN number at a till, my attention quickly turned to Visa who were clearly authorising the payment anyway. If this is the case, surely any merchant (or possibly just some with a certain reputable status, but still) is 'allowed' to charge a Visa card without any authentication whatsoever.<\/p>\n

This sets a certain dangerous precedent… and at the very least it allows any old thief to do snatch my card, do lots of grocery shopping, fly through the self-service tills then pay for it and run away.<\/p>\n

Essentially, the problem totally invalidates the usefulness of the PIN readers at the standard checkouts, because anyone using a stolen card will simply opt to use the self-service tills, and then the only people asked to key in their PIN numbers will be the real people using their own credit\/debit cards.<\/p>\n

Now watchdog Which!<\/a> has taken note<\/a>, and pressured Tesco into announcing that they'll be rolling out Chip and PIN<\/a> on self-service tills over the next two months.<\/p>\n","protected":false},"excerpt":{"rendered":"

I moaned about Tesco's self-service tills ages ago. So long ago, in fact, that my moaning predates this blog so there's no link I can give you. But basically I grew concerned, having scanned my shopping and having been forced to take a plastic bag for a handful of items, I swiped my debit card […]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":[],"categories":[],"tags":[13],"_links":{"self":[{"href":"https:\/\/kera.name\/articles\/wp-json\/wp\/v2\/posts\/64"}],"collection":[{"href":"https:\/\/kera.name\/articles\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/kera.name\/articles\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/kera.name\/articles\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/kera.name\/articles\/wp-json\/wp\/v2\/comments?post=64"}],"version-history":[{"count":0,"href":"https:\/\/kera.name\/articles\/wp-json\/wp\/v2\/posts\/64\/revisions"}],"wp:attachment":[{"href":"https:\/\/kera.name\/articles\/wp-json\/wp\/v2\/media?parent=64"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/kera.name\/articles\/wp-json\/wp\/v2\/categories?post=64"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/kera.name\/articles\/wp-json\/wp\/v2\/tags?post=64"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}