[147832] in cryptography@c2.net mail archive
Re: [Cryptography] "Death Note" elimination for hashes
daemon@ATHENA.MIT.EDU (Phillip Hallam-Baker)
Thu Oct 24 10:54:19 2013
X-Original-To: cryptography@metzdowd.com
In-Reply-To: <20131022011336.F29759AC084@www.pfarrell.com>
Date: Thu, 24 Oct 2013 09:39:06 -0400
From: Phillip Hallam-Baker <hallam@gmail.com>
To: Pat Farrell <pfarrell@pfarrell.com>
Cc: "cryptography@metzdowd.com" <cryptography@metzdowd.com>
Errors-To: cryptography-bounces+crypto.discuss=bloom-picayune.mit.edu@metzdowd.com
--===============0796146280256808853==
Content-Type: multipart/alternative; boundary=001a11c3db74f74a3e04e97cc18e
--001a11c3db74f74a3e04e97cc18e
Content-Type: text/plain; charset=ISO-8859-1
On Mon, Oct 21, 2013 at 9:13 PM, Pat Farrell <pfarrell@pfarrell.com> wrote:
> On 10/21/13 6:06 PM, Jerry Leichter wrote:
> > Sorry, but hardly anyone will read this; most of those that do won't
> really
> > understand what it means; and, in general, it will just piss users off.
> > You broke the Internet for them. All this verbiage doesn't make it any
> better.
> >
> > Security is important, but the fact is that if you *ask* people whether
> they would
> > choose to be locked out of their on-line banking accounts for some
> indefinite period,
> > or be able to access their account at some small risk, you'll find hardly
> > anyone who wants to be locked out.
>
> It is only important for folks on this list and a tiny percentage of the
> world's users.
> We learned this the hard way at CyberCash in the 90s. We used RSA and DES
> and serious
> protocols. Paypal was convenient. Their security was a joke. CyberCash
> folded before
> the dot.boom. Paypal made billionaires out of its founders. Which led to
> the security team
> coining a rule: Consumers want convenients, not security.
>
>
Cybercash went out of business before the rise of PayPal. PayPal did not do
a merchant gateway product that would have competed with Cybercash until
they acquired the Signio business from VeriSign which included the
Cybercash assets that VeriSign bought out of bankruptcy.
What did for Cybercash was the fact that the merchant software kept falling
over and causing double charging of accounts. That and their business model
was a fee per service rather than the flat rate fee for connection of
Signio.
--
Website: http://hallambaker.com/
--001a11c3db74f74a3e04e97cc18e
Content-Type: text/html; charset=ISO-8859-1
Content-Transfer-Encoding: quoted-printable
<div dir=3D"ltr"><br><div class=3D"gmail_extra"><br><br><div class=3D"gmail=
_quote">On Mon, Oct 21, 2013 at 9:13 PM, Pat Farrell <span dir=3D"ltr"><=
<a href=3D"mailto:pfarrell@pfarrell.com" target=3D"_blank">pfarrell@pfarrel=
l.com</a>></span> wrote:<br>
<blockquote class=3D"gmail_quote" style=3D"margin:0 0 0 .8ex;border-left:1p=
x #ccc solid;padding-left:1ex"><div class=3D"im">On 10/21/13 6:06 PM, Jerry=
Leichter wrote:<br>
> Sorry, but hardly anyone will read this; most of those that do won'=
;t really<br>
> understand what it means; and, in general, it will just piss users off=
.<br>
> You broke the Internet for them. =A0All this verbiage doesn't make=
it any better.<br>
><br>
</div><div class=3D"im">> Security is important, but the fact is that if=
you *ask* people whether they would<br>
> choose to be locked out of their on-line banking accounts for some ind=
efinite period,<br>
> or be able to access their account at some small risk, you'll find=
hardly<br>
> anyone who wants to be locked out.<br>
<br>
</div>It is only important for folks on this list and a tiny percentage of =
the world's users.<br>
We learned this the hard way at CyberCash in the 90s. We used RSA and DES a=
nd serious<br>
protocols. Paypal was convenient. Their security was a joke. CyberCash fold=
ed before<br>
the dot.boom. Paypal made billionaires out of its founders. Which led to th=
e security team<br>
coining a rule: Consumers want convenients, not security.<br>
<div class=3D"HOEnZb"><div class=3D"h5"><br></div></div></blockquote><div><=
br></div><div>Cybercash went out of business before the rise of PayPal. Pay=
Pal did not do a merchant gateway product that would have competed with Cyb=
ercash until they acquired the Signio business from VeriSign which included=
the Cybercash assets that VeriSign bought out of bankruptcy.</div>
<div><br></div><div>What did for Cybercash was the fact that the merchant s=
oftware kept falling over and causing double charging of accounts. That and=
their business model was a fee per service rather than the flat rate fee f=
or connection of Signio.</div>
</div><div><br></div>-- <br>Website: <a href=3D"http://hallambaker.com/">ht=
tp://hallambaker.com/</a><br>
</div></div>
--001a11c3db74f74a3e04e97cc18e--
--===============0796146280256808853==
Content-Type: text/plain; charset="us-ascii"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
Content-Disposition: inline
_______________________________________________
The cryptography mailing list
cryptography@metzdowd.com
http://www.metzdowd.com/mailman/listinfo/cryptography
--===============0796146280256808853==--
