Comments on: Identity-Based Fraud Tools Make Phishing Harder to Combat http://blog.iovation.com/2009/03/17/identity-based-fraud-tools-make-phishing-harder-to-combat/ protect online businesses from cyber criminals Thu, 31 Dec 2009 16:59:12 +0000 hourly 1 http://wordpress.org/?v=3.0.1 By: » Device Fingerprinting Protects Privacy in Fighting Online Fraud : iovation Blog http://blog.iovation.com/2009/03/17/identity-based-fraud-tools-make-phishing-harder-to-combat/comment-page-1/#comment-573 » Device Fingerprinting Protects Privacy in Fighting Online Fraud : iovation Blog Mon, 04 May 2009 18:42:37 +0000 http://blog.iovation.com/?p=158#comment-573 [...] The argument against this type of technology is that the device information could be collected and sold, constituting a violation of privacy of the online user. What is missed here is how significant an improvement this is over existing identity based fraud prevention techniques. Device fingerprinting solutions, such as the device reputation system offered by iovation, ideally work much more to dually reduce fraud while simultaneously protecting the privacy of the individual. iovation’s ReputationManager service, as an example, collects and requires no personal information from our customers. Our online service is completely incapable of assigning any online activity to an individual and we market it that way. This is in direct contrast to many of the systems in place today that fight fraud through an increasingly invasive collection of personal information in the form of questions and responses to personal questions. I have blogged about this topic twice in the past, first on the topic that identity based fraud management systems are part of the problem. Second, I blogged that relying on identity based fraud management systems makes phishing harder to combat. [...] [...] The argument against this type of technology is that the device information could be collected and sold, constituting a violation of privacy of the online user. What is missed here is how significant an improvement this is over existing identity based fraud prevention techniques. Device fingerprinting solutions, such as the device reputation system offered by iovation, ideally work much more to dually reduce fraud while simultaneously protecting the privacy of the individual. iovation’s ReputationManager service, as an example, collects and requires no personal information from our customers. Our online service is completely incapable of assigning any online activity to an individual and we market it that way. This is in direct contrast to many of the systems in place today that fight fraud through an increasingly invasive collection of personal information in the form of questions and responses to personal questions. I have blogged about this topic twice in the past, first on the topic that identity based fraud management systems are part of the problem. Second, I blogged that relying on identity based fraud management systems makes phishing harder to combat. [...]

]]> By: » Pwn2Own Highlights Ease of Compromise : iovation Blog http://blog.iovation.com/2009/03/17/identity-based-fraud-tools-make-phishing-harder-to-combat/comment-page-1/#comment-524 » Pwn2Own Highlights Ease of Compromise : iovation Blog Thu, 19 Mar 2009 15:41:03 +0000 http://blog.iovation.com/?p=158#comment-524 [...] HOME  |  ABOUT  |  CONTACT  |  RSS « Identity-Based Fraud Tools Make Phishing Harder to Combat [...] [...] HOME  |  ABOUT  |  CONTACT  |  RSS « Identity-Based Fraud Tools Make Phishing Harder to Combat [...]

]]> By: vikram http://blog.iovation.com/2009/03/17/identity-based-fraud-tools-make-phishing-harder-to-combat/comment-page-1/#comment-523 vikram Wed, 18 Mar 2009 14:39:55 +0000 http://blog.iovation.com/?p=158#comment-523 Hi Scott, I completely agreely with you. The Identity protection is getting complicated for consumer and also leading them to give their personal details. In addition, the social networking sites are also opening up people's life completely. All a phisher or hacker has to do is - POKE them, Add as friend.... Identity verification needs to be more robust but without relying on the consumer's knowledge. it has to deliver identification attributes or out of band authentication that are not possible for phishers to ask or get. vikram Hi Scott,

I completely agreely with you. The Identity protection is getting complicated for consumer and also leading them to give their personal details.

In addition, the social networking sites are also opening up people’s life completely. All a phisher or hacker has to do is – POKE them, Add as friend….

Identity verification needs to be more robust but without relying on the consumer’s knowledge. it has to deliver identification attributes or out of band authentication that are not possible for phishers to ask or get.

vikram

]]>