Academic Integrity: tutoring, explanations, and feedback — we don’t complete graded work or submit on a student’s behalf.

I use my American Express card every day, sometimes multiple times. I do a mixtu

ID: 655761 • Letter: I

Question

I use my American Express card every day, sometimes multiple times. I do a mixture of card-present and card-not-present transactions. AMEX has decent fraud detection and I get notified quickly if they suspect something.

However, for the third time in less than a year, my info was compromised. This time, the thief actually made a fake card and used it multiple times before it got blocked.

It got me wondering why seeming simple things are not used to prevent this. Some examples...

1. Every X transactions (where X is a small but random number) a photo ID is required to complete a card-present transaction with card confiscation if ID is not provided.

2. Every card-present transaction uses a cheap webcam to snap a photo of the holder. Legitimate users shouldn't be bothered by this, but it might prevent thieves from using fake cards.

3. One-time use numbers. My old Discover Card did this years ago. There was a web site that would generate a one-time use number, valid only for one transaction. Even if the info was intercepted in transit, it couldn't be used more than once, and would not compromise my real card info.

The coming chip-and-pin system in the US might help things a little bit, at least for card-present transactions. But for online purchases, it seems there are simple, inexpensive, minimally intrusive things that could be done. Why are the card issuers, banks, and gateways apparently not doing more and just eating the costs of fraud?

Explanation / Answer

1. I recently lost my ID at a ski resort. While I was waiting for them to mail it back, I got groceries. If they had asked me to present ID, then I would have had it taken. Plus, there's a burden on the sellers to confiscate/store IDs, and deal with all the people who would absolutely lose their marbles when their CC is confiscated. You'd be really screwing with normal commerce.

2. That's a ton of data. Plus, a photograph doesn't mean too much if you're prepared for it. Makeup, wigs, and lighting are magical.

3. Interesting. A two-step auth for credit cards! That's feasible, but vendors are just starting to roll out two step for passwords. That might be a ways off for the general populace, which when faced with technology is only slightly smarter than a bag of hammers.

Related Questions

I understand the mathematical derivation of the Tully Fisher relation from basic
Question #1373390
I understand the mesh loops and equations and the super meshrequired here but I
Question #1830474
I understand the problem and everything. I just dont understand the first part w
Question #1424966
I understand the process of water electrolysis - that water/an electrolyte can b
Question #1378784
I understand the question and know how to answer most of it, however, I do have
Question #2374356
I understand the relationships regarding strength of the electric field and its
Question #2173038
I understand the sign convention for bending moments: positive moments cause com
Question #1822011
I understand the theorical problem with hash collision but when it comes to prac
Question #647771
Hire Me For All Your Tutoring Needs
Integrity-first tutoring: clear explanations, guidance, and feedback.
Drop an Email at
drjack9650@gmail.com
Chat Now And Get Quote

Navigate

Previous
I use mainly PHP for web development, but recently, I started thinking about usi
Next
I use the HCS12 Microcontrollers and Embedded Systems textbook that relates this

Integrity-first tutoring: explanations and feedback only — we do not complete graded work. Learn more.