Comments on: Your own credit card swiper for your PC http://the-gadgeteer.com/2009/05/29/your-own-credit-card-swiper-for-your-pc/ Gadget reviews and news by Julie Strietelmeier and friends since 1997 Fri, 10 Feb 2012 18:02:17 +0000 hourly 1 http://wordpress.org/?v= By: Shane http://the-gadgeteer.com/2009/05/29/your-own-credit-card-swiper-for-your-pc/comment-page-1/#comment-36706 Shane Mon, 01 Jun 2009 14:12:37 +0000 http://the-gadgeteer.com/?p=15954#comment-36706 Dynamic SSL encrypts the information on the device, then seemlessly merges it with the regular SSL stream. While SmartSwipe cannot protect credit card information once it reaches the merchant end, it provides needed security on the consumer side. check out this whitepaper http://www.smartswipe.ca/images/stories/site/dynamic-ssl-white-paper.pdf Dynamic SSL encrypts the information on the device, then seemlessly merges it with the regular SSL stream. While SmartSwipe cannot protect credit card information once it reaches the merchant end, it provides needed security on the consumer side.

check out this whitepaper http://www.smartswipe.ca/images/stories/site/dynamic-ssl-white-paper.pdf

]]> By: jake http://the-gadgeteer.com/2009/05/29/your-own-credit-card-swiper-for-your-pc/comment-page-1/#comment-36614 jake Sun, 31 May 2009 13:12:19 +0000 http://the-gadgeteer.com/?p=15954#comment-36614 erm.... if you can only use a credit card wouldn't that increase debt erm…. if you can only use a credit card wouldn’t that increase debt

]]> By: bob http://the-gadgeteer.com/2009/05/29/your-own-credit-card-swiper-for-your-pc/comment-page-1/#comment-36558 bob Sat, 30 May 2009 19:56:53 +0000 http://the-gadgeteer.com/?p=15954#comment-36558 Rob- How do you know the encryption isn't done in the device? It's possible that after you swipe your card, the number is encrypted (via dynamic SSL) then sent through your connection to the web page, where it is decrypted. Also, it is a USB device, so your computer should not see this as a keyboard. Even if a hacker were capturing your entire USB data stream, all they would get is encrypted data. However, this device will do nothing for you once an online vendor stores your credit card info on their own servers. I can't even count the number of times I've heard about databases with huge amounts of data being stolen from corporate servers.... Rob-
How do you know the encryption isn’t done in the device? It’s possible that after you swipe your card, the number is encrypted (via dynamic SSL) then sent through your connection to the web page, where it is decrypted. Also, it is a USB device, so your computer should not see this as a keyboard. Even if a hacker were capturing your entire USB data stream, all they would get is encrypted data.
However, this device will do nothing for you once an online vendor stores your credit card info on their own servers. I can’t even count the number of times I’ve heard about databases with huge amounts of data being stolen from corporate servers….

]]> By: Rob Shein http://the-gadgeteer.com/2009/05/29/your-own-credit-card-swiper-for-your-pc/comment-page-1/#comment-36500 Rob Shein Sat, 30 May 2009 04:14:46 +0000 http://the-gadgeteer.com/?p=15954#comment-36500 There is no way this could possibly be any more secure than simply typing in the number. No matter what encryption they use, security they employ, or hardware they build...at the end of the day, the website is expecting data in a specific format, and only that format. You can encrypt it all you want, but it's going to have to be decrypted before it can be sent to the website itself, and I would bet dollars to donuts that all it really is in the eyes of the computer is a keyboard, which essentially guarantees that any keyloggers will pickup its input. There is no way this could possibly be any more secure than simply typing in the number. No matter what encryption they use, security they employ, or hardware they build…at the end of the day, the website is expecting data in a specific format, and only that format. You can encrypt it all you want, but it’s going to have to be decrypted before it can be sent to the website itself, and I would bet dollars to donuts that all it really is in the eyes of the computer is a keyboard, which essentially guarantees that any keyloggers will pickup its input.

]]> By: Mark Adkins http://the-gadgeteer.com/2009/05/29/your-own-credit-card-swiper-for-your-pc/comment-page-1/#comment-36493 Mark Adkins Sat, 30 May 2009 03:39:15 +0000 http://the-gadgeteer.com/?p=15954#comment-36493 OK, is it just me, or does anyone else think calling these things 'swipers' in the age of Identity Theft is a really bad idea? OK, is it just me, or does anyone else think calling these things ‘swipers’ in the age of Identity Theft is a really bad idea?

]]>