[Cryptography] EMV as a fraud enabler

CodesInChaos codesinchaos at gmail.com
Tue Oct 28 16:53:40 EDT 2014


If I read that article correctly, the main issue is that certain banks
didn't bother to verify signatures and as a secondary issue don't
bother checking nonce uniqueness either. http://xkcd.com/1181/


More information about the cryptography mailing list