Bill Gates is right?
Bank ATM cards work securely because they combine two forms of authentication: something you have (an ATM card) and something you know (a PIN). It doesn't matter that most people's PINs are easy - in order to make use of that information, you must have the ATM card, and that presents an additional hurdle that's often enough to make simple ATM fraud difficult.
Asking people to use a two-factor form of authentication would go a long way toward alleviating a lot of the problems I outlined above. Instead of asking folks to remember strings of characters, a card and a thumbprint would vastly simplify things while providing much more certainty that the person is who she says she is.
By Scott Granneman at SecurityFocus.
[ Read more ]