# HG changeset patch # User Christian Urban # Date 1475042251 -3600 # Node ID 39d66100d7a3c06206caf0b7346177e836800e36 # Parent 33dcbafb27cef1f81856542a1973266bace4649e updated diff -r 33dcbafb27ce -r 39d66100d7a3 handouts/ho01.pdf Binary file handouts/ho01.pdf has changed diff -r 33dcbafb27ce -r 39d66100d7a3 handouts/ho01.tex --- a/handouts/ho01.tex Fri Sep 16 11:07:02 2016 +0100 +++ b/handouts/ho01.tex Wed Sep 28 06:57:31 2016 +0100 @@ -108,7 +108,7 @@ The questions is whether the Chip-and-PIN system used with modern credit cards is more secure than the older method of -signing receipts at the till. On first glance the answer seems +signing receipts at the till? On first glance the answer seems obvious: Chip-and-PIN must be more secure and indeed improved security was the central plank in the ``marketing speak'' of the banks behind Chip-and-PIN. The earlier system was based on diff -r 33dcbafb27ce -r 39d66100d7a3 slides/slides01.pdf Binary file slides/slides01.pdf has changed diff -r 33dcbafb27ce -r 39d66100d7a3 slides/slides01.tex --- a/slides/slides01.tex Fri Sep 16 11:07:02 2016 +0100 +++ b/slides/slides01.tex Wed Sep 28 06:57:31 2016 +0100 @@ -495,11 +495,12 @@ \begin{bubble}[10.5cm] \small -The anonymous hacker from earlier:\medskip\\ ``Try to use +Some anonymous hacker from earlier:\medskip\\ +``Try to use `Verified-By-Visa' and `Mastercard-Securecode' as rarely as possible. If only your CVV2 code is getting sniffed, you are not liable for any damage, because the code is physically -printed and could have been stolen while you payed with your +printed and could have been stolen while you paid with your card at a store. Same applies if someone cloned your CC reading the magnetic stripe or sniffing RFID. Only losing your VBV or MCSC password can cause serious trouble.''\\ @@ -652,7 +653,7 @@ \only<5>{ \begin{textblock}{11}(1,3) \begin{bubble}[10cm]\small -{\bf EU Privacy Directive about Cookies:}\smallskip\\ ``In May 2011, a +{\bf Cookie Law:}\smallskip\\ ``In May 2011, a European Union law was passed stating that websites that leave non-essential cookies on visitors' devices have to alert the visitor and get acceptance from them. This law applies to both individuals and @@ -677,7 +678,7 @@ {\bf GET request:}\smallskip \begin{enumerate} \item read the cookie from client -\item if none is present, set \texttt{counter} to \textcolor{blue}{zero} +\item if none is present, set \texttt{counter} to \textcolor{blue}{0} \item if cookie is present, extract \texttt{counter} \item if \texttt{counter} is greater or equal than \textcolor{blue}{$5$}, \\ print a valued customer message\\