IBM Zone Trusted Information Channel (ZTIC)
Loading...
Loading...
30,314
Link to this comment:
Share to:
Loading...
- 2:24UBS Access Key (IBM Zone Trusted Information Ch...by IBMResearchZurich6,655 views
- 2:48IBM Thinkpad Laptop T43by googlereviews84,858 views
- 0:51IBM - Keep It Simpleby Tucker3265,144 views
- 1:51Aquasar Supercomputerby jgluckibm75,427 views
- 1:07IBM Researchers Create Device Which Uses Light ...by IBMLabs100,534 views
- 0:33IBM Green Commercial - Elevatorby outwithcables27,998 views
- 4:20Made in IBM Labs: IBM Research Sets New Record ...by IBMResearchZurich37,094 views
- 0:299 months of gestation in 20 seconds - New Version!by lokimdog10,851,498 views
- 2:45Phishing and safe online bankingby tulip2236675 views
- 1:09IBM en un minutoby IBMPrensa2,807 views
- 0:31IBM Bank Robbersby markman991,219 views
- 1:49IBM Hydro-Cluster Supercomputerby jgluckibm120,276 views
- 0:38Netbox Blue - IT Securityby NetBoxBlue817 views
- 2:31Mustang Chaseby jesseeast983,059 views
- 0:29Muhammad Ali IBM commercialby nysef816146,728 views
- 3:29History of IBMby jutecht68,548 views
- 2:21CBC TV on the Quest for Identity 2.0by belloStyler2,747 views
- 0:22Dr. Manhattan Rises in London - Amazing 100ft W...by RubberRepublic63,991 views
- 1:38Microbot for swimming in small arteries: The Pr...by MNRLMonash57,827 views
- 4:17Online Banking Fraudby onlinebankingfraud11,574 views
based on the video diagram, the ztic has it's own correction (I guess over the cell network) tot he bank, so what ever is displayed is sent to the bank without going back to the PC, otherwise, indeed it would defeat the purpose.
tenofzero 2 years ago
Seems like it would be easy to accidentally press the checkmark instead of the x.
notbored12 2 years ago
Nooooo, it shows up to the user that he is paying correctly but the hacker changes the destination
furiousaaron 2 years ago
I guess John Smith never learns...
wouldn't this be dependent on the user? if the user is lasy and confirms without reading properly, wont this defeat the purpose?
ZephyrChronicles 2 years ago
The ZTIC (or Zone Trusted Information Channel) is a dongle that allows for secure banking, even on a very infected machine. The way it works, is it opens an SSL connection with your banks servers, keeping data safe on its side (with no internal storage of its own) it doesnt have internal storage making what you say could happen, impossible.
graydiggy 2 years ago
The "bad guys" don't gain anything by inserting a MITM device driver as long as the ZTIC controls access to the "real secrets" (crypto keys, smart card, PIN, e.g.) and operates on them only after displaying to the user the data to be exchanged with the server: The user would see the MITM operations (and cancel the operation) and the server would not accept changes by the MITM software --assuming we trust TLS/SSL to be a secure protocol :-)
mibZurich 3 years ago
Yeah but still, Blueray was said to be "unbrokeble", but today I saw some news that they have cracked it. So it is just matter of time until this stick is cracked too and then the virus-creators will just proceed. In my opinion this solution suck. But it is a better then what I would thought of ofc.;)
KurdoFighter 3 years ago
And how hard can it be to insert a man-in-the-middle devicedriver that emulates this device and makes it even easier for fraud (if a lot of banks use this) by emulating both channels to the device(s) (bot the ztick and the bank). I'd say this LOWERS the chance of getting hit by fraudlent individuals, since they have easy targets.
grajsor 3 years ago
If it were possible to load software onto the ZTIC, then you were right. However, it's been designed so that this should be _very_ hard (I'd say "impossible", but you never know :-) It'll be much harder than with PC's anyway :-)
mibZurich 3 years ago
Hmmm what if a virus/malware-programmer creates a virus/malware for that stick? so when the user stops the usb the virus/malware copies it self to the stick and the stick is conatining virus? Then the stick is a bad idea?
KurdoFighter 3 years ago