Feeds

Boffins test voice-activated secure credit card

Give me the bl**dy money!

  • alert
  • submit to reddit

Choosing a cloud hosting partner with confidence

Boffins have developed a credit card that works only when it hears its owner's voice.

A prototype card from Santa Monica, California-based Beepcard comes with a built-in voice recognition chip, miniature battery, microphone and speaker.

To operate the card a user would need to press a button on the card's surface and provide a password. If the in-built voice recognition technology authenticates this voice then it emits an variable audible squawk, which a merchant's server can recognise and thereafter allow a transaction to proceed. The system would allow merchants to establish a customer has a card and is the authorised user for customer not present transactions, a notorious source of credit card fraud.

The technology is based on a refinement of a non-voice activated version of the card (which could only establish that a person had a credit card; it still might be stolen). In the case of both old and new technologies the audible signal from a card differs according to a preset order known by the server, but unfathomable to crooks. The principle is the same as that used by two-factor authentication devices commonly used for authenticating remote access.

Although two-year battery life isn't a problem with the prototype card (whose circuit is only switched on when its button is depressed), size is more of a challenge. The prototype card is three times the size of a regular credit card. Also merchants would have to support Beepcard's technology.

Visa, which already makes some use of voice recognition technology on telephone calls, is cautiously enthusiastic about the idea. "It's an interesting idea but the transaction has got to be user friendly. You wouldn't want to increase the time it takes," Visa spokesman Colin Baptie told New Scientist.

Respected security expert Bruce Schneier is far more enthusiastic. ""It's a physical authentication system that doesn't require any special reader hardware. You can use it on a random computer at an internet cafe. You can use it on a telephone. If the price is cheap enough, Beepcard has a winner here," he writes in his monthly Cryptogram newsletter. ®

Related stories

UK credit card fraud down 8%
Retailers must embrace Chip and PIN. Or else
Anti-fraud scheme saves retailers £2m
Online fraud, ID theft soars
Shoppers warned of £110m card not present fraud
Opera browser to recognise speech
Insurer taps voice analysis tech to detect fraud

Beginner's guide to SSL certificates

More from The Register

next story
NASTY SSL 3.0 vuln to be revealed soon – sources (Update: It's POODLE)
So nasty no one's even whispering until patch is out
Russian hackers exploit 'Sandworm' bug 'to spy on NATO, EU PCs'
Fix imminent from Microsoft for Vista, Server 2008, other stuff
US government fines Intel's Wind River over crypto exports
New emphasis on encryption as a weapon?
To Russia With Love: Snowden's pole-dancer girlfriend is living with him in Moscow
While the NSA is tapping your PC, he's tapping ... nevermind
Forget passwords, let's use SELFIES, says Obama's cyber tsar
Michael Daniel wants to kill passwords dead
Slap for SnapChat web app in SNAP mishap: '200,000' snaps sapped
This is what happens if you hand your username and password to a 3rd-party
prev story

Whitepapers

Forging a new future with identity relationship management
Learn about ForgeRock's next generation IRM platform and how it is designed to empower CEOS's and enterprises to engage with consumers.
Win a year’s supply of chocolate
There is no techie angle to this competition so we're not going to pretend there is, but everyone loves chocolate so who cares.
Why cloud backup?
Combining the latest advancements in disk-based backup with secure, integrated, cloud technologies offer organizations fast and assured recovery of their critical enterprise data.
High Performance for All
While HPC is not new, it has traditionally been seen as a specialist area – is it now geared up to meet more mainstream requirements?
Saudi Petroleum chooses Tegile storage solution
A storage solution that addresses company growth and performance for business-critical applications of caseware archive and search along with other key operational systems.