22 July 2018
Tim Tyler

Tim Tyler - Mobile Static

Tim Tyler - Misys

13Posts 57,562Views 17Comments
Innovation in Financial Services

Innovation in Financial Services

A discussion of trends in innovation management within financial institutions, and the key processes, technology and cultural shifts driving innovation.
A post relating to this item from Finextra:

Online shoppers want central ID

27 April 2012  |  3076 views  |  0
According to a recent MasterCard (NYSE: MA) survey, U.S. consumers identified "entering payment, billing and shipping information" as one of the main pain points of the online shopping experience, top...

The flaws of common ID?

27 April 2012  |  4061 views  |  0

I too would prefer to have a single common method of identifying myself online: a single common avatar that I use across all sites, with a single common (complex and strong) method of authenticating myself.

But as the editor of a UK technology magazine has just discovered (@bazzacollins), illicit access through that common identifier can have widespread consequences.

He was trialling Hotmail for two weeks rather than GMail. Unfortunately, his account got broken in to and spam mail started flooding out. OK, embarrassing but nothing more than that, surely?

Well, Microsoft use a single sign on system (a form of federated identity) across more and more of their products (your Windows Live ID). So gaining access to Hotmail potentially opened up everything else. With Windows now requiring you to sign in using your Live ID, everything on your PC could potentially be at risk.

We see this federated identify principle spreading across the web - how many sites can you now sign in to using your Facebook ID, your Google ID, your Twitter handle and more?

If a bank or payment service wanted to allow you to use a federated ID, which would they pick, which would they trust, and as importantly, which would you trust? Are federated identity services secure enough yet for controlling access to your banking relationships? What else can be done for you to prove that it is really you?

Unfortunately there is a balance to be made between security and usability. As we go more and more mobile, how many of us want to be carrying around multiple methods of identification (from printed code grids, to one-time passcode tokens)? We could start using other methods of supplementing authentication - for example using our physical location to enhance a cardholder present transaction, but what other options are there?

I'm not sure we're set for a true common identity yet, ideal as it may be. Then there's the issue of who looks after all that data, and who can get access to it - and that could be an entire post in itself.


Comments: (0)

Comment on this story (membership required)

Latest posts from Tim

Little Fluffy Clouds

07 August 2012  |  3564 views  |  1 comments | recomends Recommends 0 TagsSecurityRisk & regulationGroupInnovation in Financial Services

Man The Pumps?

30 April 2012  |  3193 views  |  3 comments | recomends Recommends 0 TagsPaymentsRetail bankingGroupInnovation in Financial Services

The flaws of common ID?

27 April 2012  |  4061 views  |  0 comments | recomends Recommends 1 TagsCardsGroupInnovation in Financial Services

Your webcam as a credit card reader?

02 August 2011  |  4724 views  |  7 comments | recomends Recommends 0 TagsCardsPaymentsGroupInnovation in Financial Services

Coupons and Payments - What Do We Have To Lose?

26 April 2011  |  4840 views  |  1 comments | recomends Recommends 0 TagsMobile & onlineRetail bankingGroupInnovation in Financial Services

Tim's profile

job title Product Manager
location London
member since 2010
Summary profile See full profile »
Product Manager for social, location and mobile within Misys. Customer interaction across banking verticals.

Tim's expertise

Member since 2010
13 posts17 comments
What Tim reads
Tim's blog archive
2012 (3)2011 (6)2010 (4)

Who's commenting on Tim's posts