Relay-Version: version B 2.10 5/3/83; site utzoo.UUCP
Path: utzoo!mnetor!seismo!uwvax!oddjob!matt
From: matt@oddjob.UChicago.EDU (D 1 4 U 2 C)
Newsgroups: sci.crypt
Subject: Re: DES info wanted
Message-ID: <3761@oddjob.UChicago.EDU>
Date: Thu, 7-May-87 20:13:47 EDT
Article-I.D.: oddjob.3761
Posted: Thu May  7 20:13:47 1987
Date-Received: Sat, 9-May-87 09:59:25 EDT
References: <2071@hoptoad.uucp> <599@umnd-cs.D.UMN.EDU> <5747@eddie.MIT.EDU>
Reply-To: matt@oddjob.uchicago.edu (D 1 4 U 2 C)
Distribution: world
Organization: Audible Boy Birdwatcher Society
Lines: 14
Keywords: DES, UNIX

In a very informative article Robert W. Baldwin writes one thing
I just can't believe:
) 
) Your card has a number on it which
) is the result of applying a DES based function to your PIN and your
) account number.  When you type in your PIN, the ATM performs this
) function and lets you continue if the result matches the number on the
) card.

But two of my cards (AmEx and Discover) came with forms for changing
my PIN.  All I had to do was send in the form and wait two weeks
before using the new PIN.  This argues for remote verification.

			Matt Crawford