ghostnomad.com

Data stored on card Can read the information Cloning possible

Ninety days to change Will the password stay secret Change more frequently

Talk to the people Can gain the information Why did they tell you?

Capture the data Send it at a later time Gain the credentials

Valid only once Not for memorization No replay attack

Detect the changes Monitor the host system Then use the checksum

Exploit my sites trust Use identity for tricks Browser is confused

Sit on the dashboard Makes you go from here to there Directions no more

Get network traffic Hijack will be transparent Favicon not safe Special thanks to Moxie Marlinspike http://www.thoughtcrime.org/software/sslstrip/

Keep them off the net System control from inside Failure otherwise