Slashdot Mirror
Driver's License to be the Next Debit Card
prostoalex writes "Your US driver's license has a magnetic stripe with unique ID in it, and your debit card carries a magnetic stripe with account information on it, so why not link the two together and allow people to use their driver's licenses as debit cards? That's precisely what a young company National Payment Card is doing in select locations, according to Business Week: 'Gas-station owners are pleased with the program too. Because NPC processes the payment as an e-check with the Automated Clearing House (ACH), a network most commonly used for direct deposits, participating retailers bypass credit card companies such as Visa and Mastercard.'"
...your account is frozen. Brilliant!
"It's a reverse vampire...they....they crave the sun!"
So now someone can steal my identity and my credit in one card?
I would like to be the first to say this is a really bad idea.
Get a web developer
As of today, driver's licenses and ID cards are state-specific. Layout, extra features (barcode, magnetic strip), anti-forgery techniques, etc are all decided on a state-by-state basis. If you move to a different state, you need to get a new license from that state within a certain amount of time (usually it's within a few weeks of establishing permanent residence). In order to roll out a nation-wide license-as-debit card program, either states will have to standardize on specific extra features like a magentic strip and what information is stored there, or licensing will have to be handled by the federal government.
As a believer in states' rights, this looks like nothing more than an end-run around opposition to a national ID program. If they can get people hooked on using their license as a debit card, nobody will object when the fed steps in to take control of licensing to make it "more efficient".
How about no.
Shall we enumerate some of the problems?
Suspended/surrendered license = no money
Hacked debit card = hacked license
numerous swipes = worn card + license. I'd rather not deal with the DMV any more than absolutely required.
What is the benefit for me? Nada.
rules do not preclude merchants from asking for cardholder ID, merchants
cannot make an ID a condition of acceptance. Therefore, merchants cannot
refuse to complete a purchase transaction because a cardholder refuses to
provide ID. Visa believes merchants should not ask for ID as part of their regular
card acceptance procedures. Laws in several states also make it illegal for
merchants to write a cardholder's personal information, such as an address or
phone number, on a sales receipt.
-Pg 29, Rules for Visa Merchants--Card Acceptance and Chargeback Management Guidelines Even if the cardholder refuses to show ID, the card must still be accepted or else the merchant is in violation of their agreement and therefore subject to termination and blacklisting.
The machine asks for some info ahead of time, while it tries to make a network connection and do the validation. This gives you the illusion of speed and interactivity. So after a while, when it finally figures out that it is a dud card, it pops the card back out and forgets whatever you selected.
Excuse me, but please get off my Pennisetum Clandestinum, eh!
Michigan does not use privately assigned numbers for our drivers license numbers. Our drivers license numbers are calculated using a method that's not secret or random or anything.
_ mi
We use a system that combines soundex codes with date of birth. You can find anyones michigan driver's license number if you know:
First name, Middle Name, Last name, Month of Birth, year of birth.
If you're from michigan, get out your driver's license and see for yourself.
http://www.highprogrammer.com/cgi-bin/uniqueid/dl
There are only a few times where it might be a few numbers off. If you happen to share a first name middle name last name month of birth and year of birth, then the last 3 numbers will be off by 1. Besides that, this works really well.
This is great for catching fake ID's. None of the fake ID's bother to calculate the right number. Most bouncers who police doors are familiar enough with the codes to flag fakes quite easily.
I see where this is going: National ID, financial account ... next is it medical data stored on same card?
Heck, this card will be TOO important! What if it is lost! Why, I can't be identified, buy or sell, get health care... you'd better just tattoo the damn number on my arm and forehead.
No, thanks.
-- @rjamestaylor on Ello
As a proud citizen of Montana, I am pleased to report that our state told the federal government to "shove it". In the words of our governor, "Never, no, hell no".
Err... wouldn't that mean that you could pay a traffic fine immediately? Which translates to:
"Do you really want your state government having easy access to your bank account?"
"How fast will the state legislature pass a law requiring the immediate and direct payment of fines via the license/debit card?"
"A hold has been placed on your account for the amount of the fine. The hold will be removed if you are found innocent. Your court date is in 30 days."
(Some context: I founded a company that made credit card processing software for Linux (among others) more than ten years ago. My knowledge on the matter might be stale (as of about 2002), but as far as I know nothing about this has changed much.)
This is very bad.
When you use a credit card, you get fantastic levels of consumer protection. By law, you're liable for at most $50 of bad transactions on your credit card, and most of the major payment backbones (Visa, Mastercard, etc) have reduced that to $0 liability over the Internet. There's no burden to reporting the charges as bad - you report the charges and go on with your life and you get a bright shiny new card in the mail in a few days.
On the ACH network, it's very different - it's like you're writing checks (the ACH network is used to settle checks). In other words, you're limited to the laws protecting you from bad checks, which puts the burden on you to prove that the charges did not come from you. Recovery of the money can be a nightmare, which can only be mitigated by the policies of your bank. The law offers you very little protection. Some banks are very good about this, others won't lift a finger to help you unless it's required by law.
Debit cards are bad, but at least their widespread use have made banks familiar with the issues. This is much, much worse.
"It is our blasphemy which has made us great, and will sustain us, and which the gods secretly admire in us." - Zelazny
So when an officer stops you for speeding, does handing them your license constitute offering a bribe??
Thanks for pointing this out. I'm so sick of being asked for ID when I use my credit card. BTW, here's a PDF of the merchant rules - page 29 also mentions the "See ID" nonsense.
Remember: if you try to buy something with your Visa, but they won't let you because you won't show your ID, you can file a complaint against the merchant by calling (800) VISA-911. So far I've never had to make the call, just had to threaten it.
Visual IRC: Fast. Powerful. Free.
I would much rather have my cell phone be my:
RFID Entry key (With an actual battery it can be truly secure)
Debit/Credit Card (Same deal, different implementation)
Driver's Liscence/ID
Etc. Etc. Etc...
I should have to type in a PIN or something to spend money. You can already deactivate phone immediately if they are lost or stolen, so that's not really an issue. I'm sure this is the way things are headed.
--The universe will not be altered by forum threads, even those which are very wry. --Tycho Brahe (Penny Arcade)