上海律师杨春宝主持的法律专业网站群: 法律桥 :: 会见律师网 :: 公司投资律师 :: 创业与法律 :: 律师博客 :: 法律论坛 :: Law Bridge
聘请律师: 法律顾问 :: 公司法律师 :: 投资律师 :: 房地产律师 :: 知识产权律师 :: 电信网络律师 :: 法律服务热线:13901826830(杨春宝律师)
主持律师 会见公司投资律师 会见房地产律师
联盟律师 会见知识产权律师 会见电信网络律师
最新文章
·我国域名管理新办法行将施行
·域名及其管理若干法律问题研究
·网络时代的国际商事仲裁
·电子货币及相关法律、监管问题
·从全球范围看域名法律问题
·《互联网上网服务营业场所管理条例
·电信网络法律期刊
·电子空间(cyberspace)的发展与规制
·电信经营许可收紧了?
·简析域名纠纷适用法律的司法解释
推荐文章
·我国域名管理新办法行将施行
·域名及其管理若干法律问题研究
·网络时代的国际商事仲裁
·电子货币及相关法律、监管问题
·从全球范围看域名法律问题
·《互联网上网服务营业场所管理条例
·电子空间(cyberspace)的发展与规制
·电信经营许可收紧了?
·简析域名纠纷适用法律的司法解释
·重构科学统一的域名管理体系(《电
最热文章
·电子货币及相关法律、监管问题
·域名及其管理若干法律问题研究
·电子空间(cyberspace)的发展与规制
·《互联网上网服务营业场所管理条例
·从全球范围看域名法律问题
·简析域名纠纷适用法律的司法解释
·网络时代的国际商事仲裁
·我国域名管理新办法行将施行
·电信网络法律期刊
·电信经营许可收紧了?
 
相关文章
·我国域名管理新办法行将施行
·域名及其管理若干法律问题研究
·网络时代的国际商事仲裁
·电子货币及相关法律、监管问题
·从全球范围看域名法律问题
·《互联网上网服务营业场所管理条例
·电信网络法律期刊
·电子空间(cyberspace)的发展与规制
·电信经营许可收紧了?
·简析域名纠纷适用法律的司法解释
相关专题
·湖南郴州李毅律师
·山东济南邹维高律师
·山东潍坊张吉全律师
·江西吉安李海军律师
·广东广州江秀峰律师
·上海马辉律师
您的位置:会见律师网>>电信网络法>>法律研究>>文章内容
 
电子货币及相关法律、监管问题

作者:杨春宝律师 来自:法律桥 时间:2004-12-19 20:40:20

您是本文第  位阅读者  【字体:放大 正常 缩小

III. Legal issues on issuing and using e-money

1. Security

Security issues are a major source of concern for everyone both inside and outside the banking industry. E-money increases security risks, potentially exposing hitherto isolated systems to open and risky environments. All retail payment systems themselves are vulnerable in some way, e-money products raise some more issues such as authentication and non-repudiation, integrity and privacy.

Security breaches could occur at the level of the consumer, the merchant or the issuer, and could involve attempts to steal consumer or merchant devices, to create fraudulent devices or messages that are accepted as genuine, to alter data stored on or contained in messages transmitted between devices, or to alter the software functions of a product. Security attacks would most likely be for financial gain, but could also aim to disrupt the system. Security breaches essentially fall into three categories: breaches with serious criminal intent (e.g. fraud, theft of commercially sensitive or financial information), breaches by ‘casual hackers?(e.g. defacement of web sites or ‘denial of service?- causing web sites to crash), and flaws in systems design and/or set up leading to security breaches (e.g. genuine users seeing / being able to transact on other users?accounts). All of these threats have potentially serious financial, legal and reputational implications.

Therefore, it is crucial important to assess whether the institution's proposed system is sound and the service provided through the Internet will have adequate security. Surely there no absolute security exists in either the electronic or physical world of banking. However, the level of security should be "fit for purpose". The fundamental objectives that security arrangements of e-money products should try to achieve are to:

a. restrict access to the system to those users who are authorised;
b. authenticate the identity and authority of the parties concerned to ensure the enforceability of transactions conducted through the internet;
c. maintain the secrecy of information while it is in passage over the communications network;
d. ensure that the data has not been modified either accidentally or fraudulently while in passage over the network; and
e. prevent unauthorised access to the bank's central computer system and database.

There are specific security features available to protect e-money products, which are perceived to lie in the use of encryption, electronic signatures and, in some cases, in certificates issued by third parties, known as Trusted Third Parties (TTPs). A key safeguard for card-based schemes is to make the microchip embedded in the card tamper-resistant. A critical safeguard for both card-based and software-based schemes is the encryption technology used to authenticate e-money devices and messages and to protect data on the devices from unauthorised alteration. Maximum limits on the amount that can be held on e-money devices and on the transaction value can play an important role in containing losses in the event of a security breach.

The use of all kinds of security tools can provide security that is comparable to that offered in physical transactions. However, as with a physical transaction, the effectiveness of such measures is largely dependent on their proper implementation and the establishment of a set of comprehensive policies and procedures that are rigorously enforced. Continuing developments in security technology are required to maintain the effectiveness of security measures on an ongoing basis as new threats to existing systems arise over time. Banks should accordingly be responsible for ensuring that they keep up with such developments on a continuing basis. Unless they do this, their existing security measures may quickly become obsolete. If security breaches arise from this, it would not only expose the banks to risk of loss, but also more generally undermine the confidence of their customers. All the evidence suggests that security is very much at the forefront of customers' minds in deciding whether to use this new medium.

2. Privacy

As mentioned above, sound practice requires the ability to track and verify that the proper exchanges occur which ensuring that only authenticated parties and payment mechanisms are involved in the exchange, and that they exchange only those items for which they are authorized. However, consumers may fear that their financial, credit and spending information derived from e-money transactions or products could be used without their knowledge or permission. And these fears will be widespread and strongly held when e-banking and the use of e-money becomes more widespread. With the growth of e-money, the spread of crime is likely to accompany the vastly increased storage and transmission of customer financial information. Therefore, many parties want the option of anonymous financial transactions. However, it is difficult to be widely accepted due to security concerns and money laundering. Even so, to achieve widespread confidence, all participants in the system such as banks, other issuers, consumers and merchants, must have certain basic information about the rules governing the use of e-money products. The consumer must be guaranteed that any information exchanged will be transmitted only to properly authenticated parties and only to the extent to which they are authorized to receive the information.

3. Legal risks

Other than the above-said security and privacy concerns, there are also some legal risks surrounding e-money. Legal risk arises from violation of laws, regulations or prescribed practices, such as money laundering, customer disclosures, privacy protection, etc. Legal risk may also arise when the legal rights and obligations of parties are not well established. The contractual and legal relationships between consumers, retailers, issuers and operators might be complex. Schemes differ as to when payment is final and also as to whether the consumer or the merchant bears the credit, settlement and other risks until settlement has occurred. A major concern is whether the rights and obligations of all the parties involved are certain and transparent. For example, issues could arise regarding liability in the event of fraud, counterfeiting, accident or the default of one or more of the participants.
[首页]    [上一页]    [下一页]    [末页]    

发送给好友】【刷新本页】【打印本页】【关闭窗口】【本页顶部

  发表评论须知:
  • 请注意文明用语,请勿人身攻击。
  • 请尊重网上道德,遵守中华人民共和国各项相关法律法规。
  • 您应当对因您的行为而直接或间接导致的民事或刑事法律责任负责。
  • 本站有权在网站内转载或引用您的评论。
  • 网站管理员有权删除违反上述提示的评论。
  • 法律咨询请勿在此提出,咨询请去律师论坛
  • 参与本评论即表明您已经阅读并接受上述条款。
会员名称:
匿名用户 ·注册用户·忘记密码?
密码:
评论内容:
(最多300个字符)
  查看评论

本站声明:本站所载之法律论文、法律评论、案例、法律咨询等,除非另有注明,著作权人均为站长杨春宝律师本人。欢迎其他网站链接,但是,未经站长书面许可,不得擅自摘编、转载。引用及经许可转载时均应注明出处“会见律师网”,并链接本站。本站网址:http://www.meetlawyer.com/.

本站所有内容(包括法律咨询)仅供参考,不构成法律意见,站长不对资料的完整性和时效性负责。您在处理具体法律事务时,请洽询有资质的律师。本站将努力为广大网友提供更好的服务,但不对本站提供的任何免费服务作出正式的承诺。本站所载投稿文章,其言论不代表本站观点,如需使用,请与原作者联系,版权归原作者所有。