On Tue, 22 Jul 2008 02:24:31 -0700 (PDT), "
wrote:

The easiest exploit is going to be when a few people get together to
exploit the cap. Assuming that only one person uses the card at a time
then AFAIAA technically they're not breaking the rules so long as they
actually exchange the card. Cloning allows them to skip the need to
physically swap the card but can be detected if the card is used at
two remote stations too quickly.

Er, that wouldn't work for capping as the data to perform the cap
would be stored on the card, surely, and just occasionally sent back
to a central server to ensure it hadn't been messed with?

The most likely clone job would be something like topping an
unregistered PAYG card up with 50 quid then making 10 copies of it.

Neil

--
Neil Williams
Put my first name before the at to reply.