1-tap
There were not connections to other accounts. The "reasonable doubt" line was saving face. Believe me, if Igor had found a legitimate way of not paying that withdrawal he wouldn't have paid it.
There is no saving face here. I think you are trying to provoke me to expose the information we uncovered which was PM'd to you so that the rest of the community rallies behind you for giving away private information. I have a few usernames/nicknames in my system (not KYC'd and used a few NDB bonines only) which are extremely similar to some of the nicknames you use with other accounts on-line but I could not correlate a connection that is defendable against a PAB or LGA
without reasonable doubt so i used my words very carefully. I seriously suggest you stop the provocation, especially in your line:
Believe me, if Igor had found a legitimate way of not paying that withdrawal he wouldn't have paid it.
seeing as I've sent you a PM very early on, that goes VERBATIM:
"Two things can happen: We find him guilty of fraud and
his deposits will be returned and his account closed. Or we don't find him guilty of fraud and his winnings will be paid and account closed none the less."
Now, since you exposed in your original post that his winnings are at break-even with his withdrawals, i am allowed to say that the money paid would have been the same in either case - and you knew that and had it in writing from me; but still chose to inflame the audience and myself by saying if i could, i wouldn't pay. Definition of a troll post frankly.
The only reason I drag this on is because my integrity and the integrity of my business is far more important to me than any withdrawal could ever be, especially since fraudulent or not, the cost to my business on this case is the same. Might want to think about that...
Refer to my previous post about further discussion on the topic.
Moving on..
1 TAP!! (again)
First of all, there was question about the security of 1-tap itself. And that deems a worthy exercise to answer how secure you are when transacting overall? We employ a 256-bit encryption across our entire website, including images and static content. It is as secure as we could commercially get.
You can see the security level of a site by clicking on the little padlock icon next to the address window. In Chrome for example, that would look like this:
Now for the less versed reading this, 128-bit encryption is the minim required from your bank to allow you to transact on-line. A lot of banks and casinos use a 128-bit encryption as it is more than sufficient to protect any information from being hacked in its travels. We opted for a 256-bit which is twice as secure.
It is the absolute maximum level of security purchasable commercially and it allows us to communicate to payment methods and game providers remotely knowing that if someone did have a possibility to intercepting an information packet, they wouldn't be able to see the contents without a few years of algorithm cracking.
Some more info for whoever is interested in reading about security:
I pulled this form there:
In June 2003, the U.S. Government announced that AES could be used to protect classified information:
The design and strength of all key lengths of the AES algorithm (i.e., 128, 192 and 256) are sufficient to protect classified information up to the SECRET level. TOP SECRET information will require use of either the 192 or 256 key lengths. The implementation of AES in products intended to protect national security systems and/or information must be reviewed and certified by NSA prior to their acquisition and use.[10]
It's good enough for the US government, so it's good enough for us
Frankly, if you do play at an on-line, flash based casino and that padlock isn't present with a minimum 128-bit encryption, I would sincerely not recommend that you continue.
So why 1-tap?
Frankly i just went through the process and while i see the benefit of making it a click lighter, i did not find the original process overly cumbersome to begin with. What I think Skrill did aim to do, is provide operators an easy way to integrate a deposit field in-game which is what we are about to do, which will allow you to put in your amount + bonnie and click deposit/confirm without having to go to the deposit page and travel to the Skrill interface window.
How does it work and is it secure?
I took a customer journey myself and a customer that deposits with Skrill for the very first time on the site will have to go through the usual process:
1. Choose Skrill, deposit, bonnie, etc - Click on "I have an account already", and insert your details.
2. Next window will inform you that you are about to activate 1-tap and let you choose your funding method (wallet or debit card), this looks like so:
now it's important to note that the setting are saved for future use there. Meaning,
@threescatters - you SHOULD NOT be having 1-tap enabled for all other operators. If you see the screen it says you have enabled it for NRR entertainment. If you are experiencing this protocol to be enabled for other operators please PM me so i can take it up to Skrill as that
should not be the case.
@Jasmine - you should be able to choose e-wallet as your funding solution and Skrill should not automatically debit your card if empty. The balance on the Skrill account i am using is too high to be able to deplete it for testing. I will chase this up with Skrill and find out the answer.
3. You confirm your first deposit. This looks like so:
*************************
So what happens next? A secure encrypted token connection is created between the merchant and the account. Effectively what this means is that you now only have the purple 1-tap skill button that you need to click which is hosted in a tiny iframe page on the Skrill servers and you don't have to insert your password every time because the system already recognises
you.
When you click that, Skrill would ask us for the secure token you initially created and the amount you are asking to deposit, in reply we would send your secure token to Skrill with the amount required and Skrill would process the payment to our merchant.
In terms of security, its just as secure as inserting your Skrill password on every deposit, given that no one else knows your Casino password of course - which is also secured and stored 256-bit encrypted. In fact, when you ask us to reset your password we give you a link to do it yourself because we literally cannot see it or de-crypt it.
This entire product will allow a tiny one-tap button within the frame of the game to let you put in the amount and click without having to interrupt game play and migrate to the deposit frame.
On the actual deposit page, once you have 1-tap enabled your deposits (after choosing bonnie and putting the amount) look like this:
****************************************
i hope above covers your security questions. While i'll be forwarding the cases of Jasmine and scatters - guys any info uncovered by you while testing whether 1-tap appears on other operators and whether it charges your card when wallet is empty is highly appreciated.
best,
Igor
i did not know that as i don't use Skrill myself so i didnt go throughthe experience personally. I'll speak to Skrill about it to at least allow you the setting in your Skrill management module to control this (you should not be having your card debited without you knowing 
)
