dslreports logo
site
 
    All Forums Hot Topics Gallery
spc

spacer




how-to block ads


Search Topic:
uniqs
4
share rss forum feed


DC DSL
There's a reason I'm Command.
Premium
join:2000-07-30
Washington, DC
kudos:2

1 recommendation

reply to rchandra

Re: [NY] Bank suggestions in the Buffalo area

As a long-time developer (40 years as a respected name in the industry with many of them working with financial services clients), I can tell you that the reason javascript is widespread is that END USERS insist upon the functionality. It is not solely the work of sadistic or ignorant developers. When I do usability studies and focus groups for clients, 99% of the "man off the street" types demand highly-interactive UIs that work exactly the same as a local desktop. They do not want to wade through browser history (most don't even know that it even exists). And, it just is too much as time goes on to expect a customer to have the smarts to figure out where they are in completing a form if they forced to deal with page-at-a-time or overly-long "Wizard" style forms. That creates all sorts of headaches for preventing incompletes, duplicates, or outright walk-aways. Sorry, but you are absolutely in the minority about that. If you want it different, then make it a requirement that other people must pass a "smart enough to use a computer" test.

As for Flash or other graphic-animation-based UIs that auto-play when you land on, I detest those and won't let my clients use them unless the user expressly selects that version or the content being presented actually belongs in that format, such as video. You can always tell when an amateur or graphics designer designed the UI by being forced into Flash or Silverlight by default. Those sites are also the absolute worst when it comes to data security.

Different browsers handle multiple open requests as they see fit. window.open is not the biggest pain: When I can use that or just write an anchor tab that will open exactly the same in every browser, you let me know. In IE, if I leave it to the user's browser, it may open in a new window OR in a new tab. Firefox and Chrome inconsistently do as they please. Safari on a desktop opens in a new tab *sometimes* but not others no matter how nice you ask; on iOS it *usually* starts a new tab but not guaranteed. I stopped supporting Opera ages ago because it's just a POS...you visit one of my clients sites with Opera you are warned what you see is what you get and if you can't use it then get one of the other browsers.

Outsourcing sensitive data like bank accounts or healthcare information is a really, really bad idea. No matter how stringent the contract terms are, ultimately the "owning" entity has no control over what the contractor or its employees do. At least half the bank data breaches in the last decade were pinned to offshore (mostly India) call centers where employees were openly taking liberties with account data. Greater than 80% of those incidents were due to the contracted outsourcer not giving a hoot about what the contract or applicable laws required of them. Way back when, if there was an incident involving misuse of data (yes, fraud didn't start with the Internet), a company could almost always identify exactly who it was. Data access was tightly controlled, and there was no way to directly touch the master records from the outside: Bogus transactions were easy to detect because what we used as "middleware" in those days was bulletproof when it came to exception handling. I can't tell you how much blow-back I get from programmers, even management, at clients (especially the supposedly agile ones) these days when I introduce them to Best Practices for safeguarding data.

If you want the convenience of "out of band" cash withdrawals, then you just have to suck it up and either pay hard cash for that convenience or deal with the inconvenience/limitations of a bank that refunds the fees. Same for those who cry bloody murder about overdraft fees: If someone can't or won't be responsible about keeping track of their account usage, then too frickin bad if a $0.50 candy jones costs $39.50 and then the mortgage payment bounces on top of it (with another $39 overdraft charge). In this day and age there are very, very few people who can claim ignorance about checking their bank balance to know what's in there, or bothering to find out what fees are ahead of time.

As for KISS, you are pretty much SOL finding ANY of the first- or second-tier financial institutions that have online banking services that don't require the use of javascript and cookies at some point in their UI. All of the banking apps on iOS or Android *REQUIRE* javascript (most also require Java), so there is absolutely no escaping it if you happen to want to use those.
--
"Dance like the photo isn't being tagged; love like you've never been unfriended; and tweet like nobody is following."


rchandra
Stargate Universe fan
Premium
join:2000-11-09
14225-2105

1 edit
First and foremost, thank you for an engaging discussion/debate.

Re: licensing computer users: we can dare to dream, can't we?

I am thoroughly aware I'm in the minority. It doesn't totally preclude there might be some businesses out there which decided to KISS. Again, I can dare to dream, eh?

You'd think that the different behaviors in different browsers for all sorts of bells and whistles would be a factor to favor KISS. Oh, the irony. In any case, I'd hope that most page writers would simply stick to standards...and as much as possible don't lay the page out to the pixel (use things like % instead). You'd also hope that those involved would be willing to have additional business due to being accommodating to the visually impaired (such as zooming the page works reasonably well). In any case, admittedly this is from someone who knows a smattering of CSS and doesn't do it professionally.

Re: Opera: I generally get along fine with it. Don't quite know why you'd declare it a PoS. Maybe I'm just drinking Kool-Aid, but I thought I had read someplace it's one of the most standards-compliant browsers out there. As you say though, if things ever get hairey in Opera, I generally just turn to FF; no problems, no worries.

Of course international operations are more difficult all around. Extradition is a bitch in particular. It still doesn't preclude there are quite a number of Americans who can ruin the integrity of my data just the same whether they work for the bank or not.

Actually, that's exactly the thing: there seem to be enough people who can't seem to add, subtract, and/or coordinate properly (and get dinged with overdraft fees) to subsidize my want for off hours cash access. Me, I did it twice in 25 yrs., and one of those two wasn't really my fault (and my bank decided to credit it back to me). Unless I'm misunderstanding the FNFG terms for ATM fee refunds, I don't have a problem with it (though as stated, not really contemplating being there too much longer).

Didn't say anything about not requiring cookies, just comply with best common practice of same origin. FNFG are really the only folx in like 5 years with whom I've had such cookie problems. It still doesn't excuse them for not giving some clear indications of one, needing JavaScript, or two, specifically what the issue is instead of just a generic "we encountered an error." Nor am I arguing for excluding such generic error messages; just, for those like us who would understand what "required cookie missing" or "invalid cookie" might mean, include that too. I would think those handful of words IN ADDITION TO the generic "we can't help you right now" should not be problematic. Besides...the message I saw was bogus anyway; it was saying that I should retry later. Now that I have more of a handle on what the issue was, I now understand that unless they made a backend change, it wouldn't matter how many times I retried or when, it was never going to work.

I mean seriously, it sounds like you would very well know how easy it is to have something like <div id="TellTheSchmuckToEnableJS"> Having JavaScript enabled is ESSENTIAL to this site's function</div> with JS changing the display or visibility. Matter of fact, Key does do this on some of their pages (think it was the login page I was trying).

As for tier 1 or 2, I don't necessarily care if it's 1 or 2. With for example a well established FCU like WD, I wouldn't think it'd be a problem. WDFCU has been around since at least 1996, and I wouldn't think they'd still be in business if they were screwing people or had (major) security/site problems. I'm going to guess they wouldn't be even T2. And I don't need a total lack of JS, just don't use it for every last thing on the page.
--
English is a difficult enough language to interpret correctly when its rules are followed, let alone when a writer chooses not to follow those rules.

Jeopardy! replies and randomcaps REALLY suck!