So...what's the solution?? "Use public key encryption" doesn't help us much. Especially when you claim "it's not hard". Disposable numbers have been tried many, many times and the user experience stinks. Maybe with the prevalence of good mobile experiences, their time has come?
I think the other thing is that most online credit fraud doesn't come intercepting credentials over wires but by dupe sites that imitate real realtors. I think two factor authentication might help with that, if it has to verify both sender and recipient on some mutual third party server of the credit card provider, but that costs them money, which gets back to the root problem, it doesn't cost the companies that would implement these schema anything now, and any change does cost them, and the market is rigged so you can't introduce competition.
I think it is much more likely bitcoin takes off as a real currency for exchange and people just start using banks that facilitates transparent conversion between the two when buying stuff online. It doesn't help with using a credit card online from a CC company, but it does skip them entirely.
