Visa's introduction of chip-based payments incentives for U.S. merchants is enhancing dynamic authentication and expects to accelerate adoption of the EMV standard.
The future worth of payments will not rely so much on tangible currency, but more on digital value and data. And that means a stronger need for security and data management.
The PCI Security Standards Council's new guidance for tokenization offers clarification and recommendations for merchants struggling to determine which tokenization solution is best, especially where compliance with the Payment Card Industry Data Security Standard is concerned.
Eduardo Perez says, simply, the "time was right" for Visa's introduction of chip-based payments incentives for U.S. merchants. Visa's new mobile-to-EMV program offers PCI-audit-compliance waivers to qualified merchants who implement dual-interface contact and contactless acceptance.
Adoption of chip technology will not only help the U.S. payments infrastructure prepare for expected acceleration in mobile-based payments, Visa says, but will improve transaction security by providing dynamic authentication.
"You can do everything, but if you forget to change the keylocks on your dispensers, then you can be breached," says Gray Taylor, security expert at the National Association of Convenience Stores.
Bob Russo says the long-awaited PCI guidance on tokenization should provide merchants with a baseline for standardization and best practices, and serve as a roadmap for how tokenization can complement compliance with the PCI-DSS.
United Nations Federal Credit Union says member satisfaction and acceptance of the chip card have been contagious, since the bank launched the chip option last summer. The chip-card portfolio has proven to be the credit union's most successful.
"It's time to stop shifting the security burden onto retailers and restaurants like Margarita's," says Gartner analyst Avivah Litan on the latest payment card breach. "In fact, it was time for that over five years ago."
Some 200 people have reported fraudulent debit and credit transactions hitting their accounts after dining at Margarita's Mexican Restaurant in Texas. Investigators believe a third-party vendor may have been hacked.
"The action and manifestation of risk is not necessarily evident to today's users in the way it was in the past, and that creates a big inherent challenge for a CISO," says Malcolm Harkins, CISO at Intel Corp.
From the exposure of thousands of Citi cardholders to the Michaels debit breach, fraud continues to impact card issuers. Involving the consumer in prevention is a step financial institutions must take, says Javelin's Phil Blank.
As international ACH transactions increase, banking institutions can't just think about passing a security compliance audit. Effective and efficient monitoring will be keys to mitigating fraud risks.
Despite the latest $200,000 fraud spree in Florida, industry experts say pay-at-the-pump skimming incidents still account for a relatively low percentage of card compromises. ATMs remain the No. 1 target.
First-party fraud includes more than bad payments, and banking institutions should expand how they internally classify and track first-party fraud, even if regulatory definitions are limited in scope.
Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing paymentsecurity.io, you agree to our use of cookies.