Mobile Payments: Balancing Security with Convenience

Slides:



Advertisements
Similar presentations
Surviving the PCI Self -Assessment James Placer, CISSP West Michigan Cisco Users Group Leadership Board.
Advertisements

EXPERIENCES OF OTHER COUNTRIES IN REGULATION OF PAYMENT CARDS SYSTEM This section reviews the regulatory experiences of other countries with respect to.
What we all need to know. Approval Date: April 30, 2012 Approved by: President's Council.
Mobile Payment Security The Good, the Bad and the Ugly
PCI DSS for Retail Industry
Michal Bodlák. Referred to as mobile money, mobile money transfer, and mobile wallet generally refer to payment services operated under financial regulation.
1 Secure Vault Payments Girard Business Solutions, Inc.
HCE AND BLE UNIVERSITY TOMORROWS TRANSACTIONS LONDON, 20 TH MARCH 2014.
Complying With Payment Card Industry Data Security Standards (PCI DSS)
This refresher course will:
ETA UNIVERSITY MARCH 19, 2015 Deana Rich R ICH C ONSULTING, I NC. Edward A. Marshall A RNALL G OLDEN G REGORY LLP Payments 101: Overview of the Payments.
Property of CampusGuard Compliance With The PCI DSS.
Credit Card Compliance Regulations Mandated by the Payment Card Industry Standards Council Accounting and Financial Services.
Presented by : Vivian Eberhardt, Supervisor Cash and Credit Operations
Data Security Standard. What Is PCI ? Who Does It Apply To ? Who Is Involved With the Compliance Process ? How We Can Stay Compliant ?
Joe SimonettiT-FLEx Workshop T-FLEx October Workshop The Future of Fare Collection Bank Card Transactions & Merchant Processing Joseph Simonetti October.
Geneva, Switzerland, 4 December 2014 Evolving Payments into The Digital World Richard Smith, Vice President, MasterCard Customer Fraud Management
Why Comply with PCI Security Standards?
PCI's Changing Environment – “What You Need to Know & Why You Need To Know It.” Stephen Scott – PCI QSA, CISA, CISSP
Security & PCI Compliance The Future of Electronic Payments Security & PCI Compliance Greg Grant Vice President – Managed Security Services.
Web Advisory Committee June 17,  Implementing E-commerce at UW  Current Status and Future Plans  PCI Data Security Standard  Questions.
Payment Card Industry Data Security Standard (PCI DSS) By Roni Argetsinger
EPS (Electronic payment system) is an online business process used for fund transfer using electronic means, i.e  Personal computers  services  Mobile.
An Introduction to PCI Compliance. Data Breach Trends About PCI-SSC 12 Requirements of PCI-DSS Establishing Your Validation Level PCI Basics Benefits.
DATE: 3/28/2014 GETTING STARTED WITH THE INTEGRITY EASY PCI PROGRAM Presenter : Integrity Payment Systems Title: Easy PCI Program.
Data Security and Payment Card Acceptance Presented by: Brian Ridder Senior Vice President First National September 10, 2009.
What you need to know about PCI-DSS Jane Drews Chief Information Security Officer Information Security & Policy Office
ThankQ Solutions Pty Ltd Tech Forum 2013 PCI Compliance.
Global Product Marketing
We are a Level 1 PCI DSS Certified Direct Payment Processor handling nearly $4 billion in electronic payment transactions annually.
Mexican Internet Association, AMIPCI The Mexican Internet Association (AMIPCI) was founded in It integrates the most influential.
July 2015…... Michigan Community Colleges Performance with NBS Thru October, 2015.
MarketsandMarkets Presents Mobile Money Market Expected To Reach $278.9 Billion by 2018
WHAT NEW, WHAT NEXT IN PAYMENT PROCESSING. EMV WHAT IS EMV? 3  An acronym created by Europay ®, MasterCard ® and Visa ®  The global standard for the.
A Brief Introduction Radiant Pay, a global provider of payment processing services to all kinds of business, Radiant Pay Services.
UCONN PAYMENT STORE OFFICE OF THE BURSAR. WHAT IS A UCONN PAYMENT STORE? A new payment option for smaller departments to accept credit card payments online.
Banking in the United States. U.S. Banking System Overview  The Federal Reserve System is the central banking system of the United States.  Regulates.
PCI COMPLIANCE & A/R AUTOMATION 101 Nodus Technologies, Inc.
Anytime, Anywhere and Anyway
EMV.
Payment Card Industry (PCI) Rules and Standards
Mastercard® Automatic Billing Updater
ELECTRONIC PAYMENT SYSTEM
PCI DSS Improve the Security of Your Ecommerce Environment
Making card acceptance work for you
Payment Card Industry (PCI) Data Security Standard (DSS) Compliance
Payment card industry data security standards
Comprehensive Security and Compliance at an Affordable Price.
Emerging Payments Market Developments: Trends and Risks James Van Dyke, President and Founder Presented at the Federal Reserve Bank of Atlanta, November.
BCC BroncoCard Campus Service Center.
Suronapee Phoomvuthisarn, Ph.D.
Internet Payment.
Consider cards over cash
Consider cards over cash
Making card acceptance work for you
EMV® 3-D Secure - High Level Overview
Making a Holiday Special For All The Right Reasons
Create Your Own Cryptocurrency Exchange – Know These Benefits.
October 27, 2016 EMV 3DS Seizing the opportunity to enhance security and deliver a great consumer experience September 22, 2018.
Payment Card Industry (PCI) Data Security Standard (DSS) Compliance
Cyber Security and Consumer Financial Transactions Data Security
Consider cards over cash
Convergence in Parking and Transit
The Evolution of Money and Biometrics
Payment Card Industry (PCI) Data Security Standard (DSS) Compliance
Third-party Payment options, PayPal Implementation
Masterpass: Bill Payments July 18, 2017
Mastercard® Automatic Billing Updater
UD PCI GUIDELINES A guide for compliance with PCI DSS and the University of Delaware Payment Card Program ALWAYS Process payments immediately using a solution.
Presentation transcript:

Mobile Payments: Balancing Security with Convenience Ron King, President, CampusGuard

Mobile Payments Overview Trends In Adoption Security Risks Securing Mobile Payments

Mobile Payment Ecosystem Regulators Merchants Application Developers Device Manufacturers Financial Service Providers Standards Bodies Network Service Providers Payment Service Providers Consumers 11/16/2018

Who Wants Mobile Payments? Late Majority Millennials Early Majority ` Early Adopters Innovators Laggards Millennials are the first fully digital native population

Mobile Payments Awareness Is Exploding 32% Over half (56%) of consumers now know there is technology available to use their smartphone to pay 27% 16% 11% 8% 32% 41% 37% 36% 43% 52% 56%

Mobile Payments Landscape - Usage There are over a half-billion devices on 3G/4G networks By 2020, there will be 10 billion devices 60% of all users carry their devices with them at ALL times For high-profile, business folks and students that is near 100% A smartphone today has the same power as a PC from 10 years ago: Always-on network connectivity Location aware via GPS

Mobile Payments Landscape - Interaction Accessing sensitive information via smartphones is normal Users* do not fear making purchases or financial transactions Users * trust a smartphone over a public computer or kiosk They rarely question their smartphone’s integrity Limited “desktop real estate” means sacrificing notices Security notices are often misleading and/or cryptic

Your Campus = A City! Athletics – ticketing and concessions Performing Arts Business Office / Bursars Library – fines and copying fees DVD rental vending Campus Safety Office (parking fees and fines) Dining Residence halls Book Store Student Center (student activity fees, student newspaper advertising, food courts)

Mobile Payments on Campus

Types of Mobile Payments Mobile web browser Smartphone application Uses SMS, USSID technologies Credit Card transactions via WAP Remote Contactless Uses NFC technology Proximity

Mobile Payment Devices

Examples in Higher Ed

Balancing Security With Convenience

Benefits of Mobile Payments 4 1 3 2 Expenses Customer Preference Cash Flow “Meeting” Customer When Ready

Risk Assessment Required!

Top 10 Risks for Mobile Payments Fraud Against Customers 1 Repudiation Fraud 6 Man-In-The-Middle-Attack 2 Payments Coercion 7 Shoulder Surfing/Theft 3 Money Laundering 8 Expenditure Against Acct. 4 Internal Denial of Service 9 External Denial of Service 10 Acquiring Line of Credit 5

Cause Effect Nebraska Payment Processor Breach 2003 Nebraska Payment Processor Breach Huge Press/Media Coverage Card Brands React PCI Council Formed PCI DSS Implemented 2006

Cause Effect 1906: Upton Sinclair The Jungle Pure Food and Drug Act 1970: Ralph Nader Unsafe at Any Speed Highway Safety Act 2002: Enron and WorldCom Sarbannes-Oxley Act 2011: 9/11 USA Patriot Act

PCI DSS and Mobile Payments “Until it has completed a comprehensive examination of the mobile communications device and mobile payment application landscape, the Council will not approve or list mobile payment applications used by merchants to accept and process payment for goods and services as validated.” 2011 “With the United States facing government price controls on debit and restrictive routing and exclusivity rules, it is not feasible or appropriate to drive the market toward major infrastructure investments, especially in an environment where financial institution could lose billions in revenue as a result of the regulation.” 2011

Some Guidance…

Responsibilities Mobile Payments Payment Card Issuers Merchant Fraud Identification Development of authentication mechanisms Payment Card Issuers Mobile Payments Define and enforce payment security and fraud rules Protect the cards in their possession Cardholders Merchant Employ fraud prevention controls Ensure compliance with the rules defined by the card brands, ensuring the security of their networks, applications, and systems Service Providers Develop solutions that support the objectives of the other groups

Act Fast and Constantly Course Correct Closing Thoughts Prepare For The Future Act Fast and Constantly Course Correct Know Your Customers

Resources SAQs Annual PCI Workshop FAQs Listserv White Papers Blog www.pcisecuritystandards.org www.treasuryinstitute.org SAQs FAQs White Papers Certified QSAs and ASVs Annual PCI Workshop Listserv Blog

.

. Contact Us www.campusguard.com Ron King Mobile: 214-770-3550 Phone: 972-964-8884 Email: rking@campusguard Andy Grant Mobile: 419-409-0424 Phone: 419-873-7016 Email: agrant@campusguard Allison Rivkin Mobile: 508-509-3909 Email: acantin@campusguard www.campusguard.com

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.