EMV's Role in reducing Payment Risks: a Multi-Layered Approach

Similar documents
Preparing for EMV chip card acceptance

What Merchants Need to Know About EMV

EMV and Restaurants What you need to know! November 19, 2014

EMV and Small Merchants:

What is EMV? What is different?

The Adoption of EMV Technology in the U.S. By Dave Ewald Global Industry Sales Consultant Datacard Group

EMV and Restaurants: What you need to know. Mike English. October Executive Director, Product Development Heartland Payment Systems

Understand the Business Impact of EMV Chip Cards

EMV EMV TABLE OF CONTENTS

Payments Transformation - EMV comes to the US

A Guide to EMV. Version 1.0 May Copyright 2011 EMVCo, LLC. All rights reserved.

Prevention Is Better Than Cure EMV and PCI

Payment Methods. The cost of doing business. Michelle Powell - BASYS Processing, Inc.

EMV FAQs. Contact us at: Visit us online: VancoPayments.com

The Canadian Migration to EMV. Prepared By:

EMV ADOPTION AND ITS IMPACT ON FRAUD MANAGEMENT WORLDWIDE

OpenEdge Research & Development Group April 2015

EMV and Encryption + Tokenization: A Layered Approach to Security

Chip Card (EMV ) CAL-Card FAQs

EMV in Hotels Observations and Considerations

What Issuers Need to Know Top 25 Questions on EMV Chip Cards and Personalization

Card Network Update Chip (EMV) Acceptance in the United States At-A-Glance

U.S. Bank. U.S. Bank Chip Card FAQs for Program Administrators. In this guide you will find: Explaining Chip Card Technology (EMV)

toast EMV in 2015: How Restaurants Can Prepare for the New Chip-and-Pin Standard

EMV and Chip Cards Key Information On What This Is, How It Works and What It Means

EMV Chip and PIN. Improving the Security of Federal Financial Transactions. Ian W. Macoy, AAP August 17, 2015

Visa Recommended Practices for EMV Chip Implementation in the U.S.

A RE T HE U.S. CHIP RULES ENOUGH?

welcome to liber8:payment

EMV Frequently Asked Questions for Merchants May, 2014

Payment System Forum and Exhibition 2014 Sasana Kijang, Kuala Lumpur

EMV : Frequently Asked Questions for Merchants

THE FIVE Ws OF EMV BY DAVE EWALD GLOBAL EMV CONSULTANT AND MANAGER DATACARD GROUP

CPIM Academy. Cash 257 Merchant Services and Revenue Collection

U.S. Smart Card Migration: Stripe to EMV Claudia Swendseid, Federal Reserve Bank of Minneapolis Terry Dooley, SHAZAM Kristine Oberg, Elavon

How to Prepare. Point of sale requirements are changing. Get ready now.

FUTURE PROOF TERMINAL QUICK REFERENCE GUIDE. Review this Quick Reference Guide to. learn how to run a sale, settle your batch

Introductions 1 min 4

American Express Contactless Payments

PREVENTING PAYMENT CARD DATA BREACHES

Frequently asked questions - Visa paywave

FOR A BARRIER-FREE PAYMENT PROCESSING SOLUTION

Flexible and secure. acceo tender retail. payment solution. tender-retail.acceo.com

Fiscal Service EMV Education Series EMV-Compliant Point-of-Sale Card Acceptance for Federal Agencies. Fiscal Service / Vantiv July 27, 2015

Secure Payments Framework Workgroup

Heartland Secure. By: Michael English. A Heartland Payment Systems White Paper Executive Director, Product Development

PAGE ONE Economics CLASSROOM EDITION. The Smart-Chip Credit Card: A Current Solution

BinBase.com REPORT: credit card fraud

Mitigating Fraud Risk Through Card Data Verification

CardControl. Credit Card Processing 101. Overview. Contents

Credit vs. Debit: The Network Perspective

EMV FAQs for developers

PCI DSS FAQ. The twelve requirements of the PCI DSS are defined as follows:

The need for a secure & trusted payment instrument in e-commerce. Ali AlMeshal

Emerging Trends in the Payment Ecosystem: The Good, the Bad and the Ugly DAN KRAMER

FOR A BARRIER-FREE PAYMENT PROCESSING SOLUTION

Securing Card-Not-Present Transactions through EMV Authentication. Matthew Carter and Brienne Douglas December 18, 2015

Changing Consumer Purchasing Patterns. John Mayleben, CPP SVP, Technology and Product Development Michigan Retailers Association

Card Acceptance Best Practices Playing it Safe at the Point of Sale

Credit Card Processing Overview

Acceptance to Minimize Fraud

Securing the Payments System. The facts about fraud prevention

EMV 101: Everything you need to know about EMV

The Merchant s Guide To Achieving Better Interchange Rates

AUSTRALIAN PAYMENTS FRAUD DETAILS AND DATA

Payment Card Industry (PCI) Data Security Standard. PCI DSS Applicability in an EMV Environment A Guidance Document Version 1

EMV DEBIT ROUTING VERIFONE.COM

ACQUIRER OR ACQUIRING BANK A financial institution (often a bank) where a merchant has an account to process transactions and card payments

A Guide to EMV Version 1.0 May 2011

Fall Conference November 19 21, 2013 Merchant Card Processing Overview

Cost-management strategies. Your guide to accepting card payments cost-effectively

ICS Presents: The October 1st 2015 Credit Card Liability Shift: This Impacts Everyone!

U.S. EMV Debit Implementation Guidelines for POS Acquirers

Thoughts on PCI DSS 3.0. D. Timothy Hartzell CISSP, CISM, QSA, PA-QSA Associate Director

Testimony of Scott Talbott, Sr. V.P. for Government Relations, Electronic Transactions Association (ETA)

The best of both worlds Low interest and convenience.

First Data s Program on EMV

Transcription:

EMV's Role in reducing Payment Risks: a Multi-Layered Approach April 24, 2013

Agenda EMV Rationale Why is this worth the effort? Guides how we implement it EMV Vulnerability at the POS EMV Impact on CNP Fraud Preparing Now 2

EMV Benefits 3

EMV Helps Prevent Fraud EMV payment cards improve security over magnetic stripe technology through an embedded computer chip Validates the card is legitimate, protecting against counterfeit cards Cardholder authentication reduces fraud from lost and stolen cards Authentication can be "chip & PIN or "chip & signature or none EMV Fraud Prevention Features Card Authentication Cardholder Verification Method (CVM) Transaction Authorization U.S. Card Fraud Losses 1 $1.3B or 16% $1.4B or 17% $2.8B or 32% Functionality Protects against Counterfeit Fraud Transactions require an authentic card that is validated either online or offline Helps combat Lost and Stolen card fraud, particularly with cardholder PIN Helps ensure that the person attempting to make the transaction is the person to whom the card belongs Options include Offline PIN, Online PIN, Signature or no CVM Combats Counterfeit and Lost/Stolen Fraud EMV transactions are authorized by the issuer based on security parameters they have established 1 Aite Group, LLC, Card Fraud in the United States: The Case for Encryption, January 2010 4

Global Experience Supports a Chip and PIN Model 2008 U.S. debit card total fraud losses comparison per dollar volume 3 Signature-based transactions:.13 percent or 13 basis points Vs. PIN-based transactions:.035 percent or 3.5 basis points PIN provided 73% better fraud protection than signature alone U.K. experience indicates Chip & PIN provides better fraud protection 4 Between 2005 & 2010, total card purchase volume grew 32%, while total card fraud decreased 17% Lost and stolen card fraud is at its lowest level since the 1990s Counterfeit card fraud is at its lowest level since 1998 3. Retail Payments Risk Forum, Chip-and-PIN: Success and Challenges in Reducing Fraud, Douglas King, January 2012. 4. Financial Fraud Action UK, Working Together to Prevent Fraud Euromonitor Data) 5

EMV Vulnerability at the POS 6

Layered Security Strategy at the POS EMV helps mitigate fraud at the POS EMV does not protect card holder data once the payment method and consumer are validated Data is still in the clear The strong encryption and tokenization technologies in the TransArmor solution can bolster the security of the entire payment transaction and reduce PCI compliance efforts Cardholder security is our first priority at First Data and we offer many layers of security. The TransArmor solution combined with chip-based technologies is the perfect combination of data theft protection and fraud prevention technologies. The TransArmor Solution Card Data Security Protects sensitive payment card data against the theft or exposure from the point of swipe through storage in back-end systems - in transit, in use and at rest. EMV, Chipbased Technology Card Fraud Protection Provides fraud protection against counterfeit, lost or stolen cards at the point of sale. Authenticates card presented is valid, verifies funds are available and validates user as the card owner via a PIN or signature. 7

Without Layered Security EMV card is inserted or tapped / waved Card and cardholder are validated Card data sent in the clear Point of capture Card data CORPORATE HEADQUARTERS LOSS PREVENTION MARKETING BILLING REPORTING CUSTOMER SERVICE STORE CONTROLLER DATA CENTER 8

Without Layered Security Card data received, used & stored in the clear Point of capture Card data CORPORATE HEADQUARTERS LOSS PREVENTION MARKETING BILLING REPORTING CUSTOMER SERVICE STORE CONTROLLER DATA CENTER 9

Without Layered Security Card and cardholder validated with EMV Card data is not encrypted and tokenized, resulting in a large card data environment (CDE) at risk and in scope Point of capture Card data CORPORATE HEADQUARTERS LOSS PREVENTION MARKETING BILLING REPORTING CUSTOMER SERVICE STORE CONTROLLER DATA CENTER 10

With a Layered Security Strategy EMV card is inserted or tapped / waved Card and cardholder are validated Card data is encrypted prior to transmission Point of capture Tokenized data Encrypted data CORPORATE HEADQUARTERS LOSS PREVENTION MARKETING BILLING REPORTING CUSTOMER SERVICE STORE CONTROLLER DATA CENTER 11

With a Layered Security Strategy Tokenized data is returned, protecting entire card data environment Point of capture T Tokenized data Encrypted data CORPORATE HEADQUARTERS LOSS PREVENTION MARKETING BILLING REPORTING CUSTOMER SERVICE STORE CONTROLLER DATA CENTER 12

With a Layered Security Strategy Card and cardholder are validated, reducing counterfeit and lost / stolen fraud Card data is protected throughout the entire payment process PCI scope is reduced to point of capture CORPORATE HEADQUARTERS LOSS PREVENTION MARKETING BILLING REPORTING CUSTOMER SERVICE STORE CONTROLLER DATA CENTER 13

EMV Card Not Present Fraud Impact 14

Potential Impact of EMV on CNP Fraud Global experience shows adoption of chip technology can reduce fraud at POS but can drive higher card not present (CNP) fraud 6 UK: France: CNP fraud more than doubled, rising to 62% of all fraud on UK cards in 2010 from 30% in 2004 CNP fraud represented 54% of all card fraud on French cards, up 25% from 2006 to 2010 Canada: From 2008 2010, CNP fraud losses increased 37%; overall CNP fraud losses were 31% of all fraud losses in 2008 & rose to 50% in 2010 Australia: CNP fraud increased nearly 70% from 2008 2010 Netherlands was in a similar situation to current U.S. state - low fraud rates and slow to adopt EMV, even though Europe was migrating to chip-and-pin 3 Fraud rate in 2005 was.02%;.05% by 2009 - a 150% increase With Canada and Mexico already adopting EMV standards, US is in similar situation 6. Fraud: The Facts, 2011, Financial Fraud ActionUK 15

Merchant Fraud Exposure in CNP Environment EMV technology adoption helps shift liability at the POS only Merchants own the fraud liability in a CNP transaction, not card issuers Higher interchange rates due to greater risk No physical signature or paper receipt to dispute a chargeback Fines/fees apply per chargeback Danger of losing merchant account Merchant placed on Excessive Chargeback list if supporting documentation isn t provided or disputed charges vs. gross charges is > 3% 16

Thank you! 17

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information