Does security and convenience go well one with another and how to increase customer's convenience in digital commerce? What's new in ACS 2.0 and how SA supports online commerce safety? Presentation will give you answers to all of those questions but also an insight about advanced security options topics.
Digital Payment and 3-D Secure by NetceteraNetcetera
Our Sales & Business Development Manager CEE, Martin Mendel, presented how we enable convenient and secure digital shopping at Cardsession in Prague, Czech Republic, in December 2017. Cardsession is one of the most significant conferences in the field of payment systems, cards and technology in the Central Europe.
Digital Payment and 3-D Secure by NetceteraNetcetera
Our Sales & Business Development Manager CEE, Martin Mendel, presented how we enable convenient and secure digital shopping at Cardsession in Prague, Czech Republic, in December 2017. Cardsession is one of the most significant conferences in the field of payment systems, cards and technology in the Central Europe.
Psdot 16 a new framework for credit card transactions involving mutual authen...ZTech Proje
FINAL YEAR IEEE PROJECTS,
EMBEDDED SYSTEMS PROJECTS,
ENGINEERING PROJECTS,
MCA PROJECTS,
ROBOTICS PROJECTS,
ARM PIC BASED PROJECTS, MICRO CONTROLLER PROJECTS Z Technologies, Chennai
SafexPay has unique product offerings are advanced Integration API for best success ratios, Dynamic Currency Conversion (DCC), Push Response Technology, Dynamic Switching, Retry options, Advanced Analytics, Recurring Payments, Multiple Currency Options, Omni-Channel Offering, E-Wallet M-commerce etc. We aim to build digital payments businesses and platforms- Encompassing payment gateways, payment aggregation (through a PSP setup), mobile wallets , White-Label Solutions as well as to provide value added services in the payments domain to consumers, merchants, banks and financial institutions across the globe.
In this webinar you will learn:
• Which benefits you gain from 3D-Secure 2.2 adaptations?
• Tips and tricks on how to make a seamless transition to 3DS 2.2 version!
• How to increase the security level and improve the user experience?
• Get an overview of 3D Secure from the expert perspective.
For more information contact us at https://3dsecure.asseco.com/
Talk by our expert Suzana Kordumova Nikolova about a seamless 3-D Secure e-commerce experience, held at MPE on 19 February 2019. Merchant Payments Ecosystems is a leading payment conference for merchants and PSPs.
Digital Payments - Netcetera Innovation Summit 2018Netcetera
Kurt Schmid, our Managing Director Digital Payment, asked: “Merchant Tokenization and SRC – the next BUZZ words – how do these change eCommerce Payments?”.
This slides shares some tips on how to identify credit card fraud - brought to you by FraudLabs Pro.com
Read the full article at https://www.fraudlabspro.com/resources/tutorials/how-to-identify-credit-card-fraud/#slideshare
The system is based on remunerating the customers for action (purchasing the good or service) in the merchant’s point of sale or in the network of the loyalty program participants. The remuneration is credited as a bonus to the customer account via e-money or points. The platform can be used for the purposes of a specific retailer or for independent operator to enter the market. The system is equipped with marketing communication tools (text messages, email, social networks) and offers up-to-date methods for data processing and reporting.
Merchant tokenization and EMV® Secure Remote CommerceNetcetera
Talk by our expert Kurt Schmid about merchant tokenization and EMV® Secure Remote Commerce, held at MPE on 19 February 2019. Merchant Payments Ecosystems is a leading payment conference for merchants and PSPs.
There are various ways in which cash withdrawals can be made available at ATMs without the use of cards. This presentation considers the options for cardless withdrawals, and discusses the challenges of using cardless technologies – including mobile devices with NFC functionality. It also looks at other cardless ATM facilities that can be offered to both customers and non-customers.
The presentation looks at the history of ATM, and mobile era. Then introduce different types of cardless cash withdrawals, other opportunities for cardless services and also discusses some of the challenges of using cardless technology.
Nice Try, ATO: Use Customers’ Devices to Transparently Enhance Account SecurityTransUnion
iovation has seen a 220% increase in reported e-commerce account takeover (ATO) attacks over the last 12 months. Why the big jump? Fraudsters have become more sophisticated in their attack methods. They are using social engineering, bots, and phishing attacks, to name a few methods.
With this alarming increase in ATO, e-commerce companies are more vulnerable than ever to damaging customer relationships, destroying brand reputation and did we mention chargebacks? What is the solution? How can you stop and prevent ATO?
Join Angie White, e-commerce fraud expert at iovation, as she deconstructs the rise of ATO and the impacts on your business. She will dive into why device reputation matters and how implementing a customer-friendly authentication solution is key to a successful fraud-prevention strategy.
Key takeaways:
-The impacts of ATO on the e-commerce industry
-ATO attack methods and trends
-How to prevent and stop ATO
-How to balance customer experience with fraud prevention
A Payment Gateway is an ecommerce application that authorizes payments for e-business, online retailers etc. Analogy of payment is cash counters which are located in the retail outlets. Payment gateways encrypt sensitive information such as credit card numbers to ensure that information passes securely between the customer and the merchant.
Psdot 16 a new framework for credit card transactions involving mutual authen...ZTech Proje
FINAL YEAR IEEE PROJECTS,
EMBEDDED SYSTEMS PROJECTS,
ENGINEERING PROJECTS,
MCA PROJECTS,
ROBOTICS PROJECTS,
ARM PIC BASED PROJECTS, MICRO CONTROLLER PROJECTS Z Technologies, Chennai
SafexPay has unique product offerings are advanced Integration API for best success ratios, Dynamic Currency Conversion (DCC), Push Response Technology, Dynamic Switching, Retry options, Advanced Analytics, Recurring Payments, Multiple Currency Options, Omni-Channel Offering, E-Wallet M-commerce etc. We aim to build digital payments businesses and platforms- Encompassing payment gateways, payment aggregation (through a PSP setup), mobile wallets , White-Label Solutions as well as to provide value added services in the payments domain to consumers, merchants, banks and financial institutions across the globe.
In this webinar you will learn:
• Which benefits you gain from 3D-Secure 2.2 adaptations?
• Tips and tricks on how to make a seamless transition to 3DS 2.2 version!
• How to increase the security level and improve the user experience?
• Get an overview of 3D Secure from the expert perspective.
For more information contact us at https://3dsecure.asseco.com/
Talk by our expert Suzana Kordumova Nikolova about a seamless 3-D Secure e-commerce experience, held at MPE on 19 February 2019. Merchant Payments Ecosystems is a leading payment conference for merchants and PSPs.
Digital Payments - Netcetera Innovation Summit 2018Netcetera
Kurt Schmid, our Managing Director Digital Payment, asked: “Merchant Tokenization and SRC – the next BUZZ words – how do these change eCommerce Payments?”.
This slides shares some tips on how to identify credit card fraud - brought to you by FraudLabs Pro.com
Read the full article at https://www.fraudlabspro.com/resources/tutorials/how-to-identify-credit-card-fraud/#slideshare
The system is based on remunerating the customers for action (purchasing the good or service) in the merchant’s point of sale or in the network of the loyalty program participants. The remuneration is credited as a bonus to the customer account via e-money or points. The platform can be used for the purposes of a specific retailer or for independent operator to enter the market. The system is equipped with marketing communication tools (text messages, email, social networks) and offers up-to-date methods for data processing and reporting.
Merchant tokenization and EMV® Secure Remote CommerceNetcetera
Talk by our expert Kurt Schmid about merchant tokenization and EMV® Secure Remote Commerce, held at MPE on 19 February 2019. Merchant Payments Ecosystems is a leading payment conference for merchants and PSPs.
There are various ways in which cash withdrawals can be made available at ATMs without the use of cards. This presentation considers the options for cardless withdrawals, and discusses the challenges of using cardless technologies – including mobile devices with NFC functionality. It also looks at other cardless ATM facilities that can be offered to both customers and non-customers.
The presentation looks at the history of ATM, and mobile era. Then introduce different types of cardless cash withdrawals, other opportunities for cardless services and also discusses some of the challenges of using cardless technology.
Nice Try, ATO: Use Customers’ Devices to Transparently Enhance Account SecurityTransUnion
iovation has seen a 220% increase in reported e-commerce account takeover (ATO) attacks over the last 12 months. Why the big jump? Fraudsters have become more sophisticated in their attack methods. They are using social engineering, bots, and phishing attacks, to name a few methods.
With this alarming increase in ATO, e-commerce companies are more vulnerable than ever to damaging customer relationships, destroying brand reputation and did we mention chargebacks? What is the solution? How can you stop and prevent ATO?
Join Angie White, e-commerce fraud expert at iovation, as she deconstructs the rise of ATO and the impacts on your business. She will dive into why device reputation matters and how implementing a customer-friendly authentication solution is key to a successful fraud-prevention strategy.
Key takeaways:
-The impacts of ATO on the e-commerce industry
-ATO attack methods and trends
-How to prevent and stop ATO
-How to balance customer experience with fraud prevention
A Payment Gateway is an ecommerce application that authorizes payments for e-business, online retailers etc. Analogy of payment is cash counters which are located in the retail outlets. Payment gateways encrypt sensitive information such as credit card numbers to ensure that information passes securely between the customer and the merchant.
BankCore is a complete identification solution that allows a banks to streamline its customer identity management and complete the identity ecosystem with Biometric ATM's and Biometric EFT/POS add-ons.
Security & Seamless CX in User Authentication: How to Achieve Both?Ivona M
Watch our webinar and learn:
-How to satisfy the existing security compliance criteria in the era of impatient customers?
-Industry best practices in ensuring the highest security and improved user experience in the authentication process.
-Practical steps to planning and implementing optimal authentication ecosystems without unnecessary expenses.
-From OTP to push and biometry – which authentication methods will be best suited to your business needs?
-How to ensure strong authentication for remote work?
For more info go to https://sxs.asseco.com/
How the UK's #1 Mobile Network Enhanced Its Approval Rate by 10%, with Zero F...Vesta Corporation
As digital payments continue to increase in popularity, businesses across the globe are looking for ways to increase approvals of these transactions while preventing fraud and delivering a seamless payment experience for their customers.
EE, the largest mobile network in the UK, understands how difficult it is to strike the perfect balance between these three key pillars of e-commerce, so they selected Vesta to manage their card-not-present top-up services. Thanks to Vesta's advanced approval enhancement and fraud prevention technology, EE increased its card not present approval rate by over 10% with zero fraud liability.
Vesta also worked within the 3D Secure Framework with 2-Factor Authentication to deploy a proprietary orchestration layer that reduced 3D Secure challenges by 30% while ensuring a frictionless payment experience for EE's customers.
Nowaday, embedded systems are widely used and connected to networks, especially the Internet. This become the Internet of Things (IoT) era. When a device is on the Internet, it may be attacked or intentionally used by an unauthorized persons. How can we make IoT devices secure under the limited resources?
This presentation will explain the lesson learned from banking and card payment industry how the embedded systems process financial transaction reliably and securely.
The BFS industry track touched upon analyze and digitize as themes. Included "Achieving Data Leadership & Deeper Timely Insights" and "mPayments" as two areas for customer talks, points of view and panel discussions. Chaired by M.V. Ramana Murthy, VP & Head, BFS, TCS
PayNet Mobile Banking Introduction 2017Tushar Belwal
Overview of the mobile banking services provided by PayNet Systems Pvt Ltd www.paynet.pro. The presentation highlights our technology offerings and SAAS architecture that banks can use to create multiple services.
With the adoption of EMV bank cards by the US, a strong authN, global identity system is possible, using the payment card network to handle the identity transactions
PSD2: The Advent of the New Payments Market in EuropeTransUnion
Register today for this webinar that summarizes Aite Group’s PSD2 Research Report, commissioned by iovation, a TransUnion Company, providing an in-depth analysis of how those in the payment services and e-commerce market should prepare to handle the new strong customer authentication (SCA) requirements under the second Payment Services Directive (PSD2).
Join Angie White, Product Marketing Manager and PSD2 expert at iovation, a TransUnion Company, and Ron Van Wezel, Senior Analyst at Aite Group's Retail Banking and Payments Practice, as they analyze the results of the actual market status in Europe regarding the main changes that PSD2 will bring to the online payments market. Learn what Aite Group concluded after interviewing 20 payments executives from European banks, other PSPs, merchants, payment networks and industry experts.
Key takeaways:
The impact of PSD2, highlighting the priorities that organizations have yet to manage in the transition to the new world after PSD2.
How organizations seek to implement the requirements for secure customer authentication (SCA) and minimize the impact on customer experience.
An analysis of the potential of payment innovation and open banking as a result of PSD2.
If you haven’t already, register for this complimentary research report, PSD2: Advent of the New Payments Market in Europe.
Read the overview of the implications of PSD2 for the payment space in relation to fraud prevention and authentication, including recommendations for banks and other players on how to comply while minimizing friction during the payment process.
Mercury Processing Services International is an ever growing and innovative company and here you can find out more about their interests, goals and achievements.
This presentation covers bridging the gap between IT and business and how to, through cooperation, achieve the best results. Also, how understanding tribal behavior is important and how to achieve a great working enviroment.
Since processing cardholders personal data and sensitive card data in the name of their customers, Mercury Processing Services International needs to comply with strict Global Payment Schemes regulations, different audits from National Banks and EU regulations.
From August 1st, gPay is available in Croatia and implementations for other markets are planned in the following months. This session is the short review how MPSI helped this implementation and how the project rolled out.
General reminder of most important segments of PSD2 and its Regular Technical Standards (RTS) and guidelines. The presentation will take into account some aspects that might be of relevance to the fraud prevention experts.
Overview of current initiatives to improve the fraud detection process using analytics: enriched data set, new algorithms and technologies to support the process.
Bank members of the Slovenian Activa group are successfully daily dealing with fraud. By showcasing fraud trends on the field of issuing, some of the most frequent fraud types all over Slovenia will be pointed out.
Many changes are being announced within the payment scheme rules, like those related to the transaction receipts and chip liability shift. Presentation will also give an insight to the MasterCard Dispute Resolution Initiative announcement as well as dispute-related hot topics and modification for AEIPS PIN transactions.
Presentation gives insight into how is the scoring module integrated in Lynx Fraud Management System and how to enhance the scoring models by using new available data and new modeling methods.
Payment card business is constantly evolving, but so as fraud. Fraud is a moving target and requires continuous evolution of fraud protection and prevention solutions. Due to this fact, Mercury Processing Services International Ltd is fostering the culture of continuous improvements of related products and services to address these challenges, to improve user experience and increase the products performance.
As the card payment industry is growing, where innovation and security are the main features, fraudsters are forced to take advantage of every possible situation and thus be innovative. Fraud and IT experts have joined their forces for successful combat against fraud.
Tactics, plans and the whole meaning of fraud is evolving from day to day. Controlling and improving the processes is one of the steps in the fight against fraud. But what is the key to be effective against fraud in the payment industry?
On IDC Adriatic Security Summit, held from 16th-17th April 2018 in Belgrade, Serbia, our Jasna Fumagalli, Compliance, Security and Risk Management Director hold a presentation "How to talk business" and gave her thoughts and expertise on security measures within business.
More from Mercury Processing Services International (13)
B2B payments are rapidly changing. Find out the 5 key questions you need to be asking yourself to be sure you are mastering B2B payments today. Learn more at www.BlueSnap.com.
Putting the SPARK into Virtual Training.pptxCynthia Clay
This 60-minute webinar, sponsored by Adobe, was delivered for the Training Mag Network. It explored the five elements of SPARK: Storytelling, Purpose, Action, Relationships, and Kudos. Knowing how to tell a well-structured story is key to building long-term memory. Stating a clear purpose that doesn't take away from the discovery learning process is critical. Ensuring that people move from theory to practical application is imperative. Creating strong social learning is the key to commitment and engagement. Validating and affirming participants' comments is the way to create a positive learning environment.
"𝑩𝑬𝑮𝑼𝑵 𝑾𝑰𝑻𝑯 𝑻𝑱 𝑰𝑺 𝑯𝑨𝑳𝑭 𝑫𝑶𝑵𝑬"
𝐓𝐉 𝐂𝐨𝐦𝐬 (𝐓𝐉 𝐂𝐨𝐦𝐦𝐮𝐧𝐢𝐜𝐚𝐭𝐢𝐨𝐧𝐬) is a professional event agency that includes experts in the event-organizing market in Vietnam, Korea, and ASEAN countries. We provide unlimited types of events from Music concerts, Fan meetings, and Culture festivals to Corporate events, Internal company events, Golf tournaments, MICE events, and Exhibitions.
𝐓𝐉 𝐂𝐨𝐦𝐬 provides unlimited package services including such as Event organizing, Event planning, Event production, Manpower, PR marketing, Design 2D/3D, VIP protocols, Interpreter agency, etc.
Sports events - Golf competitions/billiards competitions/company sports events: dynamic and challenging
⭐ 𝐅𝐞𝐚𝐭𝐮𝐫𝐞𝐝 𝐩𝐫𝐨𝐣𝐞𝐜𝐭𝐬:
➢ 2024 BAEKHYUN [Lonsdaleite] IN HO CHI MINH
➢ SUPER JUNIOR-L.S.S. THE SHOW : Th3ee Guys in HO CHI MINH
➢FreenBecky 1st Fan Meeting in Vietnam
➢CHILDREN ART EXHIBITION 2024: BEYOND BARRIERS
➢ WOW K-Music Festival 2023
➢ Winner [CROSS] Tour in HCM
➢ Super Show 9 in HCM with Super Junior
➢ HCMC - Gyeongsangbuk-do Culture and Tourism Festival
➢ Korean Vietnam Partnership - Fair with LG
➢ Korean President visits Samsung Electronics R&D Center
➢ Vietnam Food Expo with Lotte Wellfood
"𝐄𝐯𝐞𝐫𝐲 𝐞𝐯𝐞𝐧𝐭 𝐢𝐬 𝐚 𝐬𝐭𝐨𝐫𝐲, 𝐚 𝐬𝐩𝐞𝐜𝐢𝐚𝐥 𝐣𝐨𝐮𝐫𝐧𝐞𝐲. 𝐖𝐞 𝐚𝐥𝐰𝐚𝐲𝐬 𝐛𝐞𝐥𝐢𝐞𝐯𝐞 𝐭𝐡𝐚𝐭 𝐬𝐡𝐨𝐫𝐭𝐥𝐲 𝐲𝐨𝐮 𝐰𝐢𝐥𝐥 𝐛𝐞 𝐚 𝐩𝐚𝐫𝐭 𝐨𝐟 𝐨𝐮𝐫 𝐬𝐭𝐨𝐫𝐢𝐞𝐬."
Recruiting in the Digital Age: A Social Media MasterclassLuanWise
In this masterclass, presented at the Global HR Summit on 5th June 2024, Luan Wise explored the essential features of social media platforms that support talent acquisition, including LinkedIn, Facebook, Instagram, X (formerly Twitter) and TikTok.
Buy Verified PayPal Account | Buy Google 5 Star Reviewsusawebmarket
Buy Verified PayPal Account
Looking to buy verified PayPal accounts? Discover 7 expert tips for safely purchasing a verified PayPal account in 2024. Ensure security and reliability for your transactions.
PayPal Services Features-
🟢 Email Access
🟢 Bank Added
🟢 Card Verified
🟢 Full SSN Provided
🟢 Phone Number Access
🟢 Driving License Copy
🟢 Fasted Delivery
Client Satisfaction is Our First priority. Our services is very appropriate to buy. We assume that the first-rate way to purchase our offerings is to order on the website. If you have any worry in our cooperation usually You can order us on Skype or Telegram.
24/7 Hours Reply/Please Contact
usawebmarketEmail: support@usawebmarket.com
Skype: usawebmarket
Telegram: @usawebmarket
WhatsApp: +1(218) 203-5951
USA WEB MARKET is the Best Verified PayPal, Payoneer, Cash App, Skrill, Neteller, Stripe Account and SEO, SMM Service provider.100%Satisfection granted.100% replacement Granted.
Kseniya Leshchenko: Shared development support service model as the way to ma...Lviv Startup Club
Kseniya Leshchenko: Shared development support service model as the way to make small projects with small budgets profitable for the company (UA)
Kyiv PMDay 2024 Summer
Website – www.pmday.org
Youtube – https://www.youtube.com/startuplviv
FB – https://www.facebook.com/pmdayconference
Affordable Stationery Printing Services in Jaipur | Navpack n PrintNavpack & Print
Looking for professional printing services in Jaipur? Navpack n Print offers high-quality and affordable stationery printing for all your business needs. Stand out with custom stationery designs and fast turnaround times. Contact us today for a quote!
Enterprise Excellence is Inclusive Excellence.pdfKaiNexus
Enterprise excellence and inclusive excellence are closely linked, and real-world challenges have shown that both are essential to the success of any organization. To achieve enterprise excellence, organizations must focus on improving their operations and processes while creating an inclusive environment that engages everyone. In this interactive session, the facilitator will highlight commonly established business practices and how they limit our ability to engage everyone every day. More importantly, though, participants will likely gain increased awareness of what we can do differently to maximize enterprise excellence through deliberate inclusion.
What is Enterprise Excellence?
Enterprise Excellence is a holistic approach that's aimed at achieving world-class performance across all aspects of the organization.
What might I learn?
A way to engage all in creating Inclusive Excellence. Lessons from the US military and their parallels to the story of Harry Potter. How belt systems and CI teams can destroy inclusive practices. How leadership language invites people to the party. There are three things leaders can do to engage everyone every day: maximizing psychological safety to create environments where folks learn, contribute, and challenge the status quo.
Who might benefit? Anyone and everyone leading folks from the shop floor to top floor.
Dr. William Harvey is a seasoned Operations Leader with extensive experience in chemical processing, manufacturing, and operations management. At Michelman, he currently oversees multiple sites, leading teams in strategic planning and coaching/practicing continuous improvement. William is set to start his eighth year of teaching at the University of Cincinnati where he teaches marketing, finance, and management. William holds various certifications in change management, quality, leadership, operational excellence, team building, and DiSC, among others.
Business Valuation Principles for EntrepreneursBen Wann
This insightful presentation is designed to equip entrepreneurs with the essential knowledge and tools needed to accurately value their businesses. Understanding business valuation is crucial for making informed decisions, whether you're seeking investment, planning to sell, or simply want to gauge your company's worth.
Can security and convenience go hand in hand in e-commerce
1. CAN SECURITY AND
CONVENIENCE GO HAND IN
HAND IN E-COMMERCE?
Aljoša Lovrič-Petrič, Head of Innovation and Prototyping
Ladislav Grgac, Issuing Expert
Ljubljana, May 2017
3. 3D SECURE 2.0
New EMVCo 3D secure specification
● Released in October 2016
● Supported by payment schemes (Visa, MasterCard, Amex and others)
Main goals
● Increase security and decrease friction in payment flow
● Balance between security and UX
● Consistent UX on the app-based and web-based interfaces (HTML and native apps)
New non-payment use cases
● Strong authentication uses (ID&V)
RBA (Risk Based Authentication)
● Evaluates also and customer‘s transaction and account history on the merchant side
● High risk authentications – customers needs to authenticate
● Low risk authentications – no additional input required (frictionless)
3
CONFIDENTIAL
5. PROCESS FLOW
Directory Server
Access Control
Server
$
Issuer
$
Acquirer
Payment
Network
Challenge
Request / Response
3DS Requestor /3DS Server APIs
Payment
Request
Authorization
Message
Authorization
Message
Result
Request /
Response
Authentication
Request /
Response
Result
Request /
Response
Authentication
Request /
Response
3DS Requestor Environment
Merchant 3DS Server3DS customer
5
CONFIDENTIAL
6. ACS 2.0
• First possible issuer rollouts in Q2 2018
(MasterCard, Visa and Amex)
• 3D Secure v1.0 to be supported until
schemes decision to sunset it
• Both versions to be maintained in
parallel due to backward
incompatibility
• Authentication methods supported on both
versions:
• SMS OTP
• mToken as standalone app or SDK for
integration with another app (e.g.
Mobile banking)
• CAP/DPA (on ACS 1.0)
• Different data models:
• ACS v1.0 – 10 data elements in the
process
• ACS v2.0 – 60+ elements including
purchase behavior from e-shop
• Different data format (from XML to Json)
• Introduced Risk Based Authentication (Issuer
strategy dependent)
• Pushed by Schemes (Visa proposes
that 80% of transactions shall be
approved by RBA)
• Enhanced user experience – light box vs.
redirection
Overview Roadmap
6
CONFIDENTIAL
9. Strong authentication is a procedure based on the use of two
or more of the following elements:
• Something only the user knows (e.g. static password, code,
PIN…)
• Something only the user have (e.g. mobile device, smart card,
token…)
• Something the user is (e.g. biometric characteristic, fingerprint)
Why strong authentication?
• The interests of all participants in an authentication process
(users, banks, processors, regulators) to ensure the highest level
of security of access and use of sensitive data.
• Trends in cloud services and enabling secure access to it
• European Banking Authority (EBA) Guidelines on the security of
internet payments ECB Recommendations for the security of
internet payments…
STRONG AUTHENTICATION
The elements selected must be
mutually independent, i.e. the breach
of one does not compromise the
other(s).
At least one of the elements should
be non-reusable, non-replicable and
not capable of being stolen via
Internet.
The SA procedure should be designed
in such a way as to protect the
confidentiality of the authentication
data.
9
CONFIDENTIAL
10. HOW IT WORKS…
During checkout process a transaction using
MasterCard SecureCode or Verified by Visa will
initiate a redirection to the website of the card issuing
bank to authenticate the customer and authorize the
transaction.
Issuer could use any kind of supported authentication
method.
10
CONFIDENTIAL
11. SOLUTIONS DESCRIPTION
CARD READER
• Hardware based solution
• Requires EMV smart
card with preloaded CAP
or DPA application
• Supports several
authentication methods:
• User Identification
• Challenge/Respon
se
• Transaction Data
Signature
MOBILE TOKEN
• Software based solution
requiring mobile device
• Uses a cryptographic key
for user authentication
• Provides a high level of
security protection including
protection from a Man-in-
the-middle attack
• Use of standard
authentication algorithms
(Time based OTP,
Challenge / Response, QR
code scan)
SMS OTP
• Generated and verified
via HSM
• OTPs not stored in
database
• Service integration with
SMS gateway (bank,
PSP, etc.)
11
CONFIDENTIAL
14. TOKENIZATION
• Process of substituting a sensitive data element with a non-sensitive equivalent that has no exploitable value
• Significantly increases security and reduces fraud, especially in non-face to face transactions like e-commerce
and MO/TO
• Applicable for payment products enrolled into mobile wallet
• Provided by certified Token Service Provider
• Payment schemes
– MasterCard Digital Enablement Service
– Visa Token Service
• 3rd party providers (PSP, Issuers, etc.)
– following EMVCo technical specification
– certified by respective payment schemes
• PAN tokens are not derived from payment card BIN range
• Under token BINs or BIN subranges no physical cards are issued
14
CONFIDENTIAL
15. ► Incurs additional costs as tokenization process makes
on-us authorization unrecognizable so all
authorizations go through payment scheme’s network
► Currently the only available solution for Visa products
► Avoiding additional costs charged by Payment schemes
by keeping on-us authorizations
► Decreasing future risks if payment scheme introduces
tokenization specific costs
TSP OPTIONS
3PP EMVCo token service VTS / MDES
Bank host
PSP host
Customer
De-tokenization
Token vault PS host
Payment
network
POSPAN token cardMobile wallet
Real PAN card
PSP host
Customer
Bank host
Token vaultDe-tokenization
POSMobile wallet PAN token card
Real PAN card
15
CONFIDENTIAL
17. VIRTUAL E-COMMERCE CARD
Product based service in mobile banking /
wallet offering cardholders fast, convenient and
secure online shopping experience.
• Generated via mobile wallet / Internet banking
• Enabled only for e-commerce purchase
• No renewal policy
• Uses tokenized PANs from separate BIN range
• Only one virtual card of the same type allowed
per product
• May be manually cancelled by the cardholder
or automatically invalidated either by reaching
the spending limit or maximum allowed number
of transactions or by expiry of its validity period
Single use Multi use
Spending limit
Trx. count limit
Limited validity
Card types
Management
Cardholder setup spending limit (for both card types) and
number of transactions (for multiple use virtual cards only)
within maximum allowed values set by the issuer
1
17
CONFIDENTIAL
19. GEO-CONTROL
• Profile without any restrictions
• Auto-activated if transaction triggers fraud
alert
• Overrides other profiles
• Cannot be selected by the cardholder
Limited
• May enabled per entire BIN or per
individual PAN
• Duration may be setup as temporary (date-
based)
• Restriction parameters defined by the
Issuer:
• Country
• Transaction type
• MCC
• Rejected transaction reason codes
exposed for complaint management
Manual
Profile switching
Auto
• By customer (via wallet app
or m-banking channels)
• By call center agent
• Upon expiration of date-
based restrictions
• By fraud monitoring system
Switching to fraud specific profile creates an
SMS to a cardholder
• SMS remains in pending status until
event analysis is completed
• Fraud specialist can trigger manual send
of pending SMS if necessary
Profile based service designed to enable customers to
effectively manage risks associated with card transactions
via mobile channel
Worldwide
Fraud
19
CONFIDENTIAL
21. ACCEPTANCE
• At online merchants, wherever
Masterpass button is displayed
• Masterpass accepts credit, debit,
or prepaid cards from MasterCard,
Maestro, American Express, Diners
Club, Discover, VISA, China
UnionPay and Private Label cards
• All currencies are supported
AVAILABILITY
• Currently available in 60 countries
globally (28 in Europe)
• Works on the mobile and web
browsers
DIGITAL WALLET SERVICE
• Makes online shopping safe and
secure, easy, fast and convenient
• It stores customers’ payment cards
details, including shipping details
and loyalty cards
• No need to enter long card details
every time customers check out
DESCRIPTION & BENEFITS
CONVENIENCE
works with many
OS’es (desktop
and mobile)
SIMPLICITY
eliminates need to
enter payment and
shipping information
for every purchase
TRUST
critical card details
are not stored by
the merchant
SPEED
fast, one
click checkout
SECURITY
card details are
stored in the bank
(or with PSP)
21
CONFIDENTIAL
24. www.mercury-processing.com
+386 5 666 1312
aljosa.lovric-petric@mercury-processing.com
Aljoša Lovrič-Petrič
Head of Innovation and Prototyping
IT and Innovation Division
CONTACT
Ladislav Grgac
Issuing Expert
Business Management Division
+385 1 6456 504
www.mercury-processing.com
ladislav.grgac@marcury-processing.com
24