Martin Prosek, profile picture
Uploaded byMartin Prosek
PDF, PPTX398 views

SDP Global Summit 2012

This document summarizes mobile payments from Telefónica Czech Republic's perspective. It discusses Telefónica's experience with mobile payment services in Czech Republic over the past 10 years. It also outlines opportunities for mobile network operators to engage in mobile payments. Some technical solutions and risks are described, along with recommendations to balance security and convenience for users. The document concludes mobile payments can help operators return to the value chain and offset declining content revenues.

Embed presentation

Download as PDF, PPTX
Mobile Payments SDP Global Summit Rome 12. 9. 2012 Martin Prosek, VAS Platform Development Manager Telefónica Czech Republic
Telefó About Telefónica Czech Republic Fixed and mobile voice and data, IPTV Operated under commercial brand O2 1
Telefó Telefónica Globally 2
BlueVia – Global APIs https://bluevia.com/
Introduction 01 Mobile Payments Quick Review 02 Telefónica Czech Republic Experience 03 Opportunities 04 Technical Solutions 05 Risks and their Mitigations 06 Summary/Recommendations Disclaimer: The opinions of the author expressed in this document do not necessarily state or reflect those of Telefónica company 4
Mobile Payments Most popular service • • • Users use it – it is convenient method how to perform purchases Developers need it – provides monetization Operators like it – gives place in the value chain and another revenue stream Mobile Network Mobile Network Operator Operator Consumer Let us do some quick review… Content Provider
Payments? What are the Mobile Payments? Many definitions exist… • It generally refers to payment services performed from or via a mobile device. Focus on Mobile Network Operator service • • • • Not mobile banking Not payments using credit/debit card Not payment through online payment provider Not NFC Direct to bill (D2B)
Experience in Telefonica CZ Today is 10th anniversay of service mJuice m-Platby • USSD based, used or cinema tickets purchase Premium SMS – 7 years old service Mobile web payments m-platba – 3 years old All these payment solutions are pre-SDP
Mobile Payment Methods Premium SMS – oldest one Mobile web – already established In-app payments – great for freemium InSmartphones penetration still grows… One-off payments Subscriptions/direct debit Google Android Apple iOS 200802 200806 200810 200902 200906 200910 201002 201006 201010 201102 201106
Limitations Transaction fees are and will be still high Limited use for intangible goods, mostly consummable on the mobile device
Opportunity The situation is very positive • • • • The smartphones penetration is high Users already have learned to pay for apps Operators are perceived as trusted parties and have good track of history in mobile content User experience is better than for using payment cards Mobile Payments can substitute the declining content revenues Mobile Payments can help operators to return to the value chain and stop being dumb pipe
Technical Solutions SDPs – standard means to expose Payment API API standards Operator Operator
Business Risks Repudiation • • When operator cannot prove user‘s consent user later can reject the payment Closely connected to subscribe identification Provider charging without providing service • • By mistake or technical failure Biggest problem can be fraudulent use Unclear relation to the provider • Not possible to get clear responsibility
Technical Risks Communication is not direct anymore Operator Operator Man-in-the-middle (M-I-M) attacks are possible Provider Provider Operator Operator Even the app itself can compromise the payment security – App-in-theApp-in-the-middle (A-I-M)* App App * Known examples: fraudulent Premium SMS sending… Provider Provider Operator Operator
Mitigations Possible Risk Mitigations Payment transactions and/or spend limits (per day, month…) Different security levels for different amount of payments • E.g. for purchases under 2 € lower security Security influenced design of payment authorization • • • User giving consent as directly as possible (no M-I-M) Verification of human interaction (login by username/password, PIN, captcha, mouse movements/gestures…) Alternative communication channels (SMS, USSD…), use of one-time password
Mitigations Possible Risk Mitigations Payment notifications (by SMS and/or e-mails) • User gets info about payment transaction everytime Offering opt-in model • Use must confirm intention to have payments enabled Best solution would be use of SIM-based transaction signing
Good Balance of Security and Convenience One click payments No authorization Opt-out Convenience Security Authorized payments Opt-in SIM-Toolkit based security
Recommendations Let the user be in control of the service security settings – provide good web selfcare Give the user access to full history of the payments – on the web selfcare MADo your best to have direct access to user (no M-I-M or A-I-M) Have clear contracts with providers stating responsibility for all cases all 17
Empire… Last Days of the Roman Empire… Mobile Network Operators had created „empires“ Huge revenues were funding their development But now the „empires“ are under attacks of „barbarians“ from outside (the Internet…) If operators are not acting now the position in the value chain might be lost – the „fall of empire“
Questions?
Thank you.

More Related Content

PPTX
Keeping Your Customers Happy and Safe: Authentication and Authorization Strat...
byTransUnion
 
PPTX
E banking slides raf 2
byHubert Van de Vyver
 
PPT
Telebanking
bypalsantosh
 
PPT
Mobile Payment Analysis
byStomar
 
PDF
Mobile payment-security-risk-and-response
byDESMOND YUEN
 
PPT
Dubai Presentation
bymovilway
 
PPT
Online Banking
byRitul Sonania
 
PDF
Mobile Banking in Luxembourg 2020
byJoël Theisen
 
Keeping Your Customers Happy and Safe: Authentication and Authorization Strat...
byTransUnion
 
E banking slides raf 2
byHubert Van de Vyver
 
Telebanking
bypalsantosh
 
Mobile Payment Analysis
byStomar
 
Mobile payment-security-risk-and-response
byDESMOND YUEN
 
Dubai Presentation
bymovilway
 
Online Banking
byRitul Sonania
 
Mobile Banking in Luxembourg 2020
byJoël Theisen
 

What's hot

PPSX
E banking
byNishant Pahad
 
PDF
Mobile Monday (May 2014) - CB Bank - Mobile Banking
byMobile Monday Yangon
 
PDF
Digital financial services: essentials
bySonia Arenaza
 
PPTX
Mobile banking
bySrideviHV
 
PPTX
Online banking
bySiegel High School
 
PDF
Semi-Integrated Solution
byTotal Merchant Services
 
PPTX
Telebanking and EDI system
byHasanah Mohd Zain
 
PPTX
Online banking
byPreet Raj
 
PPTX
E-Banking 2009
bykeerthi123
 
PPT
Ultimate company
byUltimate Mobile Solutions
 
PPTX
E banking
byMohammad Akteruzzaman(Nannu)
 
PPTX
Banks can Implement NFC Payment Choosing between two Options - HCE platform &...
byMahindra Comviva
 
PDF
Diebold - Mobile Monday Maroc: M-Banking & M-Payment
bymmmaroc
 
PPTX
online banking
byRajat Goyal
 
PPTX
E banking
byApeksha Bhatkar
 
PPTX
E banking
bymanaspatil28
 
PDF
SBM - Communication Strategy
byJason Bholanauth
 
PPT
Mycelium payment system
bymyceliumcard
 
PPTX
Internet banking
bymsarifff
 
PPT
Internet banking
byRanjeet Yadav
 
E banking
byNishant Pahad
 
Mobile Monday (May 2014) - CB Bank - Mobile Banking
byMobile Monday Yangon
 
Digital financial services: essentials
bySonia Arenaza
 
Mobile banking
bySrideviHV
 
Online banking
bySiegel High School
 
Semi-Integrated Solution
byTotal Merchant Services
 
Telebanking and EDI system
byHasanah Mohd Zain
 
Online banking
byPreet Raj
 
E-Banking 2009
bykeerthi123
 
Ultimate company
byUltimate Mobile Solutions
 
E banking
byMohammad Akteruzzaman(Nannu)
 
Banks can Implement NFC Payment Choosing between two Options - HCE platform &...
byMahindra Comviva
 
Diebold - Mobile Monday Maroc: M-Banking & M-Payment
bymmmaroc
 
online banking
byRajat Goyal
 
E banking
byApeksha Bhatkar
 
E banking
bymanaspatil28
 
SBM - Communication Strategy
byJason Bholanauth
 
Mycelium payment system
bymyceliumcard
 
Internet banking
bymsarifff
 
Internet banking
byRanjeet Yadav
 

Similar to SDP Global Summit 2012

PDF
World of mobile payments by Muthu
byMuthu Siva
 
PPT
Mobile Payment fraud & risk assessment
byStefano Maria De' Rossi
 
PDF
Mobile payments - Short overview
byVolgamatics
 
PPTX
Mobile Payments revolution
byPragati Rai
 
PDF
Mobile Payments Reloaded - Ericsson Business Review #3 2008
byGiorgio Andreoli
 
PPTX
Mobile Payments - How is it done?
byParag Arjunwadkar
 
PPTX
Mobile payments: the convergence of financial services and digital businesses
byOsborne Clarke
 
PPT
Mobile payments in Italy
bycarla campana
 
PDF
The future of mobile payments - the importance of value networks and value ad...
byStefan Ascherl
 
PPTX
What's REALLY going on with mobile payment in Europe - Gx Presentation in Par...
byTony Craddock
 
PDF
Ivytalk presents mobile payments
byMary Jesse
 
PDF
34 Mobile Payment (Thomas Lerner (auth.).pdf
byNguyễn Minh
 
PDF
Mobile and Alternative Payments in the U.S., 3rd Edition
byReportsnReports
 
PDF
Mobile payment systems and services
bySaketh guggilla
 
PDF
Mobile Convention Brussels 2014 - Benjamin Tysebaert
byMobile Convention
 
PDF
Future of mobile payment and mobile commerce may 2013
byTarang Shah
 
PDF
5 Powerful Applications of Mobile Payments in Everyday Life
bycivil hospital parasia
 
PDF
Thương mai di động Lecture10-Mobile Commerce.pdf
bychiyorealty
 
PDF
ISACA Mobile Payments Forum presentation
byMarc Vael
 
PDF
Unveiling the Mobile Payments Opportunity
byCashlog - Mobile Payments
 
World of mobile payments by Muthu
byMuthu Siva
 
Mobile Payment fraud & risk assessment
byStefano Maria De' Rossi
 
Mobile payments - Short overview
byVolgamatics
 
Mobile Payments revolution
byPragati Rai
 
Mobile Payments Reloaded - Ericsson Business Review #3 2008
byGiorgio Andreoli
 
Mobile Payments - How is it done?
byParag Arjunwadkar
 
Mobile payments: the convergence of financial services and digital businesses
byOsborne Clarke
 
Mobile payments in Italy
bycarla campana
 
The future of mobile payments - the importance of value networks and value ad...
byStefan Ascherl
 
What's REALLY going on with mobile payment in Europe - Gx Presentation in Par...
byTony Craddock
 
Ivytalk presents mobile payments
byMary Jesse
 
34 Mobile Payment (Thomas Lerner (auth.).pdf
byNguyễn Minh
 
Mobile and Alternative Payments in the U.S., 3rd Edition
byReportsnReports
 
Mobile payment systems and services
bySaketh guggilla
 
Mobile Convention Brussels 2014 - Benjamin Tysebaert
byMobile Convention
 
Future of mobile payment and mobile commerce may 2013
byTarang Shah
 
5 Powerful Applications of Mobile Payments in Everyday Life
bycivil hospital parasia
 
Thương mai di động Lecture10-Mobile Commerce.pdf
bychiyorealty
 
ISACA Mobile Payments Forum presentation
byMarc Vael
 
Unveiling the Mobile Payments Opportunity
byCashlog - Mobile Payments
 

More from Martin Prosek

PDF
SDP Global Summit 2010
byMartin Prosek
 
PDF
SDP Global Summit 2009
byMartin Prosek
 
PDF
Mobile Identity 2013 - Optimising and simplifying authentication and authoriz...
byMartin Prosek
 
PDF
CDN World Summit 2011
byMartin Prosek
 
PDF
Broadband Traffic Management 2011
byMartin Prosek
 
PDF
Broadband Traffic Management 2010
byMartin Prosek
 
PDF
3GOptimisation 2012
byMartin Prosek
 
PDF
SDP Global Summit 2013
byMartin Prosek
 
PDF
Mobile Broadband Optimisation 2011
byMartin Prosek
 
SDP Global Summit 2010
byMartin Prosek
 
SDP Global Summit 2009
byMartin Prosek
 
Mobile Identity 2013 - Optimising and simplifying authentication and authoriz...
byMartin Prosek
 
CDN World Summit 2011
byMartin Prosek
 
Broadband Traffic Management 2011
byMartin Prosek
 
Broadband Traffic Management 2010
byMartin Prosek
 
3GOptimisation 2012
byMartin Prosek
 
SDP Global Summit 2013
byMartin Prosek
 
Mobile Broadband Optimisation 2011
byMartin Prosek
 

Recently uploaded

PDF
Startup Formation Collapses While Acquisition Activity Hits New High!
byMemoori
 
PPTX
WEEK 1-introduction of industrial arts grade 7.pptx
byrosierufinomaliongan
 
PDF
AI for Risk Management & Fraud Detection ppt.pdf
byalexmartincaneda
 
PDF
Analyze and Preserve Logs - RHCSA (RH134).pdf
byLinuxCert Guru
 
PPTX
Introduction to Artificial Intelligence (AI).pptx
byammar414783
 
PPTX
apidays Paris 2025 | Integration is Feminist: Building Peace in Distributed S...
byapidays
 
PPTX
Automation Without Apprentices: How AI Challenges the Open Source Way
byIcinga
 
PDF
How to build hackthon projects from ZERO!
byishantyadav1111
 
PDF
AI and Zero Trust: What it takes to do it right
byMark Simos
 
PPTX
Beyond the Algorithm: Designing Human-Centric Public Service with AI
byAlan Dix
 
PDF
Title Installing Windows, Linux, MacOS.pdf
byGeraldAbadajos
 
PDF
Writing GPU-Ready AI Models in Pure Java with Babylon
byAna-Maria Mihalceanu
 
PDF
GenerationAI Paris 2025 | How Agentic AI is Reinventing Organizations
byapidays
 
PDF
Understanding Foldable 3-Wheel Electric Scooters for Everyday Use
byTopmate
 
PDF
Poročilo odbora CIS (CH08873) za leto 2025 na letni skupščini IEEE Slovenija ...
byUniversity of Maribor
 
PDF
Self-Correction Failure Diagnostic: Detecting Drift in Complex Systems
bySystems Research Group
 
PPTX
TravelTech Paris 2025 | Beyond the pipes: Why Channel Management isn’t really...
byapidays
 
PDF
Why Many Smart Device Platforms Fail to Scale?
byPromeraki Developments
 
PDF
The Manifesto for AI-enabled Governance !
byYannis Charalabidis
 
PDF
Designing a Blog Using Wordpress
bymarkzubi50
 
Startup Formation Collapses While Acquisition Activity Hits New High!
byMemoori
 
WEEK 1-introduction of industrial arts grade 7.pptx
byrosierufinomaliongan
 
AI for Risk Management & Fraud Detection ppt.pdf
byalexmartincaneda
 
Analyze and Preserve Logs - RHCSA (RH134).pdf
byLinuxCert Guru
 
Introduction to Artificial Intelligence (AI).pptx
byammar414783
 
apidays Paris 2025 | Integration is Feminist: Building Peace in Distributed S...
byapidays
 
Automation Without Apprentices: How AI Challenges the Open Source Way
byIcinga
 
How to build hackthon projects from ZERO!
byishantyadav1111
 
AI and Zero Trust: What it takes to do it right
byMark Simos
 
Beyond the Algorithm: Designing Human-Centric Public Service with AI
byAlan Dix
 
Title Installing Windows, Linux, MacOS.pdf
byGeraldAbadajos
 
Writing GPU-Ready AI Models in Pure Java with Babylon
byAna-Maria Mihalceanu
 
GenerationAI Paris 2025 | How Agentic AI is Reinventing Organizations
byapidays
 
Understanding Foldable 3-Wheel Electric Scooters for Everyday Use
byTopmate
 
Poročilo odbora CIS (CH08873) za leto 2025 na letni skupščini IEEE Slovenija ...
byUniversity of Maribor
 
Self-Correction Failure Diagnostic: Detecting Drift in Complex Systems
bySystems Research Group
 
TravelTech Paris 2025 | Beyond the pipes: Why Channel Management isn’t really...
byapidays
 
Why Many Smart Device Platforms Fail to Scale?
byPromeraki Developments
 
The Manifesto for AI-enabled Governance !
byYannis Charalabidis
 
Designing a Blog Using Wordpress
bymarkzubi50
 

SDP Global Summit 2012

  • 1.
    Mobile Payments SDP GlobalSummit Rome 12. 9. 2012 Martin Prosek, VAS Platform Development Manager Telefónica Czech Republic
  • 2.
    Telefó About Telefónica CzechRepublic Fixed and mobile voice and data, IPTV Operated under commercial brand O2 1
  • 3.
  • 4.
    BlueVia – GlobalAPIs https://bluevia.com/
  • 5.
    Introduction 01 Mobile PaymentsQuick Review 02 Telefónica Czech Republic Experience 03 Opportunities 04 Technical Solutions 05 Risks and their Mitigations 06 Summary/Recommendations Disclaimer: The opinions of the author expressed in this document do not necessarily state or reflect those of Telefónica company 4
  • 6.
    Mobile Payments Most popularservice • • • Users use it – it is convenient method how to perform purchases Developers need it – provides monetization Operators like it – gives place in the value chain and another revenue stream Mobile Network Mobile Network Operator Operator Consumer Let us do some quick review… Content Provider
  • 7.
    Payments? What are theMobile Payments? Many definitions exist… • It generally refers to payment services performed from or via a mobile device. Focus on Mobile Network Operator service • • • • Not mobile banking Not payments using credit/debit card Not payment through online payment provider Not NFC Direct to bill (D2B)
  • 8.
    Experience in TelefonicaCZ Today is 10th anniversay of service mJuice m-Platby • USSD based, used or cinema tickets purchase Premium SMS – 7 years old service Mobile web payments m-platba – 3 years old All these payment solutions are pre-SDP
  • 9.
    Mobile Payment Methods PremiumSMS – oldest one Mobile web – already established In-app payments – great for freemium InSmartphones penetration still grows… One-off payments Subscriptions/direct debit Google Android Apple iOS 200802 200806 200810 200902 200906 200910 201002 201006 201010 201102 201106
  • 10.
    Limitations Transaction fees areand will be still high Limited use for intangible goods, mostly consummable on the mobile device
  • 11.
    Opportunity The situation isvery positive • • • • The smartphones penetration is high Users already have learned to pay for apps Operators are perceived as trusted parties and have good track of history in mobile content User experience is better than for using payment cards Mobile Payments can substitute the declining content revenues Mobile Payments can help operators to return to the value chain and stop being dumb pipe
  • 12.
    Technical Solutions SDPs –standard means to expose Payment API API standards Operator Operator
  • 13.
    Business Risks Repudiation • • When operatorcannot prove user‘s consent user later can reject the payment Closely connected to subscribe identification Provider charging without providing service • • By mistake or technical failure Biggest problem can be fraudulent use Unclear relation to the provider • Not possible to get clear responsibility
  • 14.
    Technical Risks Communication isnot direct anymore Operator Operator Man-in-the-middle (M-I-M) attacks are possible Provider Provider Operator Operator Even the app itself can compromise the payment security – App-in-theApp-in-the-middle (A-I-M)* App App * Known examples: fraudulent Premium SMS sending… Provider Provider Operator Operator
  • 15.
    Mitigations Possible Risk Mitigations Paymenttransactions and/or spend limits (per day, month…) Different security levels for different amount of payments • E.g. for purchases under 2 € lower security Security influenced design of payment authorization • • • User giving consent as directly as possible (no M-I-M) Verification of human interaction (login by username/password, PIN, captcha, mouse movements/gestures…) Alternative communication channels (SMS, USSD…), use of one-time password
  • 16.
    Mitigations Possible Risk Mitigations Paymentnotifications (by SMS and/or e-mails) • User gets info about payment transaction everytime Offering opt-in model • Use must confirm intention to have payments enabled Best solution would be use of SIM-based transaction signing
  • 17.
    Good Balance ofSecurity and Convenience One click payments No authorization Opt-out Convenience Security Authorized payments Opt-in SIM-Toolkit based security
  • 18.
    Recommendations Let the userbe in control of the service security settings – provide good web selfcare Give the user access to full history of the payments – on the web selfcare MADo your best to have direct access to user (no M-I-M or A-I-M) Have clear contracts with providers stating responsibility for all cases all 17
  • 19.
    Empire… Last Days ofthe Roman Empire… Mobile Network Operators had created „empires“ Huge revenues were funding their development But now the „empires“ are under attacks of „barbarians“ from outside (the Internet…) If operators are not acting now the position in the value chain might be lost – the „fall of empire“
  • 20.
  • 21.