Stop in the name of EMV! Is merchant regulation breaking your heart? April 4, Amegy Bank, a division of ZB, N.A. Member FDIC

Similar documents
Global Prepaid Card Market with Focus on The United States ( ) April 2016

TOP RISK CONCERNS MERCHANT DATA BREACHES. Presented by Ann Davidson, VP of Risk Consulting at Allied Solutions

Global Trends in Payment Systems

How does the Prepaid Travel Card work?

First Data DCC Test Card Set. Version 1.30

First Data EMV Test Card Set. Version 1.30

First Data EMV Test Card Set. Version 2.00

A Layered Approach to Fraud Mitigation. Nick White Product Manager, FIS Payments Integrated Financial Services

MObIlE MOnEy PhoTo by istock

BFS VISA PREPAID CARDS FREQUENTLY ASKED QUESTIONS (FAQ S)

First Data Dual Interface EMV Test Card Set. Version 1.20

Acquirer JCB Dual Interface EMV Test Card Set

Baptist Financial Services

Maintaining Trust: Visa Inc. Payment Security Strategy

Acquirer JCB EMV Test Card Set

REDUCING THE RISK OF CARD NOT PRESENT FRAUD

You can use your PIN to complete your purchases at point-of-sale and for ATM transactions.

Credit Card Frauds Sept.08, 2016

Mobile Security / Mobile Payments

Credit Card/-i PIN & PAY - Frequently Asked Questions

Apple Pay FREQUENTLY ASKED QUESTIONS

Session 2: Understanding the payment ecosystem and the issues Visa Europe

Smart Cards and Authentication. Jose Diaz Director, Technical and Strategic Business Development Thales Information Systems Security

IT Audit and Risk Trends for Credit Union Internal Auditors. Blair Bautista, Director Bob Grill, Manager David Dyk, Manager

2009 Fare Collection Workshop

PCI compliance the what and the why Executing through excellence

Protect Your Data the Way Banks Protect Your Money

Visa paywave Implementation Overview and European Pilot Operating Principles Member Letter: VE 08/08 Type: General 16 April 2008

Interac USA Interoperability EMV Test Card Set

CIS-331 Fall 2014 Exam 1 Name: Total of 109 Points Version 1

The Benefits of Strong Authentication for the Centers for Medicare and Medicaid Services

PCI DATA SECURITY STANDARDS VERSION 3.2. What's Next?

Webinar Tokenization 101

NAB EFTPOS USER GUIDE. for Countertop

mypos Go User Manual mypos.com mypos Go - User Manual

Mobile Wallet Service Terms and Conditions

PCI DSS 3.2 AWARENESS NOVEMBER 2017

Payment Card Industry (PCI) Data Security Standard

Westpac Credit cards. Prepaid Cards

Prepaid Access MIDWEST ANTI-MONEY LAUNDERING CONFERENCE Federal Reserve Bank of Kansas City March 5, 2014

Payment Security: Attacks & Defences

EMERGING PAYMENTS. Breakout and Workshop

9/11/ FALL CONFERENCE & TRAINING SEMINAR 2014 FALL CONFERENCE & TRAINING SEMINAR

A QUICK PRIMER ON PCI DSS VERSION 3.0

International Trends in Prepaid

AMERICAN EXPRESS SAUDI ARABIA. CHIP and PIN FAQ

Federal Reserve Bank 2016 Mobile Banking & Payments Survey

Fraud Risks Facing Credit Unions. ALLIED SOLUTIONS LLC SERVICE CENTER 210 East Main Street, Suite 200, Niles, MI Fax:

D220 - User Manual mypos Europe Ltd. mypos Mini Ice En

CIS-331 Spring 2016 Exam 1 Name: Total of 109 Points Version 1

PAYMENT CARD INDUSTRY DATA SECURITY STANDARD (PCI DSS)

Display Cards for Securing E Commerce

MOBILE WALLET TECHNOLOGIES: GLOBAL MARKETS. IFT070A April Priyanka Patel Project Analyst ISBN:

Paying. on the go: Mobile payments slowly catch on in the United States

Target Breach Overview

Will Mobile Phones Replace Cards?

Credit Union Cyber Crisis: Gaining Awareness and Combatting Cyber Threats Without Breaking the Bank

So, What Could Go Wrong? Merchant Advisory Group Annual Conference 2011

Payment Card Industry (PCI) Data Security Standard

Think big, think Brazil

EFTPOS 1. User guide.

Digital Crime and Cybersecurity. Scott D. Ramsey, Managing Director May 2017

GUIDE TO STAYING OUT OF PCI SCOPE

Emerging Opportunities in Lebanon s Cards and Payments Industry

Payment Card Industry (PCI) Data Security Standard

4. Specifications and Additional Information

PCI Compliance: It's Required, and It's Good for Your Business

Practical EMV PIN interception and fraud detection

Presented By: George Mavrantzas, Vice President of Special Projects, Global Cash Card

SEPA goes Mobile Dr. Marijke De Soete ETSI Security Workshop January 2011 Sophia Antipolis, France

Emerging Payments Market Developments Trends and Issues

PayPass M/Chip 4. Card Technical Specification

egov & PKI By: Alaa Eldin Mahmoud Aly YOUR LOGO

CB TEST PRODUCTS & SERVICES ORDER FORM

Mobile Payment in a cashless future Trends/Benefits/Solutions

Universal Representation of a Consumer's Identity Is it Possible? Presenter: Rob Harris, VP of Product Strategy, FIS

Smart Payments. Generating a seamless experience in a digital world.

Comodo HackerGuardian. PCI Security Compliance The Facts. What PCI security means for your business

mypos Mini - User Manual mypos Europe Ltd. mypos Mini En

User Acceptance Test (UAT) ATM EMV Test Card Set Summary

Meeting FFIEC Meeting Regulations for Online and Mobile Banking

Site Data Protection (SDP) Program Update

User Manual. Spectrum Pro

Navigating the PCI DSS Challenge. 29 April 2011

The Future of PCI: Securing payments in a changing world

Payment Card Industry (PCI) Data Security Standard

Merchant Guide to PCI DSS

With certain types of prepaid account, you can do just about everything a traditional bank account allows you to do, including using your prepaid

Streamline Business Processes and Save Money With Commercial Prepaid Solutions

Your guide to the Payment Card Industry Data Security Standard (PCI DSS) banksa.com.au

Agreement Between the Per Diem Prepaid Cardholder and U.S. Bank National Association ( U.S. Bank ) (Dated January, 2014)

Mobile Payments. Moving at the Speed of Innovation. Eric Kuhn, Enterprise Digital Product Development April 2017

AMERICAN EXPRESS GLOBAL CREDIT AUTHORIZATION GUIDE ISO 8583:1993 (VERSION 1) OCT. 2010

Global Trends in Payment Systems. Summary of 2011 Survey Findings

First Data U.S. Debit Test Card Set. Version 1.20

Opting Out. Avoid Becoming the Next Breach Statistic. Copyright 2014 MAC. All Rights Reserved.

The Honest Advantage

Fundamentals of Cryptography

Die Zukunft des M-Payment The future of m-payment NFC. Andreas Johne. Düsseldorf, 25. Januar 2008

Securing Americans Identities: The Future of the Social Security Number

Transcription:

Stop in the name of EMV! Is merchant regulation breaking your heart? April 4, 2017

Introductions Ana Chandler AVP, Treasury Management Sales Julie Fairbanks VP, Merchant Sales William (Bill) Rogers VP of Sales, Government Solutions 2

What began with one Houston location and $50 million in assets 25 years ago is today Amegy Bank with $14 billion in assets in addition to $11 billion in assets under management. About 2,000 employees work across nearly 80 banking centers in the greater Dallas, Houston, and San Antonio metropolitan areas. We specialize in banking privately owned businesses of all sizes and public companies in all industries with additional focus on real estate, energy, and international. As a member of Zions Bancorporation, Amegy Bank is large enough to provide competitive products and services, yet it is small enough for the townships and bankers to experience the intimacy that comes from a close banking relationship. 3

First Data is the largest merchant acquirer, issuer processor, and independent network services provider in the world, enabling businesses to accept electronic payments; helping financial institutions issue credit, debit and prepaid cards; and routing secure transactions between them. In 2015 they processed 79 billion transactions globally, or over 2,500 per second, and processed 28% of the world s ecommerce volume. In the United States, they handled $1.7 trillion of payment volume, accounting for nearly 10% of U.S. GDP last year. First Data manages its own authorization platforms and does not outsource this process to any third parties. 4

Agenda Past Provide an explanation of EMV and its impact on fraud in Europe. Present Discuss EMV regulation and slow adoption of merchants and resistance of consumers. Future Predict what the future holds for EMV and what to expect in new fraud trends. 5

Where did EMV come from and how has it changed the fraud landscape in Europe? Ana Chandler AVP, Treasury Management Sales 6

What is EMV? EMV stands for Europay, MasterCard & Visa. EMV is a global standard for card payments utilizing a secure chip that is imbedded within the card. Card types include credit and debit cards, open-looped prepaid cards, and ATM cards. Fico.com, EMV Adoption And Its Impact On Fraud Management Worldwide 7

How did EMV get started? Created by Europay International in 1991 A European study on card authentication method was driven by the European Council for Payment Systems. Conclusion The only effective way of addressing card fraud was to move toward chip card technology. Technical development drivers consisted of four building blocks that were presented to Europay, MasterCard & Visa. 1. Difficulty mitigating counterfeit cards as well as lost and stolen cards 2. Signature verification - not an effective method 3. Authorization via telecommunications - expensive 4. Multi-application multiple payment cards on one piece of plastic Bankinfosecurity.com, The History of EMV 8

Magnetic Stripe vs Chip Card Traditional cards store unchanging data. Card compromise exposes sensitive information. Example of a magnetic stripe card transaction: B370261765230537^71171 VALUEDCUSTOMER00007^1309101091099116 370261765230537=130910109109911600007 9

Magnetic Stripe vs Chip Card Chip card creates a unique transaction code for each purchase that cannot be used again. The chip makes counterfeit cards impossible to use again and again. Example of a chip card transaction: 00 A4 04 00 0E -31 50 41 59 2E 53 59 53 2E 44 44 46 30 31 6F 24 84 0E 31 50 41 59 2E 53 59 53 2E 44 44 46 30 31 A5 12 88 01 01 5F 2D 08 65 73 65 6E 66 72 64 65 9F 11 01 01 90 00 00 B2 01 0C 00 70 2A 61 28 4F 07 A0 00 00 00 04 10 10 50 0A 4D 43 52 44 43 52 45 44 49 54 87 01 01 9F 12 0D 43 52 45 44 49 54 4F 44 45 4D 43 52 44 90 00 00 B2 02 0C 00 No data6a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o data 90 00 80 AE 80 00 1F -40 80 00 80 00 C8 00 00 00 00 00 10 00 00 00 00 00 00 00 08 40 08 40 06 01 30 00 90 86 27 40 77 1E 9F 27 01 80 9F 36 02 45 67 9F 26 08 CA 3C A2 03 D2 6C 67 7B 9F 10 07 06 01 1A 03 90 00 00 90 00 80 AE 00 00 21-40 80 00 80 00 E8 00 35 31 00 00 00 00 10 00 00 00 00 00 00 00 08 40 08 40 06 01 30 00 90 86 27 40 77 1E 9F 27 01 00 9F 36 02 45 67 9F 26 08 01 B7 8D 05 86 AC E4 F8 9F 10 07 06 01 1A 03 60 00 00 90 00 Counterfeit card fraud has dropped by 43%! 10

Impact in Europe France 2003-2011 11

Impact in Europe Australia 2006-2012 12

Impact in Europe United Kingdom 2001-2012 13

EMV Regulation as of October 1, 2015, and It s Financial Impact to Merchants Should you adopt the new changes? What does it mean if you don t? Julie Fairbanks VP, Merchant Services 14

What does this mean to you as a merchant? Consequences: As of October 1 st 2015, liability is with the merchant. As the merchant, you will be held liable for any fraudulent transactions. Penalties in the form of regulatory fines Legal fees Enhanced reporting requirements Enforced discounts or free services passed down to consumers/buyers - Arby s example 15

US Adoption Challenges Manufacturers were slow to activate EMV technology causing anxiety among merchants who had already purchased new equipment. The approval process at POS is slow and confusing to use. Equipment is costly and implementation too time consuming. Chargebacks are out of control. 16

The Positive Side EMV use is predicted to rise in 2017. Visa & MasterCard recognized the need to develop faster processing time. Visa states that 46% of their card-present merchants are chip-enabled. In November 2016, Visa reported 359% increase of chip card transactions since the prior year. Processors are continuing to develop new EMV technology. EMV is working! MasterCard released a 54% decrease in fraud in 4Q 2016. 9 out of 10 Americans use chip cards (38% increase during 2016). 17

Equipment 18

What does the future hold for EMV? William (Bill) Rogers VP of Sales, Government Solutions 19

A Look Into the Future Card-Not Not-Present Online fraud is increasing. There was a 31% increase in CNP fraud attempts during 2016 holidays in the US as fraudsters moved from cardpresent fraud to card-not-present and mobile fraud. Dual-Interface Cards These are cards that are both contact and contactless. 20

More EMV Regulation to Come EMV Liability Shift for Automated Fuel Dispenser in October 2020 The new 2020 date only applies to outside pumps; in-store sales are still subject to October 2015 liability shift. Visa has two important differences: Counterfeit liability on non-us EMV cards will still shift in October 2017. Visa will expand its current Fraud Monitoring Program to mitigate counterfeit fraud between October 2017 and October 2020. 21

Closing Comments EMV is a marathon, not a sprint. Meet with your provider and discuss implementing EMV card readers. EMV certifications are complicated, but efficiencies are being realized. The chargebacks post-emv liability shift are real; review chargebacks daily and utilize provider systems to the fullest. Criminals will find the path of least resistance through late adopters; as the population of non-emv locations dwindles, the criminals will concentrate on non-emv locations. Don t be a target! 22

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback