Visa pilots new payment card security initiatives
- 23 March, 2009 07:47
- Comments (1)
Acknowledging the need for controls that go beyond those offered by the Payment Card Industry (PCI) Data Security Standard, a senior Visa executive Thursday described two new initiatives to reduce payment card fraud being tested by the company.
One of the pilots involves Fifth Third Bank, which is testing the use of magnetic stripe technology to create unique digital fingerprints for cards, said Ellen Richey, Visa's chief enterprise risk officer. Each stripe contains unique characteristics that can be captured and used to verify the digital identity of the card, Richey said during at a security event being hosted by Visa today. The goal is to stop the creation and use of counterfeit cards based on stolen payment card data.
Another initiative, being piloted by retailer OfficeMax Inc., involves the use of a challenge-response technique at the point of sale. The project is aimed at testing the efficacy of asking consumers to respond to specific questions such as their ZIP code, the last four digits of their phone numbers, or the first three digits of their area codes, as part of the transaction approval process.
Dan Roeber, vice president and manager of merchant PCI compliance at Fifth Third, said the bank had rolled out about 1,000 card readers to retailers who have not been informed about the pilot effort. The terminals are capable of reading the magnetic stripe information and creating a "DNA picture" of the card which is then matched during the authorization process, against baseline information for that card stored by the card issuer, he said during a panel discussion at the event Thursday.
During the pilot process, baseline images or fingerprints for a card are created when it is first swiped through one of the new readers, Roeber said. But going forward, if the approach works, baseline images for each card could be created and stored during the card issuing process itself, Roeber said. "Even if somebody gets into a database and makes fraudulent cards, the DNS fingerprints are not going to match," Roeber said. "The thing I really like about this technology is that there are no key management issues," as is the case with the use of end to end encryption for protecting cardholder data.
"We are very excited about this technology," he said.
Fifth Third is one of several "acquiring banks," which are responsible for authorizing retailers to accept payment card transactions.
- Bookmark this page
- Share this article
- Got more on this story? Email Computerworld
- Follow Computerworld on twitter
-
on Telstra T-Hub launches
-
on Labor to launch NBN blueprint
-
on Telstra T-Hub launches
-
on Case for opt-out NBN accelerates
-
on Report bombs Aussie broadband
-
Windows 7 for Dummies® Dvd+book Bundle
-
MYOB Software for Dummies 6E Australian Edition
-
Office 2007 for Dummies
-
Computers for Seniors for Dummies, 2nd Edition
-
Microsoft Office
-
Windows 7 for Seniors for Dummies®
-
Excel 2007 All-In-One Desk Reference for Dummies
-
Office 2007 All-In-One Desk Reference for Dummies
-
Windows 7 for Dummies®
Comments
marite ferrero
VISA's Targeted Acceptance infringes on an existing patent. VISA also is fully aware of this patent's existence.
This USPTO patent with worldwide PCTs, USPTO 6931382 enables cardholders (and/or banks) to turn on or turn off their debit and credit cards. This system also enables the setting of different limits such as amount, geographical limits, time period, etc.
VISA applied for the same claims in March, 2002 (13 months after USPTO 6931382). VISA actually referred to this patent, since it is a prior art. VISA was not awarded the patent for their application since USPTO 6931382 got there first. VISA’s patent application is : 20030172040, Kemper Lynn et. Al, Assignee Name : VISA USA, Patent Law Firm : Townsend and Townsend, San Francisco, CA.
CardSwitch Technology Ltd. (www.cardswitchtechnology.com) offers this patented system.
Post new comment