SlideShare a Scribd company logo

Digital Payments - Netcetera Innovation Summit 2018

Netcetera, profile picture
Netcetera

The document discusses the importance of tokenization and secure remote commerce in digital payments, highlighting the security risks associated with card data storage and fraud. It outlines the framework of token requests, service providers, and the roles of various entities in ensuring safe transactions, particularly in mobile and e-commerce payments. Additionally, it introduces the Secure Remote Commerce (SRC) initiative aimed at improving interoperability and security in online payments starting from 2019/2020.

Software
1 of 25
Downloaded 19 times
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
Bernried, September 2018 Kurt Schmid, Managing Director Digital Payments A small step for a programmer, a big step for payments Merchant Tokenization & Secure Remote Commerce
Questions Who likes to enter PANs again and again for every new merchant? Who is worried of fraud on his/her card? Who knows all the places where your card data is stored? Why is Amazon so powerful? 2
Tokenization 3
When the PAN and other card data is known fraud can be made with little efforts The PAN and other card data therefore is in PCI- Scope The weakest link makes the level of security Why Tokenization? What is the problem? Securing the Card Number (PAN)
Key and surrounding roles 5 Token Requestor Token Service Provider Card Issuer Merchant End User PSPScheme Acquirer NSP IoT Device Wallet (X Pay) TR TSP Issuer TSP
Card Issuer Token Service Provider Token Requestor Main Use Case: Digitize (Tokenize) Card 6 Yellow case Step up auth.
Main Use Case: Secure variant of Digitize 7 Token Requestor Token Service Provider Card Issuer authenticates Encrypted PAN Green case
Scaling Up Tokenization (1) 8 Token Requestor Token Service Provider Card Issuer
Scaling Up Tokenization (2) 9 Token Requestor Token Service Provider Card Issuer MDES, VTS, AETS
Scaling Up Tokenization (3) 10 Token Requestor Token Service Provider Card Issuer Aggregators Token Requestor TSP Card Issuer TSP
Know Usage for Mobile Contactless Payment 11 Enabling an App to perform mobile contactless payment at the POS Request Tokens via MDES, VTS etc. for Cloud Based Payments NFC Interface to Terminals nbased on Host Card Emulation (HCE) Replenishment of short living card keys to increase security (“SUK”, “LUK” instead of CMKs)
MyBankApp Accounts 6,750.00 Recent Transactions Ready to Pay Tokenization in use for Mobile Contactless Payments 12 Token Requestor (CMS-D, MAP) Scheme Token Service (MDES VTS AETS) Card Issuer authenticates Encrypted PAN PSP, Acquirer Network AuthDeTok.
E-Commerce Payment 13 Enabling an e-Commerce application for Payments Card Not Present and 3DS today’s prevailing methods for checkout
Concerns in eComm Payments 14 Risk/Fraud through different attacks Low Conversion rates on mobile channels Abandonning the checkout process Higher costs for CNP versus CP Merchant concerns Issuer concerns Risk/Fraud through different attacks Cost of customer care Lost transactional Revenue Consumer concerns Ease of onboarding Convience at shopping
Why not use Tokenization in e-Commerce? Each merchant does not store the PAN but a token Security will be Card Present like by using a cryptogram 15 The basic Ideas: Mastercard started M4M (MDES for Merchants) VISA speaking about Tokenizazion in eCommerce and Card of File (COF)
Tokenization in use for e-Commerce Payments 16 Token Requestor (CMS-D, MAP) Scheme Token Service (MDES VTS AETS) Card Issuer PSP, Acquirer Network AuthDeTok. COF PAN Entry
Use Cases Enroll: Add card manually or tokenize from card of file Display cards: Card art coming from token service (User sees his real card image) Transact: Generate EMV cryptogram (can be used for one or more transactions) Lifecycle: Issuer Account Update
Secure Remote Commerce 18 SRC Rocket still to be loaded
Secure Remote Commerce Framework (“SRC”) Defined by EMVCo ( /) Scheme agnostic to help interoperability Pay securely by credit card” button in checkout Will be scheme neutral successor of MasterPass & Visa Checkout starting 2019 / 2020 Will support card tokenization using MDES and VTS Will support card present type security (“cryptograms”) Demonstrator available from Netcetera, Training courses will be available
Roles used in SRC 20 Token Requestor Token Service Provider (Scheme) Card Issuer Supporting SRC SRC System Digital Card Facilitator Digital Shopping Application (aka Merchant) PSP SRC Inititator
SRC Flow once device is registered / returned user
Versus first time flow
Benefits Seamless experience – Starts with card entry like user is used to do No onboarding required – but device / merchant pairing possible from issuer app Works with all schemes in the same way Tokenization and EMV-like security will prevent fraud and lower the costs
As Issuer As Merchant As PSP As Acquirer How to approach this? Ask for a training on SRC done by our expert Thomas Fromherz
Europaplatz4 4020Linz Austria info@netcetera.com +43664 11211 00 Kurt Schmid Managing Director Digital Payment Kurt.Schmid@netcetera.com

More Related Content

PDF
Digital Payment Quo Vadis
Netcetera
 
PDF
EMV Secure Remote Commerce (SRC)
Netcetera
 
PDF
Payment trend scouting - Kurt Schmid, Netcetera
Netcetera
 
PDF
Merchant tokenization and EMV® Secure Remote Commerce
Netcetera
 
PDF
Digital Payment in 2020 - Kurt Schmid, Netcetera
Netcetera
 
PDF
Increase conversion, convenience and security in e-commerce checkouts - Silke...
Netcetera
 
PDF
Digital Payment and 3-D Secure by Netcetera
Netcetera
 
PDF
The Future of Payments
Netcetera
 
Digital Payment Quo Vadis
Netcetera
 
EMV Secure Remote Commerce (SRC)
Netcetera
 
Payment trend scouting - Kurt Schmid, Netcetera
Netcetera
 
Merchant tokenization and EMV® Secure Remote Commerce
Netcetera
 
Digital Payment in 2020 - Kurt Schmid, Netcetera
Netcetera
 
Increase conversion, convenience and security in e-commerce checkouts - Silke...
Netcetera
 
Digital Payment and 3-D Secure by Netcetera
Netcetera
 
The Future of Payments
Netcetera
 

What's hot (20)

PDF
Boost your approved transaction volume - Ana Vuksanovikj Vaneska, Netcetera
Netcetera
 
PDF
3-D Secure 2.0 - Stephan Rüdisüli, Netcetera & Patrick Juffern, INFORM
Netcetera
 
PDF
Seamless 3-D Secure e-commerce experience
Netcetera
 
PPTX
3-D Secure 2.0
Netcetera
 
PPT
Payer Authentication Solutions For Verified by VISA
First Atlantic Commerce
 
DOCX
3-D Secure and MPI Integrations
UnitedThinkers
 
PPTX
What's 3D costing your business?
Adigital
 
PDF
Payment Gateway
Killian Delaney
 
PDF
3D-Secure 2.2 Webinar
Ivona M
 
PPT
Payment Gateway
Nyros Technologies
 
PDF
Seamless payment integration with shopify (1)
ThinkTanker Technosoft PVT LTD
 
PDF
A Complete Model of the Payment Service Business
Frank Steeneken
 
PPT
Visa master card contactless payment in china_v1
Kelvin Tai
 
PPTX
Online payment gateway provider
Payment Gateways
 
PDF
Powerful Reward Platform
Mikhail Miroshnichenko
 
PDF
Loyalty
Inna Rumiantseva
 
PPTX
Hacking Point of Sale
Tripwire
 
PDF
IBM Payments Gateway
Killian Delaney
 
PPTX
Peter Afanasiev - Architecture of online Payments
Ciklum Ukraine
 
PPTX
Payment gateway/payment service providers and future trends in mobile payment...
Danail Yotov
 
Boost your approved transaction volume - Ana Vuksanovikj Vaneska, Netcetera
Netcetera
 
3-D Secure 2.0 - Stephan Rüdisüli, Netcetera & Patrick Juffern, INFORM
Netcetera
 
Seamless 3-D Secure e-commerce experience
Netcetera
 
3-D Secure 2.0
Netcetera
 
Payer Authentication Solutions For Verified by VISA
First Atlantic Commerce
 
3-D Secure and MPI Integrations
UnitedThinkers
 
What's 3D costing your business?
Adigital
 
Payment Gateway
Killian Delaney
 
3D-Secure 2.2 Webinar
Ivona M
 
Payment Gateway
Nyros Technologies
 
Seamless payment integration with shopify (1)
ThinkTanker Technosoft PVT LTD
 
A Complete Model of the Payment Service Business
Frank Steeneken
 
Visa master card contactless payment in china_v1
Kelvin Tai
 
Online payment gateway provider
Payment Gateways
 
Powerful Reward Platform
Mikhail Miroshnichenko
 
Loyalty
Inna Rumiantseva
 
Hacking Point of Sale
Tripwire
 
IBM Payments Gateway
Killian Delaney
 
Peter Afanasiev - Architecture of online Payments
Ciklum Ukraine
 
Payment gateway/payment service providers and future trends in mobile payment...
Danail Yotov
 
Ad

Similar to Digital Payments - Netcetera Innovation Summit 2018 (20)

PDF
Can security and convenience go hand in hand in e-commerce
Mercury Processing Services International
 
PDF
v 1.0
Vinod Amarathunga
 
PDF
What is Payment Tokenization?
Rambus Inc
 
PPTX
Tokenisation 2.0
Madhuka De Silva
 
PPTX
Straight Talk on Data Tokenization for PCI & Cloud
Intel - API Security & Tokenization
 
PPT
Pcitf iiw10
Steve Sidner
 
PDF
key-trends-in-merchant-security
Kerri Lorch
 
PPTX
RBI Tokenization And Impact on Digital Adoption
meetankitsharma1280
 
PPTX
Smart Card to the Cloud for Convenient, Secured NFC Payment
Sazzadur Rahaman
 
PPTX
EMV - The Chips are Coming - Ken Givens U.S. Merchant Payment Solutions 11-15
Ken Givens
 
PDF
pPOS Project Presentation_v1
FLORIN SUCIU
 
PDF
Secure Payments: How Card Issuers and Merchants Can Stay Ahead of Fraudsters
Cognizant
 
PPTX
So you want to be an EMV Issuer...
Ainsley Ward
 
PPT
E-Commerce 08
Zarrar Siddiqui
 
PPTX
Tim sloane preparing for rapid payments innovation
CO-OPFinancialServices
 
PDF
Smart card to the cloud for convenient, secured nfc payment
Kona Software Lab Limited.
 
PDF
EMV: Preparing for Changes to the Retail Payment Process
- Mark - Fullbright
 
PPTX
Payment Card System Overview
Narudom Roongsiriwong, CISSP
 
PDF
Multiple tokenization schemes meet the merchant
Ulf Mattsson
 
PDF
White Paper: Tokenization, Credit Card Fraud Prevention, Beyond PCI Measures
Nisum
 
Can security and convenience go hand in hand in e-commerce
Mercury Processing Services International
 
v 1.0
Vinod Amarathunga
 
What is Payment Tokenization?
Rambus Inc
 
Tokenisation 2.0
Madhuka De Silva
 
Straight Talk on Data Tokenization for PCI & Cloud
Intel - API Security & Tokenization
 
Pcitf iiw10
Steve Sidner
 
key-trends-in-merchant-security
Kerri Lorch
 
RBI Tokenization And Impact on Digital Adoption
meetankitsharma1280
 
Smart Card to the Cloud for Convenient, Secured NFC Payment
Sazzadur Rahaman
 
EMV - The Chips are Coming - Ken Givens U.S. Merchant Payment Solutions 11-15
Ken Givens
 
pPOS Project Presentation_v1
FLORIN SUCIU
 
Secure Payments: How Card Issuers and Merchants Can Stay Ahead of Fraudsters
Cognizant
 
So you want to be an EMV Issuer...
Ainsley Ward
 
E-Commerce 08
Zarrar Siddiqui
 
Tim sloane preparing for rapid payments innovation
CO-OPFinancialServices
 
Smart card to the cloud for convenient, secured nfc payment
Kona Software Lab Limited.
 
EMV: Preparing for Changes to the Retail Payment Process
- Mark - Fullbright
 
Payment Card System Overview
Narudom Roongsiriwong, CISSP
 
Multiple tokenization schemes meet the merchant
Ulf Mattsson
 
White Paper: Tokenization, Credit Card Fraud Prevention, Beyond PCI Measures
Nisum
 
Ad

More from Netcetera (20)

PDF
AI First. Erfolgsfaktoren für künstliche Intelligenz im Unternehmen
Netcetera
 
PPTX
Augmenting Maintenance
Netcetera
 
PDF
Front-end up front
Netcetera
 
PDF
The future of Prototpying
Netcetera
 
PPTX
Online shopping technology in the fast lane?
Netcetera
 
PPTX
Augmenting Health Care
Netcetera
 
PDF
Driving transactional growth with 3-D Secure
Netcetera
 
PDF
EMV® Secure Remote Commerce
Netcetera
 
PDF
Context: The missing ingredient in multilingual software translation
Netcetera
 
PDF
"Whats up and new at Netcetera?" - Netcetera Innovation Summit 2018
Netcetera
 
PDF
Fintech Innovations - Netcetera Innovation Summit 2018
Netcetera
 
PDF
RiSIC - Stop losing money. Today.
Netcetera
 
PDF
HoloLens in der Neurochirurgie
Netcetera
 
PDF
DEVELOPING CONVERSATIONAL INTERFACES FOR IOS
Netcetera
 
PDF
BUILDING VOICE RESPONSIVE APPS ON IOS
Netcetera
 
PDF
UNDERSTANDING LANGUAGE ON IOS
Netcetera
 
PDF
Blockchain use cases in health and education
Netcetera
 
PDF
Augmented Reality and Conversational Interfaces workshop
Netcetera
 
PDF
Chances of open banking
Netcetera
 
PDF
New business cases needed because of new technologies arising
Netcetera
 
AI First. Erfolgsfaktoren für künstliche Intelligenz im Unternehmen
Netcetera
 
Augmenting Maintenance
Netcetera
 
Front-end up front
Netcetera
 
The future of Prototpying
Netcetera
 
Online shopping technology in the fast lane?
Netcetera
 
Augmenting Health Care
Netcetera
 
Driving transactional growth with 3-D Secure
Netcetera
 
EMV® Secure Remote Commerce
Netcetera
 
Context: The missing ingredient in multilingual software translation
Netcetera
 
"Whats up and new at Netcetera?" - Netcetera Innovation Summit 2018
Netcetera
 
Fintech Innovations - Netcetera Innovation Summit 2018
Netcetera
 
RiSIC - Stop losing money. Today.
Netcetera
 
HoloLens in der Neurochirurgie
Netcetera
 
DEVELOPING CONVERSATIONAL INTERFACES FOR IOS
Netcetera
 
BUILDING VOICE RESPONSIVE APPS ON IOS
Netcetera
 
UNDERSTANDING LANGUAGE ON IOS
Netcetera
 
Blockchain use cases in health and education
Netcetera
 
Augmented Reality and Conversational Interfaces workshop
Netcetera
 
Chances of open banking
Netcetera
 
New business cases needed because of new technologies arising
Netcetera
 

Recently uploaded (20)

PDF
Which alternative to Crystal Reports is best for small or large businesses.pdf
Varsha Nayak
 
PDF
Understanding Forklifts - TECH EHS Solution
TECH EHS Solution
 
PDF
PTS Company Brochure 2025 (1).pdf.......
pts464036
 
PPTX
ManageIQ - Sprint 268 Review - Slide Deck
ManageIQ
 
PDF
Audit Checklist Design Aligning with ISO, IATF, and Industry Standards — Omne...
rohnjim07
 
PPTX
Agentic AI : A Practical Guide. Undersating, Implementing and Scaling Autono...
IT IDOL Technologies
 
PDF
Navsoft: AI-Powered Business Solutions & Custom Software Development
Navsoft
 
PPTX
Odoo POS Development Services by CandidRoot Solutions
CandidRoot Solutions Private Limited
 
PDF
Nekopoi APK 2025 free lastest update
umarali35kp
 
PDF
Digital Strategies for Manufacturing Companies
Virendra Rai, PMP
 
PDF
Flood Susceptibility Mapping Using Image-Based 2D-CNN Deep Learnin. Overview ...
lawrenceomai2
 
PPTX
Agentic AI Use Case- Contract Lifecycle Management (CLM).pptx
mhxyzzp
 
PDF
How to Choose the Right IT Partner for Your Business in Malaysia
Asian Business Services & Technologies
 
PDF
System and Network Administration Chapter 2
jaramharo
 
PDF
2025 Textile ERP Trends: SAP, Odoo & Oracle
Aetos Technologies
 
PPTX
ai tools demonstartion for schools and inter college
harshavardhanreddyka11
 
PDF
Softaken Excel to vCard Converter Software.pdf
markwillsonmw004
 
PDF
Design an Analysis of Algorithms I-SECS-1021-03
DilanEscobar1
 
PDF
Claude Code: Everyone is a 10x Developer - A Comprehensive AI-Powered CLI Tool
William Chong
 
PDF
SAP S4 Hana Brochure 3 (PTS SYSTEMS AND SOLUTIONS)
pts464036
 
Which alternative to Crystal Reports is best for small or large businesses.pdf
Varsha Nayak
 
Understanding Forklifts - TECH EHS Solution
TECH EHS Solution
 
PTS Company Brochure 2025 (1).pdf.......
pts464036
 
ManageIQ - Sprint 268 Review - Slide Deck
ManageIQ
 
Audit Checklist Design Aligning with ISO, IATF, and Industry Standards — Omne...
rohnjim07
 
Agentic AI : A Practical Guide. Undersating, Implementing and Scaling Autono...
IT IDOL Technologies
 
Navsoft: AI-Powered Business Solutions & Custom Software Development
Navsoft
 
Odoo POS Development Services by CandidRoot Solutions
CandidRoot Solutions Private Limited
 
Nekopoi APK 2025 free lastest update
umarali35kp
 
Digital Strategies for Manufacturing Companies
Virendra Rai, PMP
 
Flood Susceptibility Mapping Using Image-Based 2D-CNN Deep Learnin. Overview ...
lawrenceomai2
 
Agentic AI Use Case- Contract Lifecycle Management (CLM).pptx
mhxyzzp
 
How to Choose the Right IT Partner for Your Business in Malaysia
Asian Business Services & Technologies
 
System and Network Administration Chapter 2
jaramharo
 
2025 Textile ERP Trends: SAP, Odoo & Oracle
Aetos Technologies
 
ai tools demonstartion for schools and inter college
harshavardhanreddyka11
 
Softaken Excel to vCard Converter Software.pdf
markwillsonmw004
 
Design an Analysis of Algorithms I-SECS-1021-03
DilanEscobar1
 
Claude Code: Everyone is a 10x Developer - A Comprehensive AI-Powered CLI Tool
William Chong
 
SAP S4 Hana Brochure 3 (PTS SYSTEMS AND SOLUTIONS)
pts464036
 

Digital Payments - Netcetera Innovation Summit 2018

  • 1. Bernried, September 2018 Kurt Schmid, Managing Director Digital Payments A small step for a programmer, a big step for payments Merchant Tokenization & Secure Remote Commerce
  • 2. Questions Who likes to enter PANs again and again for every new merchant? Who is worried of fraud on his/her card? Who knows all the places where your card data is stored? Why is Amazon so powerful? 2
  • 4. When the PAN and other card data is known fraud can be made with little efforts The PAN and other card data therefore is in PCI- Scope The weakest link makes the level of security Why Tokenization? What is the problem? Securing the Card Number (PAN)
  • 5. Key and surrounding roles 5 Token Requestor Token Service Provider Card Issuer Merchant End User PSPScheme Acquirer NSP IoT Device Wallet (X Pay) TR TSP Issuer TSP
  • 6. Card Issuer Token Service Provider Token Requestor Main Use Case: Digitize (Tokenize) Card 6 Yellow case Step up auth.
  • 7. Main Use Case: Secure variant of Digitize 7 Token Requestor Token Service Provider Card Issuer authenticates Encrypted PAN Green case
  • 8. Scaling Up Tokenization (1) 8 Token Requestor Token Service Provider Card Issuer
  • 9. Scaling Up Tokenization (2) 9 Token Requestor Token Service Provider Card Issuer MDES, VTS, AETS
  • 10. Scaling Up Tokenization (3) 10 Token Requestor Token Service Provider Card Issuer Aggregators Token Requestor TSP Card Issuer TSP
  • 11. Know Usage for Mobile Contactless Payment 11 Enabling an App to perform mobile contactless payment at the POS Request Tokens via MDES, VTS etc. for Cloud Based Payments NFC Interface to Terminals nbased on Host Card Emulation (HCE) Replenishment of short living card keys to increase security (“SUK”, “LUK” instead of CMKs)
  • 12. MyBankApp Accounts 6,750.00 Recent Transactions Ready to Pay Tokenization in use for Mobile Contactless Payments 12 Token Requestor (CMS-D, MAP) Scheme Token Service (MDES VTS AETS) Card Issuer authenticates Encrypted PAN PSP, Acquirer Network AuthDeTok.
  • 13. E-Commerce Payment 13 Enabling an e-Commerce application for Payments Card Not Present and 3DS today’s prevailing methods for checkout
  • 14. Concerns in eComm Payments 14 Risk/Fraud through different attacks Low Conversion rates on mobile channels Abandonning the checkout process Higher costs for CNP versus CP Merchant concerns Issuer concerns Risk/Fraud through different attacks Cost of customer care Lost transactional Revenue Consumer concerns Ease of onboarding Convience at shopping
  • 15. Why not use Tokenization in e-Commerce? Each merchant does not store the PAN but a token Security will be Card Present like by using a cryptogram 15 The basic Ideas: Mastercard started M4M (MDES for Merchants) VISA speaking about Tokenizazion in eCommerce and Card of File (COF)
  • 16. Tokenization in use for e-Commerce Payments 16 Token Requestor (CMS-D, MAP) Scheme Token Service (MDES VTS AETS) Card Issuer PSP, Acquirer Network AuthDeTok. COF PAN Entry
  • 17. Use Cases Enroll: Add card manually or tokenize from card of file Display cards: Card art coming from token service (User sees his real card image) Transact: Generate EMV cryptogram (can be used for one or more transactions) Lifecycle: Issuer Account Update
  • 19. Secure Remote Commerce Framework (“SRC”) Defined by EMVCo ( /) Scheme agnostic to help interoperability Pay securely by credit card” button in checkout Will be scheme neutral successor of MasterPass & Visa Checkout starting 2019 / 2020 Will support card tokenization using MDES and VTS Will support card present type security (“cryptograms”) Demonstrator available from Netcetera, Training courses will be available
  • 20. Roles used in SRC 20 Token Requestor Token Service Provider (Scheme) Card Issuer Supporting SRC SRC System Digital Card Facilitator Digital Shopping Application (aka Merchant) PSP SRC Inititator
  • 21. SRC Flow once device is registered / returned user
  • 23. Benefits Seamless experience – Starts with card entry like user is used to do No onboarding required – but device / merchant pairing possible from issuer app Works with all schemes in the same way Tokenization and EMV-like security will prevent fraud and lower the costs
  • 24. As Issuer As Merchant As PSP As Acquirer How to approach this? Ask for a training on SRC done by our expert Thomas Fromherz
  • 25. Europaplatz4 4020Linz Austria info@netcetera.com +43664 11211 00 Kurt Schmid Managing Director Digital Payment Kurt.Schmid@netcetera.com