April 2018 Monthly Member Bulletin
Executive Director’s Corner
Payments Summit Delivers on Promise to Inform and Excite
In my March letter for this Alliance member bulletin, I shared my excitement and anticipation for the major news and information about the future of payments that would be coming from our keynote speakers at the March 26-29 Payments Summit in Orlando. Now that the conference is over, I can report that the Payments Summit was a tremendous success, with a combined audience of more than 800 attendees, representing members, guest speakers, and payments industry followers of the Secure Technology Alliance, the U.S. Payments Forum, and the ICMA, including over 100 speakers and 70 exhibitors. The combined event spanned four days, including twelve separate conference tracks and training sessions.
The senior management-level keynote speakers and panelists on the first full plenary day certainly filled the room with valuable information about the current state of payments in the U.S. and insightful messages about what the future holds. Justin Block from Discover addressed the value of building Discover’s digital payments network; Jack Connors from Google laid out the company’s strategy on the convergence of digital payments across all Google consumer platforms; and Visa’s Stephanie Ericksen shared positive news on the U.S. EMV migration and what it means for the expected future of contactless EMV and NFC payments.
Ericksen also shared Visa’s encouraging report on the status of the migration, commenting that 96 percent of Visa’s payment volume at the point-of-sale is using chip cards; 59 percent of U.S. point-of-sale locations accept chip (an impressive 578 percent growth since the October 2015 liability shift); and chip-enabled merchants have experience a 70 percent decline in counterfeit card fraud.
A roundtable session of cross-industry stakeholders from the U.S. Payments Forum, featuring representatives from issuer, processor, and card, terminal and technology provider groups, focused on how the chip migration experiences and lessons learned have led to rapid changes in other areas. Another Forum roundtable of financial institutions and banking services providers discussed balancing the competing priorities to keep up with advances in mobile services while preparing for the eventual shift to dual-interface EMV chip cards. And a separate panel of major retailers discussed the future of the chip migration for industry segments with special considerations, like pay-at-the-window and pay-at-the-pump.
The FIDO Alliance’s Brett McDowell outlined how the FIDO Alliance is working with EMVCo to use FIDO authenticators in conjunction with EMVCo’s 3DSecure protocol, for securing CNP transactions in a manner that is both scalable and interoperable across the EMV payments ecosystem.
The Payments Summit experience was greatly enriched this year by the large turnout of U.S. Payments Forum members, who know each other well and work closely together on projects and in committees and who meet in-person at Forum meetings several times a year.
With so much change and innovation impacting the payments industry, the Payments Summit has become the event that payments stakeholders look forward to every year, because it brings together like-minded individuals looking to find new ways to overcome challenges impacting the adoption, security and usability of emerging and developing payments technologies.
Thank you for making this event such an unprecedented success.
April Webinar: How to Plan, Procure and Deploy a PIV-Enabled Physical Access Control System: Use Cases and Lessons Learned
The Alliance Educational Institute and Access Control Council are hosting the sixth, and final, webinar in the series, “How to Plan, Procure and Deploy a PIV-Enabled Physical Access Control System.”
The sixth webinar, Use Cases and Lessons Learned, is scheduled on Thursday, April 19, 2018, at 2pm ET/11am PT, and will feature a moderated panel of industry experts discussing lessons learned from their deployments of PIV-enabled PACS. Registration is at: https://attendee.gotowebinar.com/register/1895494660240400130.
Speakers for the April 19th webinar are: Randy Vanderhoof, Secure Technology Alliance; Lars Suneborn, Secure Technology Alliance; Tony Damalas, SigNet Technologies, Inc.; Daryl Hendricks, General Services Administration; Ryan Kaltenbaugh, Lenel; Michael Kelley, Parsons; Stafford Mahfouz, TYCO; Mark Steffler, Quantum Secure; William Windsor, U.S. Department of Homeland Security.
- Council projects. A summary of all active Council projects is posted on the Secure Technology Alliance members-only site
- The Mobile, Payments and Transportation Councils held in-person meetings at the Payments Summit on March 27-28, at the Omni Orlando Resort at ChampionsGate. During the meetings, Council members discussed key industry challenges and brainstormed projects for 2018
- The Secure Technology Alliance Educational Institute and Access Control Council held its fifth webinar in the education series “How to Plan, Procure and Deploy a PIV-Enabled PACS.” The fifth webinar, Implementing the Solution, was held on March 15 and featured Mark Dale (XTec, Inc.), Tony Damalas (SigNet Technologies, Inc.), Lars Suneborn (Secure Technology Alliance), and Randy Vanderhoof (Secure Technology Alliance) as speakers. Recordings of all webinars are available on the Alliance web site. The final webinar in the series, Use Cases and Lessons Learned, is being held on April 19
- The Health and Human Services Council has distributed an Alliance member survey to get feedback on member business activities and priorities in the healthcare market. Member feedback on their healthcare market focus and priority topics will help the Council plan activities that target the healthcare market and benefit membership. Members are asked to complete the short survey by April 20th
- The Identity Council hosted a well-attended webinar, Identity on a Mobile Device, on March 22. This webinar provided an overview of the Council’s mobile identity landscape project and discussed two use cases: mobile driver’s license and mobile derived PIV credentials. Webinar speakers were: David Coley (Intercede), David Kelts, (IDEMIA), Tom Lockwood (NextgenID, Inc.), Geoff Slagle (AAMVA), Suraj Sudhakaran (Gemalto), and Randy Vanderhoof (Secure Technology Alliance)
- The Mobile Council published the new white paper, Trusted Execution Environment (TEE) 101: A Primer. The white paper provides an educational resource on the TEE and relevant use cases. Secure Technology Alliance participants involved in the development of this white paper included: Cubic Transportation Systems; Discover Financial Services; First Data; GlobalPlatform; HID Global; JPMorgan Chase; Mastercard; MIPS; Thales e-Security; Trustonic; and Visa
- The Payments Council published the new white paper, EMVCo Payment Account Reference (PAR): A Primer. The white paper provides a primer on the EMVCo PAR, documents expected use cases for the PAR, and describes the impact of PAR implementation on key payments ecosystem stakeholders. Secure Technology Alliance and U.S. Payments Forum participants involved in the development of this white paper included: American Express; Capital One; CPI Card Group; First Data; JPMorgan Chase; Mastercard; Metropolitan Transportation Authority (MTA); Rambus; Transportation District of Oregon (TriMet); TSYS; Visa
- The Transportation Council currently has two active projects: a webinar on mobile ticketing and Near Field Communications (NFC); part two of the payments convergence white paper, focusing on potential barriers to implementation of multimodal payment strategies and suggesting ways of addressing these challenges.
If you would like to participate in a Secure Technology Alliance Council, please contact Devon Rohrer, [email protected].
New U.S. Payments Forum Resources
The U.S. Payments Forum published the new resource, Merchant and Issuer Error Data Collection Forms. The forms were developed to assist issuers, issuer processors, merchants, acquirers and acquiring processors with gathering information in a consistent way with sufficient details to help determine the source of errors.
Congratulations New Recipients
- Subhashini Golamari, ICPS Mauritius
- Karin Searcy, TYS
- Paul Cabrera, S.E.G. Inc.
- Tony Padilla, ALLCOM GS
Training, Exam, and Recertification Dates
Unless otherwise noted, all trainings and exams will be held at the National Center for Advanced Payments and Identity Security in Arlington, VA
- May 15 – 16, National Center for Advanced Payments and Security
- April 24-26, National Center for Advanced Payments and Security
- May 22-24, National Center for Advanced Payments and Security
- June 19-21, National Center for Advanced Payments and Security
- July 24-26, National Center for Advanced Payments and Security
- 28-30, National Center for Advanced Payments and Security
The online instructor-led review course is four hours, from 11 AM ET – 3 PM ET. The hour-long exam follows from 3 PM ET to 4 PM ET. Register for one of these upcoming certification dates:
- May 10
- June 7
- July 19
- August 23
Securing Federal Identity 2018
Registration is now open for the two-day Government Conference scheduled for June 5-6 in Washington, DC. Securing Federal Identity 2018 will bring together the most influential thought leaders to address developments, innovations and updates in federal identity credentialing and access security.
This Secure Technology Alliance event draws executives across government agencies and security and technology industries. The networking opportunities at the event are second to none in the identity, credentialing and authentication industry, and we encourage you to take full advantage of these valuable experiences. Register by April 27th to secure early-bird discounts. Government employees are also eligible for discounts- learn more about discounted registration. We look forward to seeing you at the Hamilton Crowne Plaza Hotel – Almas Temple in June.