News : Newsletters : Alliance Member Bulletin : August 2020

Executive Director Message

The Big Picture of Digital Identity

While COVID-19 has me questioning what the future may bring, it has also given me some time to think about the big picture of the future of digital identity.  As many of you may be aware, the Alliance Identity Council and Access Control Council have been busy exploring the technical and business applications for managing identity credentials on a mobile device.

The Alliance’s mobile driver’s license initiative, under the leadership of the Identity Council, has already published a detailed industry collaboration white paper Mobile Driver’s License (mDL) and Ecosystem; delivered a series of webinars that include industry experts, federal and state mDL leaders, and supporting industry groups to present key findings from the publication; hosted in-person workshops on digital identity and mDL use in retail; and are responsible for creating the mDLConnection.com website providing education resources and tracking the progress of state mDL pilots and rollouts.  New projects assessing the obstacles that need to be addressed for faster implementation of mDLs and looking further into requirements for mDL use by relying parties are forming now.

Concurrently with those actions, the Access Control Council has started a new industry collaboration project about using digital credentials stored on mobile devices for physical access control.  As government and commercial offices expand remote operations due to COVID-19 safety concerns and health regulations, they are forced to secure remote access to networks and virtual systems.  Issuing photo ID badges good for physical access is no longer sufficient.  The Council will explore ways for mobile devices to be used in a secure way to issue and store mobile identity credentials for use in accessing buildings and authenticating to remote locations and networks.

Digital identity is also expanding into payments.  Financial institutions are among the most trusted by consumers and these business relationships often involve extensive knowledge about the individual customer.  They also operate expansive global transaction networks that link consumers, retailers, and processors in real time to make risk-based decisions about identity.  Those networks and the personal data they manage can be used to authenticate if someone’s digital identity data can be trusted in the same way they authenticate if someone’s payment data is trusted.  As COVID-19 moves more commerce to card-not-present transactions, the value of financial networks providing businesses with higher trust for non-face-to-face identity transactions will increase.  The Alliance’s global payment network members, processors, and payments technology and services providers will be the early movers and adopters behind this trend.

So the “big picture” of digital identity is very exciting and the Secure Technology Alliance is fortunate to have so many important leaders from diverse ecosystems in the mobile, digital identity, and payments marketplace contributing their thought leadership on these important issues.  If you are not a member yet or are a member but not yet active, make your participation is this organization yet one more change you are experiencing during this COVID-19 era.

Sincerely,
Randy Vanderhoof
Executive Director, Secure Technology Alliance


2020 Securing Federal Identity Conference Cancelled Due to COVID-19

The 2020 Securing Federal Identity Conference, originally scheduled for June and postponed until September, has been officially cancelled.  This announcement was delayed until the contract with the Hilton Crystal City hotel, where the event was scheduled to be held, could be resolved.  The contract required that we wait until 30 days prior to the start date to determine if the event would be able to be held under state and local health restrictions.  It was determined that it was not safe to hold the event, so they released the Alliance from the contract without cancellation fees.

No new date for this event has been set while we give consideration to holding some virtual panels and educational sessions later in 2020.


Alliance Member Survey

Alliance Member Survey Now Available

The Secure Technology Alliance has launched its annual member survey to understand member satisfaction and get input for the Alliance’s 2020/2021 programs and activities. The Alliance values member feedback and wants to ensure that we provide significant value to the membership.

We’ve shortened the survey this year to encourage broader participation.  It will take less than 10 minutes to complete.

The survey is available for member access at:  https://www.surveymonkey.com/r/2020STAMember.

Members are asked to complete this survey by Sept. 10th.


Wearable Payments

Updated Resource: Implementation Considerations for Contactless Payment-Enabled Wearables with Secure Elements

The Secure Technology Alliance Payments Council updated the white paper, Implementation Considerations for Contactless Payment-Enabled Wearables with Secure Elements.  This resource provides an overview of the market and applications for contactless wearables and the different models being used for implementation.  According to market research and consulting firm Reports and Data, the global wearable device market is expected to grow to over $1.1 trillion in 2026. With emphasis on touch-free transactions to mitigate the spread of germs and bacteria, wearables may see more adoption alongside the uptick in contactless card usage. Mastercard reported a 40% jump in contactless payment transactions just during the first quarter of this year.

Jose Correa, NXP Semiconductors, led the project.  Payments Council members involved in the development and review of the updated white paper included: CPI Card Group; Discover Financial Services; Fiserv; G+D Mobile Security; Infineon Technologies; Ingenico; Mastercard; NXP Semiconductors; SHAZAM.


Council Highlights

  • Council projects. A summary of all active Council projects is posted on the Secure Technology Alliance members-only site.
  • The Access Control Council is working on a new project on access control with mobile devices (in collaboration with the Identity Council).
  • The Identity Council submitted comments to respond to the NIST request for comments on SP 800-63 “Digital Identity Guidelines” (in collaboration with the Access Control Council). The Council is also discussing a new projects on mDL and other digital identity topics.
  • The Payments Council published the updated white paper, Implementation Considerations for Contactless Payment-Enabled Wearables with Secure Elements. Members involved in the development and review of the updated white paper included: CPI Card Group; Discover Financial Services; Fiserv; G+D Mobile Security; Infineon Technologies; Ingenico; Mastercard; NXP Semiconductors; SHAZAM.  The Council is also continuing work on the white paper discussing an electric vehicle charging payment framework.
  • The Transportation Council is completing work on a vision document on the Mobility as a Service (MaaS) ecosystem. The election for Council officers and steering committee will be open in early September.

If you would like to participate in a Secure Technology Alliance Council, please contact Devon Rohrer, [email protected].  The full list of active Council projects is available on the Alliance members-only site.


Recent Forum Resources

The U.S. Payments Forum publishes industry resources that will be of interest to Alliance members.

  • The Forum published its Market Snapshot. The snapshot discusses industry shifts in focus to touchless experiences, securing e-commerce and upgrades for EMV at the pump.
  • The Forum CNP Fraud Working Committee published a new resource, CNP Fraud Mitigation Techniques. The white paper provides a high-level document that directs readers to relevant fraud mitigation techniques while providing easy access to details about the solutions.
  • The Forum published a new resource, S. Automated Fuel Dispenser (AFD) Chip Fallback Transaction Processing Best Practices. The white paper defines fallback and covers processing magnetic stripe transactions for card programs that are not supported on the contact EMV interface of automatic fuel dispenser (AFD) terminals.

The full list of active U.S. Payments Forum projects is available on the Alliance members-only site.


Congratulations New Certificants

CSEIP

  • Matthew Butler, TUSCO INC
  • Richard Huey, Tyto Athene, LLC
  • Taronn Sullivan, BruckEdwards, Inc.
  • Jamal Hennani, Parsons Corporation
  • Jonathan Baker, Tusco Inc.

CSEIP-Recertified

  • Henry Leahy, LS3 Inc.
  • Omar Lopez, LS3 Inc.
  • Fred Nathan, GC&E Systems Group
  • Steven Peltier, Johnson Controls
  • Daniel Stafford, General Services Administration
  • Sean Harrison, LS3 Inc.

Update on Training and Exam Dates

The following dates have been announced for CSEIP and CSCIP/G training.  Class sizes have been reduced to 6 people per class due to COVID-19 health guidelines and safety concerns.  As a result, classes are selling out faster than they have in the past, so we are advising organizations to make their reservations in advance of future security system contracts and installations.

  • CSEIP Certification Course, September 22-24, 2020 – CLASS IS FULL
  • CSEIP Certification Course, October 20-22, 2020
  • CSEIP Certification Course, November 17-19, 2020
  • CSEIP Re-Certification Course, September 18, 2020
  • CSEIP Re-Certification Course, November 24, 2020
  • CSEIP Re-Certification Course, December 18, 2020
  • CSCIP/G Training and Exam Prep Course, October 15-16, 2020

Follow the Alliance on Social Media

The Secure Technology Alliance has enhanced its presence on social media with robust platforms on Twitter and LinkedIn.  Here are some ways you can interact with the organization:

The Secure Technology Alliance is Hiring

X