News : Newsletters : Alliance Member Bulletin : March 2019

Executive Director’s Corner

Consumer Experience Remains at Top of Discussions

The consumer shopping experience was the one thread that was pervasive during the conference sessions at the 2019 Payments Summit conference in Phoenix.  While there was plenty to analyze and debate about the latest fraud trends, mobile applications and fintech innovations, one theme stood out – the outsized importance of payments delivery services meeting consumer expectations for a friction-free anytime, anywhere, any-way checkout experience.

That overarching theme was driven home by the opening keynote speaker, Dan Sanford, head of Global Contactless Payments for Visa, who talked about the transformational nature of contactless “tap & go” payments growing around the world.  Visa cited examples of how transit will likely be a driver for contactless payment adoption in the U.S., pointing out that large transit agencies are moving to open contactless payments, including recently-announced New York City and Boston. Global experience shows that transit has driven adoption for contactless payments in the geographical area around the agency.

But transit agencies are looking for more than just contactless payments.  They want to create better multimodal experiences for their riders. Transit agencies and mobile applications providers serving the transportation market spoke about various projects to enable more choice and seamless mobility for their customers in their respective areas. This includes real-time trip planning, mobile ticketing, rewards, account-loading choice and partnerships with ridesharing, bike sharing, and other private services.

Several merchants representing general merchandise, fast food, supermarkets and convenience stores described the priorities for providing omnichannel experiences to their customers.  Examples of changing consumer shopping patterns like use of mobile apps with rewards integrations, quick-service order-ahead delivery, and buy online, pickup in store checkout channels highlighted the need to serve consumers with different shopping habits and shopping lifestyle choices.  In all cases, convenience and security are important, but only if those innovations don’t add more complexity and friction during the checkout process.

The Payments Summit touched on many other payments topics, such as: faster payments; use of artificial intelligence in payments; peer-to-peer payments; online security tools like EMV 3DS, Secure Remote Commerce and FIDO; and tokenization.  Those topics stimulated many more discussions during Q&A sessions and at the networking lunches and receptions held in the open atrium that hosted the vendor pavilion.

I hope everyone who attended the recent conference and co-located U.S. Payments Forum member meeting will carry that enthusiasm into the many industry council and working committee projects for the remainder of the year.


Council Highlights

  • Council projects. A summary of all active Council projects is posted on the Secure Technology Alliance members-only site
  • The Access Control Council elected its 2019/2020 Steering Committee to lead the Council. Members elected to the Steering Committee were: Mark Dale, XTec, Inc.; Tony Damalas, SigNet Technologies; Christophe Goyet, IDEMIA; Derek Greenland, Lenel; Daryl Hendricks, GSA; Mike Kelley, Parsons; Stafford Mahfouz, JCI TYCO/Software House; Roger Roehr, Integrated Security Technologies; Steve Rogers, IQ Devices; Adam Shane, LEIDOS; Mark Steffler, HID; Lars Suneborn, ID Technology Partners; Bill Windsor, DHS; Mike Zercher, Secure Element Solutions. The Council has three active projects: developing industry comments on the NEXGEN TWIC specifications; completing the enterprise PACS playbook; developing guidance to compliment the NIST SP 800-116 v2 publication
  • The Identity Council elected its 2019/2020 Steering Committee to lead the Council. Members elected to the Steering Committee were: David Coley, Intercede; Jatin Deshpande, G+D Mobile Security; David Kelts, IDEMIA; Tom Lockwood, NextgenID; Jeff Nigriny, CertiPath; Neville Pattinson, Gemalto; Steve Rogers, IQ Devices; Rob Zivney, ID Technology Partners. The Council is also continuing work on the mobile identity landscape white paper
  • The IoT Security Council has two active projects: a white paper on IoT ecosystem security and a webinar series on key topics in IoT security
  • The Payments Council published the new white paper, Biometric Payment Cards. The white paper provides a high-level description of biometric payment cards to educate issuers on functionality and benefits.  Members contributing to the white paper included: American Express; CPI Card Group; Discover Financial Services; Entrust Datacard; First Data; G+D Mobile Security; Gemalto; IDEMIA; Infineon Technologies; Ingenico; Mastercard; MULTOS International; NXP Semiconductors; Rambus; Verifone; Visa.  The Council held a well-attended in-person meeting at the Payments Summit in Phoenix and developed a list of possible projects for 2019.  A poll will be sent to Council members later this month to get input on project priorities
  • The Transportation Council has updated the Council charter to expand activities in promoting the adoption of interoperable payment systems for transit, tolling, parking and evolving mobility services and technologies. The Council held a well-attended in-person meeting at the Payments Summit in Phoenix, discussing hot topics and possible projects for 2019

If you would like to participate in a Secure Technology Alliance Council, please contact Devon Rohrer, [email protected]nce.org.


Save The Date!

We invite you to join us for Securing Federal Identity 2019, a comprehensive coverage of efforts toward strong authentication technology. This day and a half event will be held June 4-5 at the Hilton Crystal City in Arlington, VA. A select group of government and industry speakers, as well as security companies in our exhibit area, will highlight the present and future direction of the government’s efforts to manage identities and secure access across all federal agencies. This year, the conference features a new, updated format, where the first day will center on policy issues and current progress and status for federal programs. Day two will look into authentication and authorization activities, progress, and lessons learned in both the physical and logical arenas. If you’re involved in federal identity credentialing or access security, you won’t want to miss this conference, as it will bring together the most important developments, innovations and experts in the space. Register today and secure your travel and hotel accommodations early.


New Alliance Resource: Biometric Payment Cards

The new Payments Council white paper, Biometric Payment Cards, was published during the 2019 Payments Summit.  This white paper provides a primer on biometric payment cards for issuers, issuer processors, payment networks and merchants. The white focuses on a specific implementation – one that incorporates fingerprint capture, template storage, and matching on the payment card itself.  The white paper discusses:

  • Biometric payment card technology
  • Fingerprint enrollment methods
  • The biometric payment card transaction process
  • Benefits of biometric payment cards
  • Implementation considerations
  • Real-world examples of biometric payment card implementations

New Forum Resources

The U.S. Payments Forum published a number of industry resources that will be of interest to Alliance members.

  • The new GetContactless.com educational web site was developed to answer the most important questions merchants have about contactless payments, including: what are contactless payments? Why offer contactless payments? Are contactless payments as secure as contact chip card payments? Merchants can also find additional resources such as signage best practices on the website
  • The Forum released guidance on PIN bypass for contactless transactions with updates to two previously-published white papers. PIN Bypass in the U.S. Market, was updated to include discussion of PIN Entry Bypass and No CVM limits on contactless transactions.  Understanding Fraud Liability for EMV Contact and Contactless Transactions in the U.S. was updated with expanded content on counterfeit and lost-or-stolen fraud liability for contactless transactions.
  • The Forum completed its four-webinar series on mobile and digital wallets. Sessions covered the market landscape, security approaches, merchant considerations and issuer considerations. Presenters included: Deborah Baxley, PayGility Advisors; Marianne Crowe, Federal Reserve Bank of Boston; Laura Townsend, Merchant Advisory Group; and Art Harper, PSCU. Recordings and presentation PDFs are available from the U.S. Payments Forum web site
  • The Forum hosted a well-attended webinar, EMV 3-D Secure Data Elements, on February 12th, with Kristy Cook, Target and Forum Steering Committee Chair, Michael Horne, American Express, and Ian Poole, CardinalCommerce presenting. The webinar provided an overview of EMV 3DS and presented detail about the new EMV 3DS data elements to provide an educational overview for merchants, issuers and other payments industry stakeholders.  The webinar recording and presentation are posted on the Forum web site

Welcome New Member

  • Metropolitan Transit System, San Diego

CSEIP

  • Glen Ballew, Security Install Solutions*
  • Dustin Mastay, Security Install Solutions*
  • Cameron Paul, Security Install Solutions*
  • Ryan Todd, Security Install Solutions*
  • Jared Wischkowski, Security Install Solutions*

CSEIP Recertifications

  • Brent Arnold, XTec
  • Richard Case, Systems Engineering
  • Troy Hall, Johnson Controls
  • Todd Sodestrom, Security Install Solutions
  • Maniram Tiwari, Johnson Controls

*Denotes corporate exam. For more information, contact Randy Vanderhoof


CSEIP Training, Exam, and Recertification Dates

Unless otherwise noted, CSEIP training and exams will take place at The Training Center at Identification Technology Partners, located at 12 S Summit Ave in Gaithersburg, MD. Recertification is online-based only.

CSEIP Training/Exam

  • April 23-25, 2019, Identification and Technology Partners
  • May 21-23, 2019, Identification and Technology Partners
  • June 25-27, 2019, Identification and Technology Partners

To view the summer and fall CSEIP 2019 schedule, click here.

CSEIP Recertification

The online instructor-led review course is four hours, from 11 AM ET – 3 PM ET. The hour-long exam follows from 3 PM ET to 4 PM ET. Here are upcoming dates:

  • April 19, 2019

To view the entire recertification schedule, click here.


Follow the Alliance on Social Media

The Secure Technology Alliance has enhanced its presence on social media with robust platforms on Twitter and LinkedIn.  Here are some ways you can interact with the organization: