News : Newsletters : Alliance Member Bulletin : September 2020

Executive Director Message

Retirement – A Time to Look Back and Forge Ahead

A few weeks ago, I made the public announcement that after 18 years as Executive Director, I was retiring in December.  Since that announcement was made, I have received an outpouring of supportive messages of congratulations and appreciation from dozens of Alliance members and industry colleagues.  I am humbled by this response.  It has stirred up many memories about the past years and has helped me envision what the future holds for the Secure Technology Alliance and the U.S. Payments Forum.

Where did the time go?  That is what keeps coming to mind when I look back on my career.  I didn’t seek out this job and, in fact, I only assumed the position as interim director in 2002 because I had recently left my company as an Alliance board member and I was actively searching for my next opportunity. The Smart Card Alliance office at that time was in lower Manhattan in New York City, and this was only six months after 9/11.   Commuting by car, train, and subway, and walking the final half mile to the office took two hours through a maze of construction and chaos in the area.

The first eight years (2002 – 2010) were marked by the original U.S. rollouts for smart cards across multiple markets.  The federal government announced a mandate for a government-wide smart card-enabled ID card; financial institutions introduced the first contactless payment cards; major U.S. cities rolled out contactless transit cards and began moving to accept open loop bank cards; and mobile device manufacturers added secure SIM cards and NFC technology for mobile wallets. The next decade (2010 – 2020) saw the rapid transformation of smart card usage in the U.S., led by the conversion of the payments ecosystem to support EMV chip cards.  This market-shifting force had an impact on the entire payments ecosystem and led to the formation of the EMV Migration Forum in 2012 (later changed to the U.S. Payments Forum in 2016).   The growth of mobile as a dominant device form factor, the evolution of mobile hardware security from removable U-SIM to embedded secure element, and the advances in IoT security contributed to the Alliance rebranding itself as the Secure Technology Alliance in 2018.

It is hard to say what the next 10 years will have in store for the Secure Technology Alliance and U.S. Payments Forum.  COVID-19 has changed everything we once considered “normal,” and its effects will shape the technology industry and consumer behavior in ways we can not predict today.   Member-driven industry associations must adapt to these changing conditions and prepare for a world without person-to-person contact and large-scale educational and networking conferences.  Collaborative working groups delivering white papers, webinars, and industry best practices documents, which have been a staple of Alliance and Forum activities, will continue to shape the market years ahead of full adoption of new technologies.  Surely, more touchless consumer transactions in retail, transit, and physical access security and the growing urgency for trusted, scalable, digital identity solutions (such as mobile driver’s licenses) for work and personal uses will be on the horizon to meet the demands for safer and more protected remote transactions.

Whoever is selected for my position will inherit a strong, connected community of industry professionals and committed organizations to get through these short-term challenges and will capitalize on the tremendous potential in the decade ahead.  And I will be watching and cheering for its successes from a safe distance.

Sincerely,
Randy Vanderhoof
Executive Director, Secure Technology Alliance


Mobile Driver’s License Webinar: Challenges to the mDL Ecosystem

The Secure Technology Alliance Identity Council is hosting the fourth webinar in its series on mobile driver’s licenses, Challenges to the mDL Ecosystem, on October 28, 2020.   As adoption of mobile driver’s licenses (mDLs) increases in the U.S. and the landscape for the technology comes into focus, challenges are still ahead that will need to be addressed for those that issue, accept, and verify identityThe fourth webinar will focus on the challenges to robust growth of the mDL ecosystem and industry activities to address them.

The webinar will be held October 28, 2020, at 1pm ET/11am PT. Registration is available at https://securetechalliance.webex.com/securetechalliance/onstage/g.php?MTID=e4783ce208798231140cc84a966dab9a5.

Attendees of the webinar will get a better understanding of implementation considerations in the mDL ecosystem, including: identity proofing and mDL enrollment; testing and certification for compliance with the ISO 18013-5 standard; opportunities for jumpstarting the mDL ecosystem.

Speakers include:  Arjan Geluk, UL; Loffie Jordaan, AAMVA; David Kelts, GET Group North America; Tom Lockwood, NextgenID; Mindy Stephens, AAMVA; Randy Vanderhoof, Secure Technology Alliance.


COVID-19 - A Message from the Secure Technology Alliance

Resources for Education and Implementation of COVID-19 Era Secure Technologies

With the changing focus across industries on touch-free experiences due to the COVID-19 pandemic, access to resources for understanding and implementing contactless technology is essential for service providers, end-users and payments, access security, transportation and digital identity experts. To help with this, the Secure Technology Alliance issued an announcement summarizing available resources on contactless technology and secure mobile solutions for payments and identity verification for the COVID and post-COVID eras.

Resources include publications and webinars from the Access Control, Identity and Payments Councils and the new mDLConnection web site. This recent press release provides more details about this resources.


Council Highlights

  • Council projects. A summary of all active Council projects is posted on the Secure Technology Alliance members-only site.
  • The Access Control Council is working on a white paper on access control with mobile devices (in collaboration with the Identity Council).
  • The Identity Council is holding a replay of its Privacy and Trust in the mDL Ecosystem webinar on Sept. 29th at 1pm ET/10am PT, with speakers Matt Thompson (IDEMIA), John Wunderlich (Kantara initiative), Ted Sobel (Dept. of Homeland Security), Christopher Williams (Exponent, Inc.) and Arjan Geluk (UL). The Council is scheduling the final webinar in the series, Challenges to the mDL Ecosystem, in late October.
  • The Payments Council is working on a white paper discussing an electric vehicle charging payment framework.
  • The Transportation Council call for nominations resulted in an excellent slate of candidates for Council officers and steering committee. Council members are now voting in the election, which will close on September 30th.

If you would like to participate in a Secure Technology Alliance Council, please contact Devon Rohrer, [email protected].  The full list of active Council projects is available on the Alliance members-only site.


Recent Secure Technology Alliance and U.S. Payments Forum Resources

The Secure Technology Alliance publishes industry resources on a broad range of topics related to secure technology.  Recent resources include the following:

  • Implementation Considerations for Contactless Payment-Enabled Wearables with Secure Elements. This Payments Council white paper update provides an educational resource on the wearables landscape focusing on ISO/IEC 14443/secure element-based implementations and to discuss key considerations for implementing payments in wearables. Participants involved in the development of the updated white paper included: CPI Card Group; Discover Financial Services; Fiserv; G+D Mobile Security; Infineon Technologies; Ingenico; Mastercard; NXP Semiconductors; SHAZAM.
  • Dynamic Security Code Cards: A Primer. This Payments Council publication provides an overview of the benefits, technologies and implementation considerations for dynamic security code cards.  Participants involved in the development of the updated white paper included:  ABCorp; Ellipse; IDEMIA; Infineon Technologies; MULTOS International; Thales; Visa; Worldpay.

The U.S. Payments Forum publishes industry resources that will be of interest to Alliance members.

  • The Forum published its Market Snapshot. The snapshot discusses industry shifts in focus to touchless experiences, securing e-commerce and upgrades for EMV at the pump.
  • The Forum CNP Fraud Working Committee published a new resource, CNP Fraud Mitigation Techniques. The white paper provides a high-level document that directs readers to relevant fraud mitigation techniques while providing easy access to details about the solutions.
  • The Forum published a new resource, S. Automated Fuel Dispenser (AFD) Chip Fallback Transaction Processing Best Practices. The white paper defines fallback and covers processing magnetic stripe transactions for card programs that are not supported on the contact EMV interface of automatic fuel dispenser (AFD) terminals.

Full lists of active Secure Technology Alliance and U.S. Payments Forum projects are available on the Alliance members-only site.


New Members

  • DualAuth, Inc.
  • JPMorgan
  • Transit

Congratulations New Certificants

CSCIP

  • Bill Fulmer, Johnson Controls

CSEIP

  • Matthew Butler, TUSCO INC
  • Andre D’Amours, Siemens Smart Infrastructure
  • Gene Gregory, Siemens Industry, Inc.
  • Ean Jordon, Connected Technology Integrators, Inc.
  • Sean Nordberg, Integrated Technologies and Design
  • John Wever, Integrated Technologies and Design

CSEIP-Recertified

  • Chad Black, Blackhawk Security LLC
  • Jared Murry, Access Systems Inc
  • Jared Schmall, World Telecom & Surveillance, Inc.
  • Anthony Tran, Star Asset Security, LLC

Update on Training and Exam Dates

The following dates have been announced for CSEIP and CSCIP/G training.  Class sizes have been reduced to 6 people per class due to COVID-19 health guidelines and safety concerns.  As a result, classes are selling out faster than they have in the past, so we are advising organizations to make their reservations in advance of future security system contracts and installations.

  • CSEIP Certification Course, October 20-22, 2020– CLASS IS FULL
  • CSEIP Certification Course, November 17-19, 2020
  • CSEIP Re-Certification Course, September 18, 2020
  • CSEIP Re-Certification Course, November 24, 2020
  • CSEIP Re-Certification Course, December 18, 2020
  • CSCIP/G Training and Exam Prep Course, October 15-16, 2020

Follow the Alliance on Social Media

The Secure Technology Alliance has enhanced its presence on social media with robust platforms on Twitter and LinkedIn.  Here are some ways you can interact with the organization: