News about Standards.
March 15th, 2017
The Car Connectivity Consortium (CCC) has outlined how technologies such as NFC and Bluetooth can be used for digital car keys in a white paper discussing its Digital Key project — a standardisation effort for digital key adoption. “The guiding principle for using smart devices as car keys is the convenience and ease of use for the consumer,” says the CCC, whose members include General Motors, Volkswagen, Hyundai, Toyota and Honda.
March 14th, 2017
Industry bodies ETSI, GlobalPlatform and the NFC Forum are working together to standardise the implementation and management of NFC services “across all technologies and platforms”. The aim is for such services to “successfully coexist within a device and operate as intended”, the organisations say. “For consumers, this clarity brings guarantees that services will work as advertised, regardless of the hosting contactless environment.”
February 28th, 2017
Over half a billion mobile money accounts have been registered in 92 countries, with 1.3bn transactions processed in December 2016 alone, research from GSMA reveals. In its sixth ‘State of the Industry Report on Mobile…
February 13th, 2017
The PCI Security Standards Council (PCI) has issued guidance on the “proper use” of multi-factor authentication (MFA) for preventing unauthorised access to computers and systems that process payment transactions. The Multi-Factor Authentication Information Supplement will “help organisations using, evaluating or upgrading an MFA solution understand how to implement it properly and securely,” says PCI’s Troy Leach.
February 1st, 2017
GlobalPlatform has released a new framework that gives consumers control over which secure applications can be used within part of the secure element (SE) of their trusted devices, without compromising security for the SE as a whole.
January 18th, 2017
Standards body GlobalPlatform has published a framework detailing how trusted applications hosted on a GlobalPlatform compliant Trusted Execution Environment (TEE) can be remotely and dynamically managed. GlobalPlatform TEE Management Framework “is applicable to any type of device including mobile and IoT devices and will be used by service providers, TEE implementers, device makers, trusted application providers and trusted application managers,” the organisation says.
January 11th, 2017
The PCI Security Standards Council has updated its card production and provisioning standard to expand protections for mobile payments. PCI Card Production and Provisioning Security Requirements Version 2.0 “extends and adds to existing physical and logical security requirements for vendors that perform cloud-based host card emulation or secure element provisioning services; manage over-the-air personalisation, life cycle management and preparation of personalisation data; or manage associated cryptographic keys,” PCI says.
Lessons learned from implementing HCE for cloud-based NFC mobile payments — See the webinar now on NFC World
December 8th, 2016
NFC World’s ‘Case study: Lessons learned from implementing HCE for cloud-based NFC mobile payments’ webinar is now available to view online. 245 people signed up to take part in the live event and participants gave…
December 8th, 2016
Join NFC World, Proxama and South Africa-based payment processor Tutuka at 3pm GMT today to get real-world insight into the practical issues faced and lessons learned when deploying a host card emulation (HCE) based mobile payment service, using Visa and Mastercard’s cloud-based payment standards. You can find out more and sign up to join us here.
December 6th, 2016
Join NFC World, Proxama and South Africa-based payments processor Tutuka at 3pm GMT on Thursday 8 December to discover the real-world issues faced when implementing a host card emulation (HCE) mobile payments service using Visa and Mastercard’s cloud-based payment standards. The webinar will benefit anyone who wants to gain an in-depth understanding of what it takes to launch an HCE payments service. You can find out more and sign up here.
November 22nd, 2016
Visa is warning a proposal from the European Banking Authority (EBA) requiring every online transaction over €10 (US$10.61) to have additional authentication steps at checkout will “seriously disrupt online shopping and cause inconvenience for consumers”….
November 16th, 2016
The NFC Forum is calling on NFC tag manufacturers to join its new Tag Certification Program, which aims to provide global standards of interoperability with NFC-enabled mobile devices, as well as establishing tag compliance with…
November 9th, 2016
The UK government is to invest in Fido authentication as part of its £1.9bn (US$2.3bn), five-year UK National Cyber Security Strategy, aimed at defending its online systems and infrastructure. “We will invest in technologies like Trusted Platform Modules (TPM) and emerging industry standards such as Fast IDentity Online (Fido),” the government says. “The government will test innovative authentication mechanisms to demonstrate what they can offer, both in terms of security and overall user experience.”
November 4th, 2016
Trade association SIMalliance is transferring ownership of its Open Mobile API (OMAPI) specification to standards body GlobalPlatform. “The OMAPI Specification defines how mobile applications may access different secure elements (SEs), including the UICC and embedded secure elements (eSEs) in a mobile device,” SIMalliance says. “This most recent move by SIMalliance will ensure that the technical specification continues to evolve in line with the wider secure chip ecosystem.”
October 26th, 2016
An update to the EMV 3-D Secure specification means both biometrics and one-time passcodes can now be used to add security to card-not-present transactions. “The new specification provides a globally interoperable framework that promotes a consistent consumer experience across all ecommerce channels and connected devices when authenticating a cardholder,” payments standards body EMVCo says. The EMV 3DS 2.0 specification can be downloaded, royalty free, from the EMVCo website.
October 24th, 2016
Fido Alliance is working with EMVCo to provide a new authentication standard for mobile wallet and payments developers, allowing consumers to use certified, on-device biometric verification when making in-store or in-app purchases. The work will…
October 3rd, 2016
NFC World today welcomes global semiconductor company STMicroelectronics as a member of our partner program. ST has one of the broadest portfolios of NFC solutions on the market, with offerings in controllers and secure elements…
August 30th, 2016
Supermarket giant Coles is backing the group of Australian banks seeking power to “collectively negotiate” with third party mobile wallet providers. “We believe the ability to tailor solutions for customers and provide them with greater value should be the driver for customer choice and not a technical lockout,” says the retailer in a submission to the Australian Competition and Consumer Commission (ACCC). Earlier this month the ACCC ruled that it would not grant the banks interim authorization to collectively negotiate.
August 22nd, 2016
The Australian Competition and Consumer Commission (ACCC) has decided not to grant a group of Australian banks interim authorization to “collectively negotiate” with third party mobile wallet providers.
August 18th, 2016
EMVCo has introduced a formal industry testing and certification process for contactless mobile payment devices. The new process “incorporates Level 1 tests traditionally managed by the individual payment systems,” the payments standards body says, “bringing…