News about Standards.
January 18th, 2017
Standards body GlobalPlatform has published a framework detailing how trusted applications hosted on a GlobalPlatform compliant Trusted Execution Environment (TEE) can be remotely and dynamically managed. GlobalPlatform TEE Management Framework “is applicable to any type of device including mobile and IoT devices and will be used by service providers, TEE implementers, device makers, trusted application providers and trusted application managers,” the organisation says.
January 11th, 2017
The PCI Security Standards Council has updated its card production and provisioning standard to expand protections for mobile payments. PCI Card Production and Provisioning Security Requirements Version 2.0 “extends and adds to existing physical and logical security requirements for vendors that perform cloud-based host card emulation or secure element provisioning services; manage over-the-air personalisation, life cycle management and preparation of personalisation data; or manage associated cryptographic keys,” PCI says.
Lessons learned from implementing HCE for cloud-based NFC mobile payments — See the webinar now on NFC World
December 8th, 2016
NFC World’s ‘Case study: Lessons learned from implementing HCE for cloud-based NFC mobile payments’ webinar is now available to view online. 245 people signed up to take part in the live event and participants gave…
December 8th, 2016
Join NFC World, Proxama and South Africa-based payment processor Tutuka at 3pm GMT today to get real-world insight into the practical issues faced and lessons learned when deploying a host card emulation (HCE) based mobile payment service, using Visa and Mastercard’s cloud-based payment standards. You can find out more and sign up to join us here.
December 6th, 2016
Join NFC World, Proxama and South Africa-based payments processor Tutuka at 3pm GMT on Thursday 8 December to discover the real-world issues faced when implementing a host card emulation (HCE) mobile payments service using Visa and Mastercard’s cloud-based payment standards. The webinar will benefit anyone who wants to gain an in-depth understanding of what it takes to launch an HCE payments service. You can find out more and sign up here.
November 22nd, 2016
Visa is warning a proposal from the European Banking Authority (EBA) requiring every online transaction over €10 (US$10.61) to have additional authentication steps at checkout will “seriously disrupt online shopping and cause inconvenience for consumers”….
November 16th, 2016
The NFC Forum is calling on NFC tag manufacturers to join its new Tag Certification Program, which aims to provide global standards of interoperability with NFC-enabled mobile devices, as well as establishing tag compliance with…
November 9th, 2016
The UK government is to invest in Fido authentication as part of its £1.9bn (US$2.3bn), five-year UK National Cyber Security Strategy, aimed at defending its online systems and infrastructure. “We will invest in technologies like Trusted Platform Modules (TPM) and emerging industry standards such as Fast IDentity Online (Fido),” the government says. “The government will test innovative authentication mechanisms to demonstrate what they can offer, both in terms of security and overall user experience.”
November 4th, 2016
Trade association SIMalliance is transferring ownership of its Open Mobile API (OMAPI) specification to standards body GlobalPlatform. “The OMAPI Specification defines how mobile applications may access different secure elements (SEs), including the UICC and embedded secure elements (eSEs) in a mobile device,” SIMalliance says. “This most recent move by SIMalliance will ensure that the technical specification continues to evolve in line with the wider secure chip ecosystem.”
October 26th, 2016
An update to the EMV 3-D Secure specification means both biometrics and one-time passcodes can now be used to add security to card-not-present transactions. “The new specification provides a globally interoperable framework that promotes a consistent consumer experience across all ecommerce channels and connected devices when authenticating a cardholder,” payments standards body EMVCo says. The EMV 3DS 2.0 specification can be downloaded, royalty free, from the EMVCo website.
October 24th, 2016
Fido Alliance is working with EMVCo to provide a new authentication standard for mobile wallet and payments developers, allowing consumers to use certified, on-device biometric verification when making in-store or in-app purchases. The work will…
October 3rd, 2016
NFC World today welcomes global semiconductor company STMicroelectronics as a member of our partner program. ST has one of the broadest portfolios of NFC solutions on the market, with offerings in controllers and secure elements…
August 30th, 2016
Supermarket giant Coles is backing the group of Australian banks seeking power to “collectively negotiate” with third party mobile wallet providers. “We believe the ability to tailor solutions for customers and provide them with greater value should be the driver for customer choice and not a technical lockout,” says the retailer in a submission to the Australian Competition and Consumer Commission (ACCC). Earlier this month the ACCC ruled that it would not grant the banks interim authorization to collectively negotiate.
August 22nd, 2016
The Australian Competition and Consumer Commission (ACCC) has decided not to grant a group of Australian banks interim authorization to “collectively negotiate” with third party mobile wallet providers.
August 18th, 2016
EMVCo has introduced a formal industry testing and certification process for contactless mobile payment devices. The new process “incorporates Level 1 tests traditionally managed by the individual payment systems,” the payments standards body says, “bringing…
July 27th, 2016
A group of Australian banks have submitted an application to the Australian Competition and Consumer Commission (ACCC), urging for the right to ensure they are able to “collectively negotiate” with third party mobile wallet providers.
July 25th, 2016
People’s Bank of China (PBOC) is working to create a system for regulating QR code mobile payments in the country, after it suspended QR code-based services run by third-party payment providers in March 2014. “Payment providers including Alipay and Tenpay, along with a number of commercial banks, have continued marketing their QR code payment services,” Caixin reports. “A source close to the central bank said that the 2014 ban was put in place because there were no rules or standards for third party QR code payment services.” PBOC also moved to open up Chinese mobile payment services in August 2015.
July 21st, 2016
There were 326.8m chip cards in the US as of the end of June 2016, exceeding the number of people who live in the country, Visa has reported. “The US added more than 100,000 chip-enabled merchant locations in June, bringing the total to 1.3m, or about 28% of the total merchant population,” the payment network says. “More than three-quarters of those chip-ready locations are small and medium-sized businesses. In June, one in four dollars spent in-store on a Visa card was spent with a chip card in a chip terminal.” The number of Visa chip payment transactions hit 483m in June.
July 14th, 2016
More than two thirds (68%) of European consumers want to use biometrics as a method of payment authentication, research from Visa reveals, and 73% see two-factor authentication as a secure way to confirm an account holder’s identity.
July 12th, 2016
EMVCo and the Fido Alliance have signed a memorandum of understanding (MoU) to review how Fido authentication standards can support EMV payment use cases. “A key aim of the initiative is to investigate providing simpler and stronger authentication for cardholders making mobile payments using on-device authenticators such as biometrics,” EMVCo says. “Initial activities will explore how Fido’s authentication protocol can be used to support EMVCo’s cardholder verification technology.”