News

Problems of smart card application development

Problems of smart card application development The development of smart card applications has always been a long and time-consuming process. The cards have the same size and appearance, they use a standardized communication protocol. Despite this, smart cards of different manufacturers have different internal “stuffing”. Most of the development tools are issued by smart card manufacturers. They usually include general assembly language programming tools and specialized hardware emulators that can be purchased from chip vendors....

read more

A brief history of smart cards

A brief history of smart cards The rapid growth of the Internet and the development of wireless digital communications would cause a significant change in the way people communicate. With the progress of the means of communication in the world, business models have also evolved. If earlier it was necessary to go to the store and personally meet with the seller, now it is enough to have an Internet connection. No need to leave your home or office. A few mouse clicks are enough to purchase goods or services. The rapid growth in the popularity...

read more

EMV in e-commerce systems

At the moment, it makes no sense to define the term “e-commerce” itself, since over the past 5-7 years there has been a qualitative leap in the development of systems through which customer service is provided through open communication channels. First of all, it should be noted that two large classes of e-commerce systems have appeared: commerce on the Internet (e-commerce) and commerce using mobile phones (m-commerce). The fact is that historically, the development of the Internet and mobile operator services has occurred in...

read more

Rules for using EMV cards at an ATM

As you know, despite the constant increase in the number of bank cards in circulation, most of the operations performed on bank cards are still cash withdrawal operations. The growth of the number of payment card users is not possible without the development of their service infrastructure, and such a large volume of cash withdrawal operations cannot but push banks to expand their ATM networks. Currently, in addition to issuing cash, ATMs allow you to pay utility bills, services of mobile operators and television, transfer funds between bank...

read more

EMV Card Information Protection Standard

Organization of technological interaction between the processor and the bank’s services The daily activities of the processing center units and their interaction with financial institutions and payment systems are regulated by procedures. The procedures of the processing center should be formalized, approved by the heads of the involved departments, as well as regularly reviewed with a certain periodicity. Security of processing centers One of the most important practical aspects of the functioning of the bank’s processing center...

read more

Transaction processing of EMV cards

Processing – own or third-party: pros and cons A processing center (PC) is an organizational and technological division of a financial institution or a specialized company that maintains the life cycle of banking products based on plastic cards. The list of functions performed by the PC includes card lifecycle maintenance, connection and monitoring of a network of terminal devices, capture and technical processing (processing) of transactions, preparation of data for mutual settlements (clearing) with customers and counterparties. A...

read more

Technology of production of EMV cards

Payment card as a technological product Payment cards from the point of view of manufacturing technology and operating principles are divided into magnetic stripe cards, microprocessor cards (other names are “smart cards”, “chip cards”) and optical memory cards (laser). Let’s consider the main points of the technology of manufacturing and functioning of each of the varieties of modern cards, as well as the technology of production of blanks, from which cards are then made. Technology of production of magnetic...

read more

Risk assessment for EMV cards

The requirements of the IPU relate primarily to off-line monitoring, other monitoring options are not mandatory at the moment. In this regard, the bank should develop its own risk management policy in the PS and choose the monitoring system that corresponds to the adopted policy, and not just implement the most functional technical solution at the moment. In addition, it is necessary to achieve an acceptable balance between the following indicators: * making inadequate decisions to restrict transactions for non-fraudulent transactions; *...

read more

The bank’s risks related to fraud of EMV technologies

To determine the impact of fraudulent transactions in the bank’s PS on the bank’s business, it is necessary to assess the following risks: * financial. The result of fraudulent transactions is most often the financial losses of the bank or its customers. In the latter case, it is necessary to take into account the risk of losing the client if he ceases to trust the services provided by the bank; * reputational. The reputation of the bank may be damaged if the services provided by it are (or seem) unsafe, and the protective...

read more

EMV Card Security Policy

A bank card is a type of payment card as a non-cash payment instrument intended for individuals, including authorized legal entities, to perform transactions with funds held by the issuing bank. If an attacker obtains the card itself, its data or details, fakes it, then he has the opportunity to perform fraudulent transactions with a bank account, the means of access to which is this card. Fraudulent transaction (from the point of view of the bank, and not criminal law), we will give the following definition. A fraudulent transaction is an...

read more