Data breaches are the new normal. IT departments have to tackle constantly evolving security threats and many are struggling to keep up. Users continue to be the biggest threat to enterprise wide security, and in 2016, we’ll see a shift towards smart interoperable security tools which take the decision of what and when to encrypt out of their hands.
Compared to other underground communities in other regions, the cybercriminal underground in North America isn’t as hidden or exclusive.
Cyber security specialist WISeKey has made available its Cryptographic Root of Trust to Japanese IoT manufacturers and Chipmakers allowing them to add digital certificates on their chips at the hardware level to encrypt the communication and authenticate the devices.
MobileCrypt announced the immediate availability of “MobileCrypt for Good,” which brings government certified hardware-level security to the Good Dynamics Secure Mobility Platform.
Jacksonville-based The Transaction Group (TTG) is providing free EMV terminals and PIN pads. TTG intends to provide merchants with a hi-tech EMV terminal to handle chip card transactions, as well as a customer-facing PIN pad with an EMV port so that the customer has possession of their credit card through the transaction process.
The Ingenico Companion Mobile Payment (iCMP) MPOS, a turnkey mobile point-of-sale solution offering full debit and credit EMV and contactless payment acceptance to Canadian merchants is now available via Global Payments.
New research shows 61% of businesses store the unencrypted 16-digit sequence on the front of credit cards, also known as the Primary Account Number (PAN). Also, EMV-enabled payment terminals can still be used to make a payment transaction using an optional mag stripe swipe process, which means there’s still an opportunity for misconfigured software to inadvertently capture and store full track data.
FreedomPay Commerce Platform PCI-Validated P2PE mWallet EMV solution will be implemented is to be implemented with Apple Pay. FreedomPay Commerce Platform is broadly integrated with POS systems and technologies that allow individual merchants and enterprises a single platform to accept all traditional and emerging payment technologies, including via mobile, EMV and card not present.
Moneris Solutions Corporation, releases PAYD PRO™, the first and only smartphone-based mobile point-of-sale (“mPOS”) solution in Canada to accept both Interac Debit and credit card payments. PAYD PRO is also the first mPOS product to include EMV® Chip & PIN and contactless payment technology. This revolutionary solution allows merchants to process payments securely, anywhere they do business.
Wirecard AG has now integrated host card emulation (HCE) into its Mobile Wallet Platform to better allow telecommunications companies, financial service providers, banks and retailers deploy mpayment NFC solutions. HCE makes it possible to carry out secure, NFC-based transactions for payments and services via mobile apps, regardless of whether a physical secure element (SE) is available on the mobile phone. All data generated during a transaction is therefore no longer stored on a hardware component, but instead on a secure centralised server. NFC host card emulation technology is already standard in Android devices starting Version 4.4. Wirecard emulates a one-off token per transaction, which is used in the EMV transaction, replacing the original card data, which is saved in a PCI-compliant database in a secure server environment.
Oberthur Technologies made available its ID-One PIV for eSE solution. The ID-One PIV for eSE solution is designed for government agencies and large companies, offers the same security level currently available with cards on desktops or laptops but in a mobile phone or tablet integrating an embedded Secure Element (eSE). This breakthrough technology makes the citizens’ data more secure and is the core of any corporation or government security policy. It is already well-known by the Department of Defence of the United States and is today recognized by the whole industry as a state-of-the-art security technology that will allow governments and corporations to protect their valuable data. Oberthur Technologies’ ID-One PIV for eSE solution is a software suite combining a JavaCard™ applet loaded into the embedded Secure Element (eSE) and an Android application. It enables end-users’ biometric identification to open doors, sign and encrypt emails or use PIV features for a secure cloud access. This product is an answer to organizations which use PKI2 cards for physical and/or logical access control but which do not know how to properly manage mobility of their employees.
Bluefin Payment Systems is set to introduce a PCI-validated Point-to-Point Encryption (P2PE) solution validated through qualified P2PE assessor, 403 Labs, LLC, in 4Q/13. The PCI P2PE Standard requires a PCI-approved point-of-interaction device (POI) and HSM (hardware security module) key management; software solutions are not currently eligible for P2PE validation. Bluefin’s P2PE technology can be implemented in retail POS systems, in call centers, and in mobile devices and will interface with the company’s PayConex platform. This provides security features such as tokenization, end-to-end encryption (E2EE) and transparent redirection.