Smart Card & Identity News A New Flavour for eCash
Smart Card & Identity News A New Flavour for eCash
Smart Card & Identity News A New Flavour for eCash
You also want an ePaper? Increase the reach of your titles
YUMPU automatically turns print PDFs into web optimized ePapers that Google loves.
dentity <strong><strong>New</strong>s</strong> • <strong>Smart</strong> <strong>Card</strong> & <strong>Identity</strong> <strong><strong>New</strong>s</strong> • <strong>Smart</strong> <strong>Card</strong> & <strong>Identity</strong> <strong><strong>New</strong>s</strong> • <strong>Smart</strong> <strong>Card</strong> & <strong>Identity</strong> <strong><strong>New</strong>s</strong> • <strong>Smart</strong> Ca<br />
ews • <strong>Smart</strong> <strong>Card</strong> & <strong>Identity</strong> <strong><strong>New</strong>s</strong> • <strong>Smart</strong> <strong>Card</strong> & <strong>Identity</strong> <strong><strong>New</strong>s</strong> • <strong>Smart</strong> <strong>Card</strong> & <strong>Identity</strong> <strong><strong>New</strong>s</strong> • <strong>Smart</strong> <strong>Card</strong> & Id<br />
mart <strong>Card</strong> & <strong>Identity</strong> <strong><strong>New</strong>s</strong> • <strong>Smart</strong> <strong>Card</strong> & <strong>Identity</strong> <strong><strong>New</strong>s</strong> • <strong>Smart</strong> <strong>Card</strong> & <strong>Identity</strong> <strong><strong>New</strong>s</strong> • <strong>Smart</strong> <strong>Card</strong> & <strong>Identity</strong> Ne<br />
rd & <strong>Identity</strong> <strong><strong>New</strong>s</strong> • <strong>Smart</strong> <strong>Card</strong> & <strong>Identity</strong> <strong><strong>New</strong>s</strong> • <strong>Smart</strong> <strong>Card</strong> & <strong>Identity</strong> <strong><strong>New</strong>s</strong> • <strong>Smart</strong> <strong>Card</strong> & <strong>Identity</strong> <strong><strong>New</strong>s</strong> • Sm<br />
dentity <strong><strong>New</strong>s</strong> • <strong>Smart</strong> <strong>Card</strong> & <strong>Identity</strong> <strong><strong>New</strong>s</strong> • <strong>Smart</strong> <strong>Card</strong> & <strong>Identity</strong> <strong><strong>New</strong>s</strong> • <strong>Smart</strong> <strong>Card</strong> & <strong>Identity</strong> <strong><strong>New</strong>s</strong> • <strong>Smart</strong> Ca<br />
March 2012 Volume 22 • Number 3<br />
<strong>Smart</strong> <strong>Card</strong> & <strong>Identity</strong> <strong><strong>New</strong>s</strong><br />
<strong>Smart</strong> <strong>Card</strong>s, SIM, Payment, Biometrics, NFC and RFID<br />
www.smartcard.co.uk<br />
A <strong>New</strong> <strong>Flavour</strong> <strong>for</strong> <strong>eCash</strong><br />
1 • A <strong>New</strong> <strong>Flavour</strong> <strong>for</strong> <strong>eCash</strong><br />
7 • Overall Growth in CEE <strong>Card</strong>s<br />
Market Masks Contraction in Several<br />
Countries<br />
10 • Making Money on the Move More<br />
Secure<br />
16 • Indian GSM Phone Networks<br />
Fail to Meet Basic Encryption<br />
Standards<br />
At the Digital Money Forum in London this month Marc Brule the CFO of<br />
the Royal Canadian Mint outlined the research they have been doing on the<br />
evolution of currency. He explained the need to be able to handle cash like<br />
transactions on the internet and how it might be achieved by an asset<br />
transfer model which <strong>for</strong> those who were around in the 90’s might appear to<br />
be reminiscent of Mondex. There are still a lot of people around who think<br />
Mondex got it right but just 20 years too early.<br />
Electronic cash has long been the holy grail of payment systems largely<br />
because it’s the one area into which the current payment system players can<br />
expand. This of course includes PayPal as well as Visa and Master<strong>Card</strong>. The<br />
properties of cash such as anonymity and immediacy without transaction<br />
fees are of course diametrically opposed to the classic credit and debit card<br />
systems <strong>for</strong> which the players have to validate the authenticity of each<br />
transaction and are so involved in the transactions that they also have to<br />
manage disputes and chargebacks. It goes without saying that this will incur<br />
fees.<br />
There are three ways to address a cash like electronic alternative,<br />
1) Minimize the costs associated with the classical 4-Party model<br />
2) Aggregate small value transactions <strong>for</strong> example as per a subscription<br />
model<br />
3) Remove the need <strong>for</strong> intermediaries in the individual transactions<br />
Continued on page 4….<br />
©2011 <strong>Smart</strong> <strong>Card</strong> <strong><strong>New</strong>s</strong> Ltd., Rustington, England. No part of this publication may be reproduced, stored in a retrieval system, or transmitted in<br />
any <strong>for</strong>m or by any means, electronic, mechanical, optical, recording or otherwise, without the prior permission of the publishers.
<strong>Smart</strong> <strong>Card</strong> & <strong>Identity</strong> <strong><strong>New</strong>s</strong><br />
Published monthly by<br />
<strong>Smart</strong> <strong>Card</strong> <strong><strong>New</strong>s</strong> Ltd<br />
Head Office: <strong>Smart</strong> <strong>Card</strong> Group,<br />
12 Meadway, Rustington,<br />
BN16 2DD<br />
Telephone: +44 (0)1903 734677<br />
Website: www.smartcard.co.uk<br />
Email: info@smartcard.co.uk<br />
Researcher– Patsy Editorial Everett<br />
Researcher – Patsy Everett<br />
Technical Researcher –<br />
Dr David Everett<br />
Production Team – John Owen,<br />
Lesley Dann, Adam Noyce<br />
Contributors to this Issue –<br />
Conie Mutters, Ian Hermon,<br />
Eli Hizkiyev, RBR<br />
Photographic Images –<br />
Dreamstime.com<br />
Printers – Hastings Printing Company<br />
Limited, UK<br />
ISSN – 1755-1021<br />
Disclaimer<br />
<strong>Smart</strong> <strong>Card</strong> <strong><strong>New</strong>s</strong> Ltd shall not be liable<br />
<strong>for</strong> inaccuracies in its published text.<br />
We would like to make it clear that<br />
views expressed in the articles are those<br />
of the individual authors and in no way<br />
reflect our views on a particular issue.<br />
All rights reserved. No part of this<br />
publication may be reproduced or<br />
transmitted in any <strong>for</strong>m or by any<br />
means – including photocopying –<br />
without prior written permission from<br />
<strong>Smart</strong> <strong>Card</strong> <strong><strong>New</strong>s</strong> Ltd.<br />
© <strong>Smart</strong> <strong>Card</strong> <strong><strong>New</strong>s</strong> Ltd<br />
<strong>Smart</strong> <strong>Card</strong> & <strong>Identity</strong> <strong><strong>New</strong>s</strong> • March 2012<br />
Patsy Everett<br />
Our Comments<br />
Dear Subscribers,<br />
Once more the annual Digital Money Forum<br />
clicked into life in London’s east end on the<br />
28/29th March. Mine host David Birch was his<br />
normal self, shaking the tree of established<br />
thinking to see if any interesting apples fall out.<br />
Of course they always do, it’s whether you<br />
notice it at the time!<br />
Anette Brolos from the Copenhagen Financial IT Region (CFIR) got<br />
the day rolling by discussing their project in Denmark that is looking<br />
at the future of money and their vision of a cashless society.<br />
Denmark of course was very early into the game with the Dankort<br />
(debit card) and Dancoin. Anette reminded us that cash costs about<br />
€26 Bn to manage in Europe and the impact that this has on<br />
business. As has been pointed out in our lead article this month the<br />
cost of cash is often hidden away because it’s not obvious who is<br />
paying the bill. But we know this, don’t we? But also there is the<br />
environmental burden, the impact of crime and isn’t money just plain<br />
filthy? We are always hearing about how much cocaine you can find<br />
on a standard used currency bill.<br />
However not to be put off Anette seems clear that one day there will<br />
be a cashless society (more or less) brought about by a number of<br />
scenarios of which social development will be a substantial element<br />
in our future. It goes without saying that technology will also have its<br />
say with mobile wallets, NFC, bar codes and the like. But Anette<br />
ended with a closing thought by telling us that according to a Danish<br />
national bank study, cash is four times more expensive to use than<br />
the Danish debit card (Dankort).<br />
Now here’s the thing, if this is true and we hear similar figures <strong>for</strong> the<br />
UK as well as the rest of Europe, who is promoting the continued<br />
use of cash?<br />
Of course everybody will tell you it is the criminals, organised crime<br />
and the like that need the anonymity and fluidity of cash to harvest<br />
their crimes. We might mention the grey economy (it just sounds<br />
better than black) which everybody seems to do that gets you a lower<br />
bill if you pay in cash or if you really don’t want people to know what<br />
you are doing and you really don’t want to be traced.<br />
I want to suggest that this is actually only a part of the story,<br />
behavioural economics comes into this in a bigger way than you<br />
might imagine. The truth is that people don’t like change. There is an<br />
old tale that tells you that promoting radical new ideas are at best<br />
ignored but in general are heavily criticised and resisted by those with<br />
established positions. Only a small number of people follow a vision<br />
and they are usually the ones closest to the evangelist. Sometimes this<br />
can of course create a church of followers and this was perhaps the<br />
greatest talent of Steve Jobs. If I’m right on this with the un<strong>for</strong>tunate<br />
demise of Steve, then Apple has reached its pinnacle and only has<br />
one way to go. You can do experiments in the laboratory to show<br />
that all of this is normal human behaviour.<br />
2
What I’m hinting at here is that there are a large number of players who are not motivated to a cashless society in<br />
the visionary way and that obstacles are likely to appear that will slow progress in this area. So the challenge here<br />
is to identify the source of the vision, is it the consumer, is it business, is it the government? Who is it that really<br />
wants a cashless society? Answers on the back of a postcard please be<strong>for</strong>e the price of the stamps goes up by<br />
25%.<br />
Gill Ringland from SAMI Consulting brought up my favourite subject of what happens in 2050? Of course we<br />
don’t know and back to behavioural economics we are lousy at predicting what is likely to happen. However<br />
here I have a method, if in doubt you need to study your science fiction books have a look at how they are<br />
paying in the year 2050 – they aren’t, there I’ve given you a clue, in 2050 we don’t need to buy things we just<br />
exist in some environment where what we need is just provided. So wandering around the universe in our space<br />
ship, you name it, we’ve got it.<br />
I’ve got carried away here, this is not what Gill said at all, she was into the Washington Consensus originally<br />
from the economist John Williamson in 1989 which is all about the economic prescription <strong>for</strong> developing<br />
countries or at least that’s what he intended, will that hold in the future or will we be into some new paradigm?<br />
I can’t leave the <strong>for</strong>um without mentioning David Wolman who has written about ‘the end of money’ as we<br />
know it, see his book on Amazon and also Marc Brule from the Royal Canadian Mint on the future of currency.<br />
How’s that <strong>for</strong> two extremes but actually if you read David’s book you’ll realise it’s not and we have talked about<br />
the Royal Canadian Mint in our headline article this month.<br />
Exciting times, it reminds me of the 90’s, lots of things are happening in our space. The smart card chip might<br />
be well established but the applications surrounding mobile phones, NFC, barcodes and tablets well that’s a<br />
whole new universe.<br />
Patsy.<br />
Contents<br />
Regular Features<br />
Lead Story . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1<br />
Events Diary . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .3<br />
World <strong><strong>New</strong>s</strong> In Brief . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .5, 9, 12, 17<br />
Industry Articles<br />
Overall Growth in CEE <strong>Card</strong>s Market Masks Contraction in Several Countries . . 7<br />
Making Money on the Move More Secure . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 10<br />
Indian GSM Phone Networks Fail to Meet Basic Encryption Standards. . . . . . . . 16<br />
Events Diary<br />
April 2012<br />
19 Mobile & Contactless Payments - www.smi-online.co.uk/training<br />
24-26 Infosecurity 2012, Earls Court, London - www.infosec.co.uk<br />
25-27 <strong>Card</strong>s & Payments Asia, Suntec Singapore - www.terrapinn.com/exhibition/cards-asia<br />
25-27 Prepaid <strong>Card</strong>s Asia, Suntec Singapore International Convention and Exhibition<br />
/ /<br />
3<br />
<strong>Smart</strong> <strong>Card</strong> & <strong>Identity</strong> <strong><strong>New</strong>s</strong> • March 2012
Events Diary<br />
May 2012<br />
14-17 Mobile Money 2012 - http://www.mobile-money-gateway.com/event/mobile-moneyafrica-2012v<br />
15-16 <strong>Card</strong>s & Payments Middle East- http://www.terrapinn.com/exhibition/cards-andpayments-middle-east/index.stm<br />
21-23 Security Document World 2012, Queen Elizabeth II Conference Centre, London, -<br />
http://www.sciencemediapartners.com<br />
Source: www.smartcard.co.uk/calendar/<br />
…. Continued from page 1<br />
The Royal Canadian Mint has gone <strong>for</strong> the third approach by adopting a direct asset transfer model. There are<br />
advantages and disadvantages of each approach which we will look at in more detail.<br />
The 4-Party model is that commonly seen today when paying with a credit or debit card. The bank holds the<br />
consumer’s accounts <strong>for</strong> which funds can be either pre-paid or post-paid. The bank that holds the account is<br />
called the Issuer because it traditionally issues a card which allows the consumer to access their account. The<br />
consumer is called the <strong>Card</strong>Holder because they traditionally hold the card that gives access to the account. The<br />
Merchant is the provider of goods or services to the cardholder in exchange <strong>for</strong> payment. The fourth member<br />
of the set is the merchant Acquirer which is the bank or service provider that acquires the transactions <strong>for</strong><br />
clearing and settlement within the networks of the financial institutions. In other words the Acquirer has to get<br />
the funds from the Issuer on behalf of the merchant.<br />
It doesn’t take very long to appreciate that all these various parties have costs and there<strong>for</strong>e want to charge fees<br />
<strong>for</strong> their payment services. The Issuer charges an Interchange fee <strong>for</strong> the costs of managing the cardholder<br />
relationship, the acquirer charges <strong>for</strong> the costs of managing the transaction (which will include an authentication<br />
and authorization process) and the network processing costs applied by the payment operators such as Visa and<br />
Mastercard. All these fees of course are accumulated and get applied to the merchant, sometimes called the<br />
merchant discount fee. These fees are applied per transaction and <strong>for</strong> a small merchant may be 3% or more <strong>for</strong> a<br />
credit card transaction. Debit card transactions are usually a fixed fee per transaction and <strong>for</strong> a small merchant<br />
may be 25 pence or more per transaction.<br />
It is immediately obvious that this 4-P model is unlikely to be economically feasible <strong>for</strong> very low value<br />
transactions of a few pounds or less. In the cash world these small value payments dominate the market.<br />
So the question is how can we reduce the cost of these 4-P model transactions. That’s not easy and the approach<br />
adopted by the payment operators to date has been to remove the on-line authentication/authorization step.<br />
Effectively what the Issuers are doing is taking the risk on an off-line transaction if the value is low enough (e.g<br />
$20 or less). However ignoring the details <strong>for</strong> the moment it is clear that there is an increased risk and only a part<br />
of the costs have been reduced. In addition you would want to minimise the risk of card fraud and at the least<br />
would want the consumer to be using a secure smart card. This is really not a place <strong>for</strong> a magnetic stripe card.<br />
From the consumers point of view there is an advantage because the Issuer often has to bear part of the<br />
transaction risk under the various consumer protection laws and of course if you lose your card you don’t lose<br />
your money (assuming you report it to the bank).<br />
You don’t need a degree in economics to realize that this still isn’t going to work <strong>for</strong> transactions with a value of<br />
say less than say $5 and in the virtual world of the internet there is a need to handle transactions perhaps less<br />
than $1. The ultimate test is whether you can handle a transaction of 1 cent? Not by the 4-P model!<br />
<strong>Smart</strong> <strong>Card</strong> & <strong>Identity</strong> <strong><strong>New</strong>s</strong> • March 2012<br />
4
The second approach to handling low value payments is to have some <strong>for</strong>m of aggregation. What you want to do<br />
is to avoid the 4-P overheads of handing individually small value transactions. <strong>Card</strong>is is a company<br />
http://www.cardis-international.net/ that has been working on this <strong>for</strong> some time with a scheme that does<br />
effectively aggregate small transactions leading to reduced costs. They have recently announced that Austria’s<br />
Raiffeisen Bank International is to use <strong>Card</strong>is software plug-in <strong>for</strong> low value payments in Q2 this year.<br />
The other approach to aggregation is effectively a subscription model where you lodge funds with a service<br />
provider on a pre or post-paid relationship. What is clear is that you are effectively setting up an account with the<br />
service provider and although it is a closed system (only you and the service provider) there are still the<br />
overheads of the service provider having to authenticate the consumer requests. This part of the transaction is<br />
no different to the 4-P model and if the scheme is post-paid then there is also the risk overhead of the service<br />
provider not being paid. Apple’s iTunes is effectively a subscription model. From a consumer’s point of view<br />
this works with any intermediary you regularly use such as Amazon or iTunes, we will however save discussion<br />
on the 30% fee taken from the service providers by Apple <strong>for</strong> another day. Can you do a 1 cent transaction?<br />
Mmmm now that also seems unlikely because you still need to cover the overheads.<br />
And then not last is the third model where the transaction does not require intermediaries. This is the approach<br />
being adopted by the Royal Canadian Mint in their current R&D project. This is of course exactly analogous to<br />
the use of cash. I can make a payment to you (in the physical space) where no third party is involved in the<br />
transaction. In this case the asset is being handed from person to person. What the Mint has been working on is<br />
the ability to do this electronically in the internet world so again you can pass 1 cent from person to person.<br />
Now of course nothing really comes <strong>for</strong> free, in the UK it has been estimated that it costs £4 Bn per year to<br />
manage cash. It is the cost of collecting it all up, counting it and securely distributing it between merchants,<br />
banks and consumers.<br />
Now this is the $64K dollar question (just changing currencies <strong>for</strong> the moment), can you electronically manage<br />
electronic cash without hidden overheads? Mondex actually had a good go at this back in 1990 (can you believe<br />
it’s that old) and suffered with a lack of infrastructure. There were few mobile phones in those days and who do<br />
you know that was using the internet. So let’s see what happens to a 21st century approach to electronic cash.<br />
Conie Mutters (Analyst, Electronic Payment Systems)<br />
Ed: Since this article was written the Royal Canadian Mint has gone public with a developer Challenge to<br />
test and gather industry ideas www.mintchipchallenge.com <strong>for</strong> its MintChip <strong>eCash</strong> system. They have provided a<br />
lot more in<strong>for</strong>mation on their web site which we will review next month.<br />
World <strong><strong>New</strong>s</strong> In Brief<br />
American Express Unveils P2P<br />
Money App <strong>for</strong> Facebook<br />
Serve from American Express has announced an<br />
application that allows friends to send, receive and<br />
request money from directly within Facebook.<br />
The Serve app is currently the only application<br />
available on Facebook that allows friends to send<br />
requests and receive payments in just a few clicks.<br />
"The way people exchange money is evolving, and<br />
so is Serve," said Dan Schulman, group president,<br />
Enterprise Growth, American Express.<br />
"We're constantly working to bring our customers a<br />
seamless and consistent payment experience -- one<br />
that makes sense <strong>for</strong> our increasingly social lives,<br />
<strong>Smart</strong> <strong>Card</strong> & <strong>Identity</strong> <strong><strong>New</strong>s</strong> • March 2012<br />
whether that's paying a friend back <strong>for</strong> movie<br />
tickets or sending someone money <strong>for</strong> your share of<br />
the vacation house -- it can now be sent on<br />
Facebook."<br />
Exchanging money with friends takes three simple<br />
steps:<br />
Choose your friend to send money to, enter the<br />
dollar amount, and click send.<br />
Facebook friends are automatically populated<br />
directly into the app's interface, so there is no need<br />
to worry about finding a friend's email address or<br />
gathering additional in<strong>for</strong>mation. Once completed,<br />
a message is immediately posted to the recipient's<br />
Facebook wall providing directions on where to<br />
collect their money or to sign up <strong>for</strong> Serve.<br />
5
To request money the process is just as easy,<br />
choose a Facebook friend who owes you money,<br />
send a request and get paid back.<br />
HID Global President and CEO<br />
Speaks on CEO Vision Panel at ID<br />
World Abu Dhabi 2012<br />
HID Global has announced that the company's<br />
president and CEO, Denis Hebert, will speak on<br />
auto ID technology developments and the future of<br />
credentials as part of a CEO panel during ID World<br />
Abu Dhabi 2012, March 18-19 at the Emirates<br />
Centre <strong>for</strong> Strategic Studies and Research in Abu<br />
Dhabi, United Arab Emirates (UAE). Hebert will<br />
also provide insights on the role of RFID<br />
technology <strong>for</strong> machine-readable travel documents<br />
and other government-to-citizen ID applications.<br />
Also speaking at the conference will be HID<br />
Global's Thomas Harenberg, vice president of sales,<br />
Middle East and Africa, Government ID Solutions<br />
- who will share his perspective on the future of<br />
government ID programs including critical success<br />
factors and emerging trends.<br />
Harenberg will also explore the most pressing<br />
government concerns, worldwide, including the<br />
requirements to increase in<strong>for</strong>mation system<br />
security and improve electronic administration cost<br />
efficiency, which are both critical factors driving the<br />
evolution of advanced ID credential programs.<br />
Raisonance Partners with Galitt to<br />
Promote <strong>Smart</strong> <strong>Card</strong> Tools in North<br />
America<br />
Raisonance has partnered with Galitt Canada to<br />
rein<strong>for</strong>ce sales and technical support <strong>for</strong> customers<br />
across North America.<br />
Fuelled by booming interest in Near Field<br />
Communications (NFC) <strong>for</strong> mobile phones and<br />
notably in payment applications, Raisonance is<br />
experiencing a corresponding increase in demand<br />
<strong>for</strong> the test and certification tools that ensure the<br />
reliability of this complex technology.<br />
"To meet this increased demand and address the<br />
concerns related to certification of payment<br />
applications, it is essential to have a partner capable<br />
of addressing both concerns. With Galitt's extensive<br />
experience in smart card and EMV testing, we are<br />
confident that they will offer both excellent counsel<br />
and support <strong>for</strong> our North American customers,"<br />
according to Benoit Hedou, Director of the<br />
Raisonance <strong>Smart</strong> <strong>Card</strong> Test activity.<br />
<strong>Smart</strong> <strong>Card</strong> & <strong>Identity</strong> <strong><strong>New</strong>s</strong> • March 2012<br />
Ingenico, Santander & Orange<br />
Develop the 1st Payment System with<br />
Multi-brand NFC Mobile<br />
Ingenico has worked together with Banco<br />
Santander and Orange on the development in Spain<br />
of the first payment system with multi-brand NFC<br />
mobile, which will enable users in the city of Group<br />
Santander, near Madrid, to make purchases of any<br />
amount simply by putting their mobile telephone<br />
close up to the sales point terminal. Ingenico has<br />
been entrusted with providing state-of-the-art<br />
contactless wireless terminals <strong>for</strong> this pioneer<br />
project which will have a test stage in the Group<br />
Santander City, with 40 sales points, and in shops in<br />
Boadilla del Monte, Madrid.<br />
The company has also undertaken the technological<br />
development of these terminals so that they can<br />
accept payment through NFC technology.<br />
The system developed, based on NFC (Near Field<br />
Communications) technology, will also allow its<br />
users to make payments in places like restaurants,<br />
convenience stores and "vending" machines in the<br />
Group Santander City, as well as obtaining<br />
in<strong>for</strong>mation from the services that they can find on<br />
it, through an advanced system of NFC labels.<br />
It is the first time that it has been possible to make<br />
contactless payments of any amount with the main<br />
payment systems providers, Master<strong>Card</strong> and Visa,<br />
at the same time on the same terminal. The project<br />
has been developed in co-operation with Banco<br />
Santander, Orange, Oberthur Technologies, Visa,<br />
Master<strong>Card</strong>, Redsys and RIM.<br />
NantWorks Releases iPhone App<br />
That Helps the Blind to See<br />
NantWorks LLC has released its much anticipated<br />
'LookTel Recognizer' app at Cali<strong>for</strong>nia State<br />
University Northridge Centre on Disabilities' 27th<br />
Annual International Technology and Persons with<br />
Disabilities Conference.<br />
LookTel Recognizer enables blind or visually<br />
impaired users to recognise an object instantly by<br />
simply pointing their iPhone camera at it and<br />
listening to the phone tell them what it is.<br />
Recognition happens in real time, with no need to<br />
hold the Camera still or take a photo.<br />
The app will identify many everyday objects from<br />
packaged goods at the supermarket to identity<br />
cards, as well as premise locations.<br />
6
Overall Growth in CEE <strong>Card</strong>s Market Masks<br />
Contraction in Several Countries<br />
The number of payment cards in central and eastern Europe grew by 10% between<br />
2008 and 2010 – this is one of the main findings in “Payment <strong>Card</strong>s Central and Eastern<br />
Europe 2012”, the latest edition of RBR’s highly respected report on 14 key payment<br />
cards markets in the region. Breaking the region down into countries showed, however,<br />
that in four markets – Bulgaria, Estonia, Poland and Romania – the number of cards<br />
actually fell over the same period.<br />
In most cases this was due to the withdrawal of cards as a result of the global financial crisis, particularly in the<br />
credit card sector.<br />
Russia dominates growth once again<br />
As we have become accustomed to seeing in recent years, Russia accounted <strong>for</strong> the vast majority of the growth<br />
in the number of cards in the region between 2008 and 2010. Out of the 27 million new cards issued over that<br />
period, 25 million were in Russia. Most of these Russian cards were issued in 2010 when domestic banks had<br />
mostly resolved problems with their consumer lending businesses – which had per<strong>for</strong>med poorly in 2008 and<br />
2009.<br />
Russia also accounts <strong>for</strong> nine out of ten prepaid cards issued in the region. One reason why so many prepaid<br />
cards have been issued in Russia is that they are not reloadable – the cardholder must use all funds stored on the<br />
card be<strong>for</strong>e it expires, and then take out a new card. Prepaid cards are mainly used <strong>for</strong> payments over the<br />
internet and mobile phone top-ups. The vast majority of prepaid card products are managed by non-bank<br />
organisations, although these cards are issued under bank sponsorship.<br />
Number of Payment <strong>Card</strong>s in Central and Eastern Europe, 2006-2010 (million)<br />
Source: Payment <strong>Card</strong>s Central and Eastern Europe 2012 (RBR)<br />
Domestic payment cards accounted <strong>for</strong> just 9% of the CEE total at the end of 2010. Visa (including Visa<br />
Electron and V PAY cards) and Master<strong>Card</strong> (including Maestro and Master<strong>Card</strong> Electronic products) accounted<br />
<strong>for</strong> 99% of international cards in the region, with American Express cards accounting <strong>for</strong> most of the remainder.<br />
Visa products are the most numerous in CEE with 52% of the total, followed by Master<strong>Card</strong> with 38%.<br />
<strong>Smart</strong> <strong>Card</strong> & <strong>Identity</strong> <strong><strong>New</strong>s</strong> • March 2012<br />
7
<strong>Card</strong> payment value in CEE surpasses EUR 110 billion<br />
The volume of card payments grew at a much quicker rate than the number of cards between 2008 and 2010 –<br />
49% compared to 10%. Once again, Russia was responsible <strong>for</strong> the largest share of growth in the volume of<br />
payments, but Poland also made a significant contribution. Polish cardholders are becoming increasingly<br />
confident about using cards, while the acceptance network has also been growing.<br />
A total of EUR 111 billion was spent on cards in the CEE region in 2010, up from EUR 90 billion in 2008. For<br />
a number of years, Slovenia has had by far the highest average card spending per adult, followed by Estonia.<br />
Bank account holding is extremely prevalent among Slovenian adults and salaries are rarely paid by any means<br />
other than credit transfer. Furthermore, Slovenia’s infrastructure is advanced, with most outlets accepting cards,<br />
and the pay later sector (specifically charge cards) is better established in Slovenia than in most other countries in<br />
the region.<br />
Over 90% of EFTPOS terminals are EMV-compliant<br />
There has been considerable growth in acceptance networks throughout CEE. Even more developed markets<br />
such as Poland, where certain merchant sectors (e.g. petrol stations and supermarkets) are approaching<br />
saturation, have seen considerable growth. There remain many markets where there is room <strong>for</strong> further<br />
advances, even under existing pricing and acquiring conditions.<br />
The number of EFTPOS terminals grew considerably between 2008 and 2010 – by 20% to 1.3 million. The vast<br />
majority of units are in Russia and Poland. These two countries account <strong>for</strong> 680,000 terminals, while no other<br />
country has more than 100,000. Russia accounted <strong>for</strong> the largest share of new installations, while the Czech<br />
Republic, Hungary and Kazakhstan also witnessed significant growth.<br />
When the number of terminals is compared to the size of the population, Croatia, Estonia and Slovenia are the<br />
largest markets. The first two were also the only markets in the region with less than 100 payment cards per<br />
EFTPOS terminal, compared with the CEE average of 224. Kazakhstan, Russia and the Ukraine hold vast<br />
potential <strong>for</strong> the deployment of new terminals as the ratio is well over 300 in each of these markets.<br />
CEE banks have generally made more progress in upgrading EFTPOS terminals than in reissuing cards. Overall,<br />
the most advanced countries are the Baltic markets (Estonia, Latvia and Lithuania), and the Czech Republic.<br />
Some countries, such as Russia and the Ukraine, continue to lag behind.<br />
8<br />
<strong>Smart</strong> <strong>Card</strong> & <strong>Identity</strong> <strong><strong>New</strong>s</strong> • March 2012
World <strong><strong>New</strong>s</strong> In Brief<br />
Cryptomathic Invents Cloud Wallet<br />
Independent e-security solutions expert<br />
Cryptomathic has invented the market's first 'Cloud<br />
Wallet', a ubiquitous secure mobile wallet.<br />
The Cryptomathic Cloud Wallet enables a secure<br />
payment application to run off a connected, trusted<br />
plat<strong>for</strong>m that is accessible through a network such<br />
as the internet. It securely links the user and all their<br />
devices - such as a smartphone, tablet or personal<br />
computer - to their wallet.<br />
This new method offers an alternative approach to<br />
providing secure payment applications, which today<br />
are generally delivered through either EMV chips<br />
embedded in payment cards or secure elements of<br />
smartphones. The Cryptomathic Cloud Wallet will<br />
be of particular interest to payment schemes and<br />
issuers as it addresses all the users' connected<br />
devices while allowing the overall system to be<br />
driven based on risk parameters; exactly like their<br />
core business today.<br />
Once a cardholder has enrolled their devices with<br />
the Cloud Wallet, they can use their wallet to make<br />
any number of transactions using any of their<br />
enlisted devices. The Cloud Wallet can be used, <strong>for</strong><br />
example, to make near-field-communication (NFC)<br />
payments at point-of-sale, enhance the security and<br />
experience of the 3D Secure <strong>for</strong>m of verification, or<br />
even per<strong>for</strong>m full-scale EMV-type transactions<br />
between the cardholder and merchant.<br />
Matt Landrock, CEO of Cryptomathic USA,<br />
comments: "The Cryptomathic Cloud Wallet offers<br />
a new approach to e-payments, and how this can be<br />
delivered and managed by the payments industry.<br />
This highly secure solution provides payment<br />
schemes and issuers with full control of the<br />
payment applications, without having to negotiate<br />
complicated business relationships with mobile<br />
network operators and without having to modify or<br />
enhance the end-users devices. With over 25 years'<br />
experience providing security to the banking<br />
industry, we are delighted to announce this<br />
groundbreaking invention."<br />
Spire Supplies Mobile <strong>Card</strong> Payment<br />
Terminals to Enterprise<br />
Car (Enterprise) to provide a flexible, secure and<br />
convenient mobile payments system.<br />
Spire Payments has recently deployed its M4230<br />
mobile card payment terminal to 350 Enterprise<br />
office locations across the UK. The M4230 is a fully<br />
accredited, secure chip & PIN device that takes<br />
credit and debit card transactions at mobile<br />
locations using GPRS as its method of<br />
communication.<br />
At the same time, and in conjunction with Spire,<br />
TS3 Services Ltd has developed a solution that<br />
enables Enterprise to easily process refunds and<br />
secondary additional transactions <strong>for</strong> customers<br />
wanting to extend their car rentals using the<br />
payments industry innovation of Tokenisation. As a<br />
result Enterprise can now cross reference any<br />
subsequent transactions with a unique token which<br />
the merchant can use in place of the original card<br />
details.<br />
"Spire's M4230 mobile handheld terminal authorises<br />
the payment instantly and is perfect <strong>for</strong> any<br />
application where payment needs to be taken off<br />
premises, providing a clear customer service<br />
advantage <strong>for</strong> Enterprise over its competitors."<br />
Your Details Sold <strong>for</strong> Just TWO<br />
Pence<br />
Thousands of Britons are having their credit card<br />
in<strong>for</strong>mation, medical and financial records sold by<br />
Indian call centre workers <strong>for</strong> a little as 2 pence<br />
according to a report in The Sunday Times.<br />
Undercover reporters met two men claiming to be<br />
IT workers from several of the call centres. The two<br />
data traders boasted on having 45 different sets of<br />
personal in<strong>for</strong>mation on nearly 500,000 Britons.<br />
Many British companies outsource their services to<br />
India, but due to the outrage over the use of <strong>for</strong>eign<br />
workers some companies have already withdrawn.<br />
Indian authorities are struggling to combat the<br />
corruption, due to the unwillingness of companies<br />
keen to avoid the negative publicity in reporting<br />
data losses.<br />
Spire Payments, the payment terminal provider and<br />
the new name <strong>for</strong> Hypercom in the UK and Spain,<br />
announce it has partnered with Enterprise Rent-A-<br />
<strong>Smart</strong> <strong>Card</strong> & <strong>Identity</strong> <strong><strong>New</strong>s</strong> • March 2012<br />
9
Making Money on the Move More Secure<br />
Ian Hermon<br />
Introduction<br />
While different mobile payment methods jostle <strong>for</strong> top position,<br />
a similar contest is underway concerning the security of these<br />
new cashless services. Ian Hermon, Product Marketing<br />
Manager, Thales e-Security, takes a look at the challenges in<br />
establishing a solid foundation <strong>for</strong> secure payments on the<br />
move.<br />
With mobile phones set to become as indispensable as a wallet <strong>for</strong> buying goods and services, mobile payment<br />
developments are rapidly gathering pace and different service providers are competing <strong>for</strong> their slice of the pie.<br />
Last year, <strong>for</strong> example, saw the arrival of Master<strong>Card</strong>’s PayPass scheme in the US while Google launched its<br />
Android-based eWallet scheme and Starbucks trialled its Quick Tap PayPass service.<br />
A recent study from Juniper Research <strong>for</strong>ecasts that mobile contactless payment transactions are expected to<br />
reach nearly $50 billion worldwide in 2014 and NFC solutions will be launched in 20 countries within the next<br />
18 months.<br />
But be<strong>for</strong>e adoption begins to accelerate towards these levels, not only is there much debate to be had around<br />
which type of scheme works best in practice but also about which mobile payments security method is the most<br />
robust.<br />
Standardisation<br />
As with traditional payments, standardisation is essential to bring about the time and resource benefits to the<br />
industry. Several successful standards are already gathering momentum in providing a secure mobile payments<br />
ecosystem:<br />
• Managing Mobile NFC Services – The Trusted Service Manager (TSM) acts as an intermediary between<br />
Mobile Network Operators (MNOs) and any third party service provider that wishes to add a service to<br />
a mobile phone. GlobalPlat<strong>for</strong>m’s ‘System Messaging Specification <strong>for</strong> Management of Mobile-NFC<br />
Services’, defines the messaging between each of the three parties to ensure secure ‘provisioning’ of<br />
services to the phone.<br />
• The SIM Alliance Open Mobile API – Apps which use the Secure Element (the cryptographically<br />
protected piece of hardware on newer mobile phones) to secure their critical operations such as<br />
banking, payments or transport tickets, can have a component running in the phone’s operating system<br />
so that the user can securely interact with the keyboard/touch screen and enjoy a rich graphical user<br />
experience. The SIM Alliance Open Mobile API enables apps developers to use the additional security<br />
of the Secure Element more easily, be this in a UICC SIM, a dedicated Secure Element built into the<br />
phone, or a secure SD card, by providing a common means of interfacing with it.<br />
• Trusted Execution Environment (TEE) – The Secure Element looks after critical data on the mobile<br />
handset but it cannot easily host apps with a highly developed or cutting edge user interface. Apps that<br />
require complex user interactions must run on the phone’s main processor. The Trusted Execution<br />
Environment is designed to secure these apps and GlobalPlat<strong>for</strong>m is leading the standardisation and<br />
interoperability in this area to ensure that data and apps are adequately protected. For example, payment<br />
apps that run their user interface in TEE and their transaction security in the Secure Element would<br />
have an extremely high level of security.<br />
<strong>Smart</strong> <strong>Card</strong> & <strong>Identity</strong> <strong><strong>New</strong>s</strong> • March 2012<br />
10
Such standards help the industry work together and benchmark best practices but they remain just one<br />
fundamental element of contributing to successful mobile payment security. Technology that makes the security<br />
of provisioning mobile payment applications as secure as issuing cards is also required, to build that much<br />
needed consumer confidence.<br />
Consumer fear around fledgling mobile payments techniques often centre on security issues. Much of this<br />
reticence to adopt mobile payments comes from the perceived risk of data being intercepted during a<br />
transaction. But threats exist at every stage of the mobile payment lifecycle, including how to get a payment app<br />
onto a phone securely and efficiently in the first place. Building the data needed to issue a payment application<br />
and create the secure messages to personalise a handset can be a lengthy and inefficient process, the numerous<br />
cryptographic functions posing a risk of exposing sensitive data.<br />
This initial set-up process or ‘provisioning’ normally happens over-the-air (OTA). It is a process that increases<br />
security risks due to the number of parties involved - typically the payment application provider (usually a bank),<br />
a Trusted Service Manager, the Mobile Network Operator, and the end user. A critical success factor is keeping<br />
this process highly secure to ensure that no data is compromised. Successful provisioning uses unique<br />
personalisation keys, to not only protect the loading of in<strong>for</strong>mation onto a device but also the subsequent<br />
transactions made by the application.<br />
As secure as traditional cards<br />
By applying the latest cryptography methods, users can ensure that ‘provisioning’ happens as securely as possible<br />
and at the same level as issuing traditional payment cards. Providers of physical cards tend to prefer Hardware<br />
Security Modules (HSMs), which generate and protect the encryption keys that are essential to managing<br />
issuance risk. This approach is also relevant <strong>for</strong> provisioning services to a mobile phone and can greatly simplify<br />
the process while simultaneously avoiding the vulnerability of keys stored in software. Overall, the main benefit<br />
of an HSM is to secure encryption keys and sensitive data in a way which ensures that such data is never<br />
exposed. In this way, the risk <strong>for</strong> the service provider is significantly reduced.<br />
However, while encryption is essential to the security of mobile payments, it isn’t the sole answer. For maximum<br />
security in this new payments channel, encryption must be teamed with authentication technologies that provide<br />
protection <strong>for</strong> data exchange and authorisation.<br />
Minimise the risk<br />
As the mobile payment world continues to evolve at lightning speed, industry best practices are far from being<br />
agreed, with operators and related parties still undecided about who should control the mobile wallet. But one<br />
thing that lies firmly beyond discussion is that security remains the primary barrier to adoption <strong>for</strong> most<br />
consumers.<br />
Overcoming this concern is no easy task, requiring a combination of robust standards and best practice, coupled<br />
with the right technical path to guarantee the experience is safe from the second that a user decides to download<br />
a payment app. If any business wants to take advantage of the impending explosion in mobile payments, security<br />
needs to be at the foundation of their approach to minimise risk and encourage widespread consumer adoption.<br />
<strong>Smart</strong> <strong>Card</strong> & <strong>Identity</strong> <strong><strong>New</strong>s</strong> • March 2012<br />
11
World <strong><strong>New</strong>s</strong> In Brief<br />
<strong>Smart</strong> Payment <strong>Card</strong> Shipments Hit<br />
One Billion in 2011<br />
In 2011, <strong>for</strong> the first time in history, the number of<br />
smart payment cards shipped annually to financial<br />
institutions worldwide passed the one billion mark<br />
(1044 million), according to figures released by the<br />
<strong>Smart</strong> Payment Association (SPA)<br />
http://www.smartpaymentassociation.com<br />
The six SPA members, who represent more than<br />
85% of the total available market, shipped 898<br />
million smart payment cards (of which 90% were<br />
EMV cards); a healthy 12% rise in volumes on 2010<br />
figures.<br />
The highest regional climb was recorded in the<br />
Americas. Here, Canada's completion of its EMV<br />
migration, the increasing adoption of chip and PIN<br />
cards across Latin America and the first significant<br />
volumes of EMV cards to be issued in the United<br />
States all contributed to a +29% jump in shipments.<br />
The Asia Pacific market was similarly buoyant in<br />
2011, with the region showing a +26% increase.<br />
The annual review highlights the ever increasing<br />
penetration of contactless payment, with pure<br />
contactless and dual interface payment cards<br />
accounting <strong>for</strong> 15% (130 million) of SPA member<br />
shipments in 2011. By investing in contactless cards<br />
issuers are increasingly able to offer faster, more<br />
convenient and more intuitive payment options to<br />
customers; while investments made on the<br />
acquiring side (terminals and infrastructure) are<br />
paving way <strong>for</strong> the expected growth in mobile NFC<br />
payments.<br />
Veritec Rolls Out Blinx On-Off<br />
<strong>Smart</strong> Toggle Debit <strong>Card</strong><br />
Veritec, Inc. announces the roll out of their Blinx<br />
On-Off <strong>Smart</strong> Toggle Debit <strong>Card</strong>. Veritec's new<br />
<strong>Smart</strong> Toggle <strong>Card</strong> can easily be toggled on and off<br />
by using a mobile phone or the web. <strong>Card</strong> holders<br />
can receive instant notification of card activities and<br />
transfers of funds in real time, within the Veritec<br />
system.<br />
Veritec's technology includes a Proprietary Secure<br />
Financial <strong>Card</strong> Processing Software Plat<strong>for</strong>m and is<br />
the approved Third Party Processor of debit cards<br />
<strong>for</strong> banks and Visa.<br />
Veritec is the patent holder <strong>for</strong> proprietary twodimensional<br />
Matrix Symbology, VeriCode and<br />
VSCode.<br />
<strong>Smart</strong> <strong>Card</strong> & <strong>Identity</strong> <strong><strong>New</strong>s</strong> • March 2012<br />
The Codes assist in the secure identification of<br />
people and products. The combination of a<br />
financial debit card and a secure identification card<br />
make Veritec's Multi-Purpose <strong>Card</strong>s unique in its<br />
field.<br />
2011 Fraud Losses Continue<br />
Downward Trend<br />
The latest payment fraud losses <strong>for</strong> 2011, released<br />
on 7 March 2012, by the banking and card<br />
payments industry show that credit card, debit card<br />
and online banking fraud levels have fallen again.<br />
This continued success is thanks to ef<strong>for</strong>ts by the<br />
industry, partners, and importantly, customers.<br />
Fraudsters' activities in other areas have caused a<br />
minor increase in cheque and telephone banking<br />
losses.<br />
Fraud losses on UK cards fell 7% from £365.4m in<br />
2010 to £341.0m in 2011, resulting in a three-year<br />
reduction of nearly 45%. Losses are at the lowest<br />
levels since 2000. This healthy trend is a result of<br />
the industry's ef<strong>for</strong>ts to deter, detect and prosecute<br />
fraudsters.<br />
Online banking fraud losses fell 24% from £46.6m<br />
in 2010, to £35.4m in 2011. This decrease has<br />
occurred despite a continuing rise in phishing<br />
attacks and attacks involving malware. Phishing<br />
attacks are up 80 % from 2010.<br />
Telephone banking fraud losses rose from £12.7m<br />
in 2010 to £16.7m in 2011 (an increase of 32%).<br />
Most losses involve customers being duped by<br />
criminals, using fake emails or cold calling, into<br />
disclosing their personal security details such as<br />
telephone banking passcodes.<br />
To read the full report visit:<br />
www.theukcardsassociation.org.uk<br />
First Contactless Payment Program<br />
in the Canary Islands with Ingenico<br />
Ingenico announced the deployment of 645 wireless<br />
terminals <strong>for</strong> the first program of payments with<br />
contactless Visa cards in the Canary Islands.<br />
More than 5,000 clients of the financial entity<br />
Cajasiete will be able to benefit from the advantages<br />
of payment with the SINcontacto card in more than<br />
500 stores throughout all the islands, putting the<br />
Canaries at the <strong>for</strong>efront of this technology in<br />
Spain.<br />
12
Cajasiete intends to extend this type of payment<br />
system to other stores and to more clients<br />
throughout the Canary Islands over the next few<br />
months. All the cards and stores which enable the<br />
use of this technology will be identified with the<br />
"Wave" icon to facilitate their recognition.<br />
cheques and PayPal using one simple product. No<br />
matter how consumers choose to pay, PayPal Here<br />
makes it easy, giving small businesses more sales<br />
opportunities. Merchants can accept payments by<br />
swiping cards in the card reader, scanning cards and<br />
cheques using their phone cameras, or manually<br />
entering card in<strong>for</strong>mation into the app. They can<br />
also send an invoice and set payment terms directly<br />
from the app.<br />
NEC Develops Ultra-thin Organic<br />
Radical Battery Compatible with IC<br />
<strong>Card</strong>s<br />
NEC Corporation has announced the development<br />
of an ultra-thin, 0.3mm thick, organic radical battery<br />
(ORB) that is compatible within standard IC cards<br />
of 0.76mm thickness. The adoption of these ultrathin<br />
ORBs featuring greater flexibility, higher power<br />
output and faster recharging speeds than existing<br />
rechargeable batteries, including lithium-ion<br />
batteries, is expected to enable advanced new<br />
functions in IC cards, electronic paper and other<br />
technologies.<br />
Conventional ORBs of 0.7mm thickness are<br />
difficult <strong>for</strong> IC cards of standard 0.76mm thickness<br />
to adopt. These new, 0.3mm ORBs are less than<br />
half the thickness of existing units, a size reduction<br />
that was accomplished by using printing<br />
technologies to integrate circuit boards with<br />
batteries. As a result, IC cards embedded with these<br />
batteries can be used <strong>for</strong> a wide range of functions,<br />
including displays, transmission and advanced<br />
encryption processing.<br />
PayPal Unveils PayPal Here<br />
PayPal announces PayPal Here, the world's first<br />
global mobile payments solution that allows small<br />
businesses to accept almost any <strong>for</strong>m of payment.<br />
The new service includes a free app and fully<br />
encrypted thumb-sized card reader, which turns any<br />
iPhone, and soon Android smartphone, into a<br />
mobile payment solution. With PayPal Here, small<br />
businesses, service providers and casual sellers can<br />
send invoices or accept debit and credit cards,<br />
<strong>Smart</strong> <strong>Card</strong> & <strong>Identity</strong> <strong><strong>New</strong>s</strong> • March 2012<br />
There is no monthly account or set-up fees,<br />
merchants pay a simple flat rate of 2.7 percent <strong>for</strong><br />
card swipes and PayPal payments.<br />
WHSmith Goes Contactless with<br />
Streamline & Visa Europe<br />
WHSmith has become the latest business in the UK<br />
to go contactless in partnership with Streamline &<br />
Visa Europe. The new contactless payment option<br />
will initially be available in 46 major travel locations,<br />
such as London Heathrow, Gatwick, Stansted and<br />
Mainline Railway Stations across the UK. These<br />
stores are expected to go live throughout Spring<br />
2012.<br />
Matt Rowsell, Chief Commercial Officer <strong>for</strong><br />
Streamline, said: "Contactless payments are ideally<br />
suited to time-poor shoppers, such as those<br />
travelling through busy rail and airport locations.<br />
We're confident that contactless will enhance the<br />
customer experience and reduce transaction times<br />
in these very busy stores."<br />
Trans<strong>Card</strong> Announces NFC<br />
Certification to Enable Contactless<br />
Payments<br />
Trans<strong>Card</strong> is pleased to announce the completion<br />
of contactless NFC certification <strong>for</strong> Master<strong>Card</strong><br />
PayPass contactless payment transactions.<br />
Craig Fuller, CEO of Trans<strong>Card</strong>, stated, "We are<br />
tremendously excited about the momentum in the<br />
NFC universe and the growing interest in<br />
contactless and mobile payments. We believe an<br />
entire eco-system is developing around NFC<br />
payments and Trans<strong>Card</strong> is proud to be one of the<br />
select group of prepaid processors that is<br />
contactless certified."<br />
Apple and Nokia Battle over Nano-<br />
SIM Proposal<br />
Apple and Motorola Mobility have locked horns<br />
again, this time over the so called 'Nano-SIM'. The<br />
new Nano-SIM is approximately 60% smaller than<br />
the traditional SIM card.<br />
13
Both have tabled their proposals to the European<br />
Telecommunications Standards Institute (ETSI)<br />
and await the decision on which card future<br />
smartphones and tablets will use.<br />
According to the Financial Times, "Apple has<br />
applied to become the largest voting group in the<br />
ETSI having registered six European subsidiaries to<br />
become full members".<br />
Nokia in turn has questioned "whether it is right<br />
that one group of companies can obtain a high<br />
amount of votes by filing multiple membership<br />
application".<br />
Google Wallet Struggles <strong>for</strong> Market<br />
Place<br />
It is being reported that Google Inc is considering<br />
sharing revenue with carriers to encourage them to<br />
embrace the new technology after a slow take up.<br />
This month Google has seen to Jonathan Wall, one<br />
of the original creators and Marc Freed-Finnegan<br />
lead product manager <strong>for</strong> Google Wallet leave to<br />
start their own mobile shopping business 'Tappmo<br />
Inc'.<br />
The mobile payment market has created scores of<br />
competitors to Google, including ISIS a joint<br />
venture of Verizon, AT&T and T-mobile which we<br />
understand are nearing a launch date.<br />
PayPal Launches the PayPal Access<br />
Prepaid Master<strong>Card</strong><br />
PayPal UK has launched a new payment card that<br />
lets customers spend and withdraw money from<br />
their PayPal account on the high street and<br />
everywhere that Master<strong>Card</strong> is accepted around the<br />
world.<br />
A PayPal Access Prepaid Master<strong>Card</strong> holder who<br />
receives a PayPal payment can spend or withdraw<br />
the money straight away with the card - there's no<br />
need to transfer it to a bank account. The card<br />
holder has direct access to their available balance<br />
and can manage their card online via a simple single<br />
sign-in process.<br />
Gilles Coccoli, Managing Director of PrePay<br />
Solutions, adds: "The new card is a highly integrated<br />
and innovative product that has been carefully<br />
developed to meet the needs of PayPal customers.<br />
The addition of the new Master<strong>Card</strong> PayPass<br />
technology is a first <strong>for</strong> PayPal in the United<br />
Kingdom and gives users even greater<br />
convenience."<br />
<strong>Smart</strong> <strong>Card</strong> & <strong>Identity</strong> <strong><strong>New</strong>s</strong> • March 2012<br />
Microsoft Joins Financial Services<br />
Industry to Disrupt Massive Zeus<br />
Cybercrime Operation<br />
In its most complex ef<strong>for</strong>t to disrupt botnets to<br />
date, Microsoft Corp., in collaboration with the<br />
financial services industry - including the Financial<br />
Services - In<strong>for</strong>mation Sharing and Analysis Centre<br />
(FS-ISAC) and NACHA - The Electronic Payments<br />
Association - as well as Kyrus Tech Inc., announced<br />
it has successfully executed a coordinated global<br />
action against some of the most notorious<br />
cybercrime operations that fuel online fraud and<br />
identity theft.<br />
With this legal and technical action, a number of the<br />
most harmful botnets using the Zeus family of<br />
malware worldwide have been disrupted in an<br />
unprecedented, proactive cross-industry action<br />
against this cybercriminal organisation.<br />
This disruption was made possible through a<br />
successful pleading be<strong>for</strong>e the U.S. District Court<br />
<strong>for</strong> the Eastern District of <strong>New</strong> York, which<br />
allowed Microsoft and its partners to conduct a<br />
coordinated seizure of command and control<br />
servers running some of the worst known Zeus<br />
botnets.<br />
Because the botnet operators used Zeus to steal<br />
victims' online banking credentials and transfer<br />
stolen funds, FS-ISAC and NACHA joined<br />
Microsoft as plaintiffs in the civil suit, and Kyrus<br />
Tech Inc. served as a declarant in the case. Other<br />
organisations, including F-Secure, also provided<br />
supporting in<strong>for</strong>mation <strong>for</strong> the case.<br />
As a part of the operation, on March 23, Microsoft<br />
and its co-plaintiffs, escorted by the U.S. Marshals,<br />
seized command and control servers in two hosting<br />
locations, Scranton, Pa., and Lombard, Ill., to seize<br />
and preserve valuable data and virtual evidence<br />
from the botnets <strong>for</strong> the case. Microsoft and its<br />
partners took down two Internet Protocol<br />
addresses behind the Zeus command and control<br />
structure, and Microsoft is currently monitoring 800<br />
domains secured in the operation, which are helping<br />
identify thousands of computers infected by Zeus.<br />
Nine Finalists Announced in NFC<br />
Forum & WIMA's NFC Global<br />
Competition 2012<br />
The NFC Forum, a non-profit industry association<br />
that advances the use of NFC technology, and<br />
WIMA, a worldwide event dedicated to NFC<br />
technology, announce the nine finalists in their Tap<br />
Into Innovation: NFC Global Competition 2012.<br />
14
Created to recognise the development and<br />
deployment of innovative and exemplary NFC<br />
solutions around the world, this year's competition<br />
attracted three times as many entries as the previous<br />
contest in 2010, showcasing the tremendous growth<br />
and interest in NFC implementations.<br />
A jury composed of senior professionals and<br />
recognised experts from academia and industry<br />
evaluated all entries and selected three finalists in<br />
each of three categories, as follows.<br />
Best Innovative Solution <strong>for</strong> the entry that uses<br />
NFC technology in the most inventive way to<br />
address a market, business, or consumer need:<br />
SAi (Israel): Tag-a-Bag luggage tagging and<br />
identification: TapThat Games LLC (USA):<br />
TapThat game: XIUS (USA): MIT Active Poster<br />
Cafeteria Ordering System<br />
Best Business Viability <strong>for</strong> the entry that offers an<br />
NFC solution with the most commercial potential:<br />
Barclaycard (UK): Quick Tap contactless mobile<br />
payment service: Korea <strong>Smart</strong> <strong>Card</strong> Co., Ltd.<br />
(South Korea): Mobile T-money ticketing solution:<br />
NXP Software (China): MediaTribe media sharing<br />
Best User Experience <strong>for</strong> the solution that best<br />
leverages the power, ease, and convenience of NFC<br />
technology:<br />
good2gether (USA): good2gether and Do Good<br />
Badges <strong>for</strong> non-profit support: Korea <strong>Smart</strong> <strong>Card</strong><br />
Co., Ltd. (South Korea): Mobile T-money ticketing<br />
solution: NXP Software (China): MediaTribe media<br />
sharing.<br />
Finalists are invited to the awards ceremony on<br />
April 12, 2012 at WIMA in Monaco, where the<br />
three first-place winners will be announced.<br />
Digital Money Forum Celebrates 15<br />
year Anniversary<br />
Consult Hyperion has announced its popular<br />
Digital Money Forum is celebrating its 15th year.<br />
This year's annual event is taking place at the<br />
America Square Conference Centre in London.<br />
Guest speakers include representatives from the Bill<br />
& Melinda Gates Foundation, Google, Bitcoin<br />
Consultancy, Telefonica, Royal Canadian Mint,<br />
Gartner, Barclaycard, Sky TV, University of<br />
Cambridge, the Cabinet Office and more. The<br />
Forum will be chaired once again by Dave Birch,<br />
Director of Consult Hyperion.<br />
"We're delighted to be celebrating the 15th<br />
Anniversary of the Digital Money Forum this year,"<br />
said Dave Birch, Chair of Digital Money Forum and<br />
Director at Consult Hyperion. "As we've developed<br />
the Forum over the years it has established a worldwide<br />
reputation. Our fantastic sponsors have<br />
allowed us to put on a great 15th Anniversary<br />
Forum, and we're looking <strong>for</strong>ward to hosting it <strong>for</strong><br />
many more years. I'd particularly like to thank Visa<br />
Europe <strong>for</strong> their <strong>for</strong>ward-looking support <strong>for</strong> the<br />
Forum over many years."<br />
Hirsch Identive Showcases NFC<br />
"Mobile Touch to Open" at ISC<br />
West<br />
Hirsch Identive will demonstrate at ICS West a new<br />
access solution that enables customers to use NFCenabled<br />
mobile phones as secure credentials to<br />
access their facilities.<br />
The "Mobile Touch to Open" demonstration<br />
leverages Hirsch Identive's powerful new<br />
DIGI*Net access control plat<strong>for</strong>m, Velocity 3.5<br />
management software and multiple NFC door<br />
readers to provide an end-to-end NFC physical<br />
access solution.<br />
"Many of our customers have been assessing the<br />
use of mobile phones as an alternative to traditional<br />
access cards as a more convenient ID device," says<br />
Stephen Healy, President and General Manager of<br />
Hirsch Identive. "Our NFC 'Mobile Touch to<br />
Open' solution demonstrates how customers can<br />
augment or over time replace their traditional access<br />
credentials with NFC-enabled smartphones,<br />
lowering the cost of credential issuance and<br />
improving security by reducing <strong>for</strong>gotten access<br />
cards."<br />
This year's Forum, sponsored by Visa Europe,<br />
Monitise and Barclaycard, will cover topics<br />
including identity and privacy in payments, mobile<br />
payments, the future of money around the world,<br />
and the relationship between financial and social<br />
inclusion.<br />
<strong>Smart</strong> <strong>Card</strong> & <strong>Identity</strong> <strong><strong>New</strong>s</strong> • March 2012<br />
15
Indian GSM Phone Networks Fail to Meet<br />
Basic Encryption Standards<br />
Eli Hizkiyev<br />
The recent revelations from an Indian company that it can ‘tumble’ and clone the<br />
credentials of mobile phone SIM cards over the airwaves will make anyone in security<br />
give a sigh. But when they hear that it is apparently because certain Indian GSM<br />
carriers are using the A5/0 minimal encryption system on their cellular networks, then<br />
the only response is frustration. Once again, we have to face the fact that GSM voice<br />
calls can no longer be considered secure.<br />
What adds insult to injury is that it appears that the Indian cellular networks are switching off most of their<br />
encryption to ease the load on their networks.<br />
The problem is that, even if A5/1 encryption is switched on, it can be cracked and facilitate eavesdropping - as<br />
researcher Karsten Nohl and his team started demonstrating some 18 months ago. If the cellular networks only<br />
use the more basic A5/0 encryption, it also becomes possible to clone SIM card identities and make calls<br />
charged to the legitimate user's account.<br />
What makes the Indian network issue relevant and concerning, is that many of the UK GSM carriers are also<br />
hitting digital gridlock on their networks in city areas at peak time, raising the question as to whether they too are<br />
lowering the encryption technology used on their calls to cope with the demand?<br />
It is interesting to note that none of the Indian cellular carriers were prepared to comment on the report, despite<br />
the news appearing in The Hindu newspaper, which has a circulation of 1.5 million amongst the English<br />
language speakers of India, as well as a global audience via its web site of many millions more.<br />
The problem <strong>for</strong> the carriers - as one of the researchers commented on in the report - is that the cracked calls<br />
appear to be coming from the subscriber's number, so it's difficult to see how they can stop these calls, apart<br />
from looking <strong>for</strong> excessive usage and/or calls to international/premium rate destinations that may be flagged as<br />
suspicious or unusual.<br />
The takeout from this story - and from previous reports of the A5/1 encryption system on GSM calls being<br />
cracked - is to switch to using 3G cellular services when making business and/or sensitive calls. However, since<br />
the A5/3 encryption mechanism used on 3G calls is a derivative of the MISTY Feistel crypto methodology - and<br />
some carriers are reportedly lowering the level of encryption - there is a danger that the diluted 3G encryption<br />
system can be cracked in a few hours, as was reported at the start of 2010 (http://bit.ly/xAOpeA).<br />
The real bottom line is that cellular calls - in common with all wireless transmissions - are inherently less secure<br />
than wired telephony, <strong>for</strong> the simple reason that the mobile device can only automatically authenticate itself over<br />
the airwaves.<br />
Put simply, this means that all of the data transmitted can also be eavesdropped by hackers who - if they are able<br />
to crack the underlying encryption system, all variants of which have clearly been found to be wanting - can<br />
monitor the data stream and eavesdrop on the voice plus data transmissions.<br />
This Indian newspaper report raises a number of security questions on several fronts, and this is be<strong>for</strong>e we even<br />
start to discuss the number of people using their smartphone <strong>for</strong> Internet banking...<br />
<strong>Smart</strong> <strong>Card</strong> & <strong>Identity</strong> <strong><strong>New</strong>s</strong> • March 2012<br />
16
World <strong><strong>New</strong>s</strong> In Brief<br />
OTI Files Patent Infringement Suite<br />
against T-Mobile<br />
On Track Innovations Ltd. (OTI) announce the<br />
filing of a patent infringement lawsuit alleging that<br />
T-Mobile USA, Inc. sells NFC enabled phones that<br />
infringe OTI's U.S. Patent No. 6,045,043.<br />
NFC technology enables contactless payments with<br />
mobile phones, loyalty programs, data mining, and<br />
other applications. The lawsuit is pending in the<br />
United States District Court <strong>for</strong> the Southern<br />
District of <strong>New</strong> York, Case No. 12-CV-2224.<br />
"We believe in the strength and value of our<br />
intellectual property and have the resources to<br />
protect it," said Oded Bashan, OTI Chairman and<br />
CEO. "<br />
We are also happy to provide innovative technology<br />
and partner with others in the industry to facilitate<br />
the growing future of contactless payments, data<br />
capture, loyalty programs, and more."<br />
Shipments of NFC-enabled<br />
Handsets Reached 30 Million Units<br />
in 2011<br />
According to a new research report by Berg Insight,<br />
global sales of handsets featuring NFC increased<br />
ten-fold in 2011 to 30 million units. Growing at a<br />
compound annual growth rate (CAGR) of 87.8<br />
percent, shipments are <strong>for</strong>ecasted to reach 700<br />
million units in 2016.<br />
The global rise in smartphone adoption is also<br />
driving higher attach rates <strong>for</strong> other wireless<br />
connectivity technologies in handsets including<br />
GPS, Bluetooth and WLAN. These connectivity<br />
technologies are already a standard feature on highend<br />
smartphones and most medium- and low-end<br />
models. Declining costs will also enable broader<br />
integration in the feature phone segment that is<br />
rapidly gaining smartphone-like functionality.<br />
Watchdata Wins 2012 Asian Sesames<br />
Award with SIMpass-SC<br />
Watchdata Technologies has won the prestigious<br />
Asian Sesames Award <strong>for</strong> the second time in three<br />
years. It won this year with its breakthrough mobile<br />
payment solution, called SIMpass-SC, which<br />
trans<strong>for</strong>ms any existing mobile phone handset into<br />
a full-function NFC device.<br />
<strong>Smart</strong> <strong>Card</strong> & <strong>Identity</strong> <strong><strong>New</strong>s</strong> • March 2012<br />
The SIMpass-SC technology embeds a secure<br />
element, an active front end and an antenna into a<br />
single dual-interface SIM card <strong>for</strong>m factor,<br />
providing one of the most elegant and practical<br />
ways to deploy the widely accepted NFC<br />
technology in mobile phone handsets in any<br />
existing market, from highly developed urban<br />
centres to the remotest locations on the planet,<br />
even in regions with few banks and very poor<br />
financial infrastructure.<br />
"The SIMpass-SC solution is a significant<br />
improvement in mobile payment technology, and<br />
we feel privileged to help advance the frontiers of<br />
knowledge in this market," said Michael Yu,<br />
President of International Business at Watchdata.<br />
NFC Forum and GlobalPlat<strong>for</strong>m<br />
Partner to Accelerate Deployment of<br />
Interoperable NFC Solutions<br />
GlobalPlat<strong>for</strong>m has entered into a Memorandum of<br />
Understanding (MoU) with the NFC Forum. The<br />
partnership aims to harmonize specification activity<br />
to support the development of interoperable, multiapplication<br />
NFC-based mobile solutions in the<br />
wider mobile services ecosystem, and to support<br />
NFC Forum certification activities.<br />
To accelerate the deployment of new mass market<br />
NFC-based use cases, the NFC community and<br />
wider mobile services sector must establish neutral,<br />
sustainable and scalable infrastructures that support<br />
secure communication between all stakeholders and<br />
technology plat<strong>for</strong>ms. This new, <strong>for</strong>mal partnership<br />
will open up opportunities <strong>for</strong> innovative solutions<br />
across multiple industries by leveraging the NFC<br />
Forum's deep technical knowledge and extensive<br />
library of NFC-based standards and GlobalPlat<strong>for</strong>m<br />
Specifications <strong>for</strong> managing contactless services,<br />
which serve multiple actors and support several<br />
business models.<br />
NXP and HID Global Enable Mobile<br />
Access <strong>for</strong> NFC Phones<br />
NXP Semiconductors N.V. and HID Global<br />
announce their collaboration to introduce a global,<br />
generic Mobile Access solution <strong>for</strong> NFC-enabled<br />
mobile phones. NFC enables the secure and<br />
convenient sharing of in<strong>for</strong>mation from one device<br />
to another over short distances based upon existing<br />
contactless standards, making it ideal <strong>for</strong> deploying<br />
easy-to use mobile access control applications.<br />
17
HID Global and NXP helped create the current<br />
market <strong>for</strong> card-based physical access systems and<br />
are now jointly moving these solutions to mobile<br />
phones as NFC becomes a standard feature.<br />
The contactless cards that employees use to enter<br />
corporate buildings and parking garages can now be<br />
transferred to an NFC-enabled phone storing digital<br />
access credentials. The credentials are stored on<br />
NXP's embedded Secure Element within the<br />
handset and are presented by the mobile phone in a<br />
manner that is compatible with access control<br />
readers and systems. As the use of NFC smart<br />
phones <strong>for</strong> access control becomes increasingly<br />
more popular, consumers and enterprises can<br />
expect the same high level of security with<br />
improved convenience on a mobile device.<br />
Master<strong>Card</strong> Introduces <strong>New</strong> Tool<br />
that Predicts the Potential <strong>for</strong><br />
eCommerce Fraud in Real Time<br />
Ecommerce merchants have a new tool at their<br />
disposal to help mitigate the risk of fraud in online<br />
transactions, with Master<strong>Card</strong>'s introduction of<br />
Expert Monitoring Fraud Scoring <strong>for</strong> Merchants.<br />
The new tool enhances merchants' insight into card<br />
behaviour beyond a merchant's website or a<br />
cardholder's shopping cart. The service provides<br />
merchants with a predictive fraud score <strong>for</strong> <strong>Card</strong>-<br />
Not-Present transactions in real time to measure the<br />
likelihood that a transaction is fraudulent. This is<br />
done using fraud detection models designed<br />
specifically <strong>for</strong> eCommerce merchants, which<br />
uniquely enables merchants to evaluate a longer<br />
span of transaction history to deliver a fraud score<br />
that more accurately describes online cardholder<br />
behaviour.<br />
eCommerce merchants continue to face heavy<br />
losses from fraudulent transactions. According to<br />
the Lexis-Nexis 2011 True Cost of Fraud Study,<br />
merchants incurred costs of more than $2.33 <strong>for</strong><br />
every $1 of fraud committed, absorbing more than<br />
$102 billion in total losses in 2011. To lower their<br />
risk in this space, eCommerce merchants utilize an<br />
average of four to seven fraud detection solutions<br />
to validate orders and identify fraudulent<br />
transactions.<br />
Accumulate and Potevio Signs<br />
Agreement <strong>for</strong> Mobile Payment and<br />
NFC Solutions in China<br />
Accumulate and Potevio have signed an agreement<br />
to cooperate, develop and deploy secure, innovative<br />
and easy to use mobile financial and mobile in the<br />
<strong>Smart</strong> <strong>Card</strong> & <strong>Identity</strong> <strong><strong>New</strong>s</strong> • March 2012<br />
authentication services on the Chinese market.<br />
Projects will include a unique NFC solution that<br />
will have its first customer deployment be<strong>for</strong>e<br />
summer this year. Other projects are in mobile<br />
payments and a solution <strong>for</strong> secure payment of<br />
utility bills.<br />
"This agreement is a great milestone <strong>for</strong><br />
Accumulate and Accumulate Asia. We are already in<br />
discussions with large players in the China financial<br />
and telecom industry. So, soon new mobile<br />
payment and mobile authentication services<br />
projects, based on this cooperation, will be started",<br />
says Kelei Wang, Managing Director of Accumulate<br />
Asia Ltd.<br />
Services developed and deployed under this<br />
cooperation will support all major mobile plat<strong>for</strong>ms<br />
including; Android, Blackberry, iPhone, Java and<br />
Windows.<br />
PrePay Solutions awarded European<br />
Best Breakout Company of the Year<br />
The leading prepaid services company in the UK<br />
and Europe has been crowned Best Breakout<br />
Company of the Year at the Paybe<strong>for</strong>e Awards<br />
Europe 2012, a major industry event.<br />
PrePay Solutions is one of just 12 companies<br />
honoured at the awards which took place at the<br />
Gift <strong>Card</strong>, Gift Voucher and Reloadable <strong>Card</strong><br />
Summit.<br />
Gilles Coccoli, Managing Director of PrePay<br />
Solutions, commented: "This award is Europeanwide<br />
recognition of our success in the industry, and<br />
we are committed to remaining a leader in our field<br />
with innovations in prepay."<br />
Paybe<strong>for</strong>e CEO Marilyn Bochicchio commented on<br />
the awards: "The introduction of Paybe<strong>for</strong>e Awards<br />
Europe provides the opportunity <strong>for</strong> Paybe<strong>for</strong>e to<br />
specifically highlight businesses offering prepaid<br />
products in Europe and to applaud their success in<br />
addressing local market needs."<br />
Iris ID Systems Announces<br />
Interoperability Between Its'<br />
IrisAccess Plat<strong>for</strong>m and NFC-<br />
Enabled BlackBerry <strong>Smart</strong>phones<br />
Iris ID Systems Inc. and HID Global announce<br />
that the IrisAccess plat<strong>for</strong>m iCAM7000 can be used<br />
with select NFC enabled BlackBerry 7 smartphones.<br />
The BlackBerry Bold 9900/9930 smartphones<br />
activated with HID Global's iCLASS digital<br />
credentials will be compatible with the installed<br />
base of iCLASS readers that are embedded<br />
18
iCAM7000 series <strong>for</strong> applications ranging from<br />
physical access systems in buildings to applications<br />
that track time and attendance, and other identity<br />
dependent applications.<br />
Using a NFC-enabled BlackBerry smartphone, the<br />
iris templates of a user are securely stored to an<br />
iCLASS digital credential on the phone. That<br />
credential can then be presented <strong>for</strong> authentication<br />
by simply holding the NFC-enabled BlackBerry<br />
smartphone in front of an iCAM7000 series iris<br />
camera.<br />
Andrew Bocking, VP Handheld Software Product<br />
Management, at RIM, said, "Having added NFC<br />
capabilities to a range of our BlackBerry 7<br />
smartphones, we're excited to be able to support<br />
the secure storage of an Iris ID biometric template<br />
to an iCLASS credential. NFC enables smartphones<br />
to become even smarter mobile computing<br />
plat<strong>for</strong>ms, and this is another great example that<br />
demonstrates the potential that NFC on mobile<br />
devices brings to the physical access control space."<br />
Pilot programs using BlackBerry smartphones<br />
activated with iCLASS digital credentials and iris<br />
identification are planned <strong>for</strong> later this year.<br />
More than 100 million MULTOS<br />
Chips Shipped in 2011<br />
MULTOS technology providers saw a record<br />
breaking 2011 with over 100 million chips being<br />
delivered to customers in just one year, bringing the<br />
current MULTOS issuance total to well in excess of<br />
300 million cards, reports MAOSCO Ltd., the<br />
Secretariat of The MULTOS Consortium.<br />
MULTOS products are deployed in markets that<br />
require the security, flexibility, ease of issuance and<br />
open supply chain that are the hallmarks of the<br />
MULTOS plat<strong>for</strong>m; especially suited to EMV<br />
migration, government ID and embedded security<br />
markets.<br />
The 2011 results were predominantly related to the<br />
significant uptake of MULTOS cards within the<br />
banking industry <strong>for</strong> EMV migration, covering all<br />
the global payment brands and now including<br />
numerous local and regional ATM/debit card<br />
schemes.<br />
Dave Meadon, Chairman of The MULTOS<br />
Consortium Council, comments "It has been a<br />
phenomenal year <strong>for</strong> MULTOS. These 2011 results<br />
show that MULTOS is recognised as a trusted<br />
plat<strong>for</strong>m <strong>for</strong> the payments business around the<br />
world. MULTOS' presence within the ID market<br />
also remains strong with a number of fully<br />
<strong>Smart</strong> <strong>Card</strong> & <strong>Identity</strong> <strong><strong>New</strong>s</strong> • March 2012<br />
established National <strong>Identity</strong> implementations in<br />
place.<br />
As a growing group of organisations dedicated to<br />
maintaining, developing and promoting MULTOS,<br />
the MULTOS Consortium is committed to<br />
ensuring that this plat<strong>for</strong>m continues to meet the<br />
ever evolving needs of the payments, identity, and<br />
other markets."<br />
Western Union Advances with Cross-<br />
Border Mobile Services<br />
Western Union announced that the company now<br />
has mobile money transfer agreements with a total<br />
of 26 mobile wallet providers in 22 countries.<br />
Twenty of these agreements are with mobile<br />
network operators, collectively representing over<br />
285 million subscribers, while the remaining six are<br />
with banks and independents.<br />
The company has already launched mobile money<br />
transfer services in nine countries: Bangladesh,<br />
Burkina Faso, Canada, Kenya, Madagascar,<br />
Malaysia, the Philippines, Tanzania and the U.S.<br />
"According to Gartner, mobile payment services are<br />
expected to reach US$245 billion in value<br />
worldwide by 2014," said Diane Scott, Chief<br />
Marketing Officer and President, Western Union<br />
Ventures.<br />
Western Union also recently announced new<br />
mobile service launches in Bangladesh with<br />
Banglalink, Burkina Faso with Inova, and<br />
Madagascar with Telma.<br />
These three launches follow four new strategic<br />
alliances announced this week at the Mobile World<br />
Congress in Barcelona.<br />
<strong>Smart</strong>card <strong><strong>New</strong>s</strong> Subscription<br />
<strong>Smart</strong> <strong>Card</strong> & <strong>Identity</strong> <strong><strong>New</strong>s</strong> is an independent<br />
international newsletter. Our Key industry topics<br />
are smartcards, biometrics, cryptography, identity<br />
management, RFID, Mobile and payments.<br />
Within these industries we cover technological<br />
advances, security breaches, new products,<br />
personnel changes, contracts and company takeovers.<br />
We also include opinion pieces and technical<br />
tutorials from the industry’s leading experts.<br />
To subscribe please contact us on +44 (0)1903<br />
734677 or email info@smartcard.co.uk,<br />
subscription can also be purchased on Amazon by<br />
searching <strong>for</strong> “<strong>Smart</strong> <strong>Card</strong> & <strong>Identity</strong> <strong><strong>New</strong>s</strong>”<br />
19
Registration<br />
Now Open<br />
THE GLOBAL HUB FOR NEXT GENERATION<br />
CITIZEN & GOVERNMENT ID SOLUTIONS<br />
QUEEN ELIZABETH II CONFERENCE CENTRE, LONDON<br />
CONFERENCE: 21–23 MAY 2012 | EXHIBITION: 22–23 MAY 2012<br />
<br />
<br />
<br />
<br />
<br />
Security documents, border control, ePassports, eID,<br />
registered traveller programmes, document design,<br />
technology and anti-counterfeiting…<br />
More than 100 companies exhibiting from around the world<br />
Register to attend the exhibition <strong>for</strong> free, or book now <strong>for</strong><br />
preferential rates to attend the conference – The earlier you<br />
book – the lower the rate!<br />
Discounted rates <strong>for</strong> Government delegates – plus buy one<br />
place and get the second half price<br />
Lowest rate conference places <strong>for</strong> delegates from African,<br />
Asian and South American nations<br />
<strong>New</strong> <strong>for</strong> 2012: Document Examiners’ Forum – DocEx 2012<br />
If Government and Citizen ID markets are your<br />
business, SDW2012 has the answers…<br />
www.sdw2012.com<br />
Organised by: