Menu
Posted: Oct 23, 2018
Comments: 0
Author: Lou Grilli

Security For Your PCI Reports

A typical credit union downloads its report bundles daily from its processors. Usually, the only option is to store those highly sensitive Payment Card Industry (PCI) report bundles on a network drive, with some level of appropriate user access controls. The reports contain 16-digit card numbers, transaction-level details, and Personally Identifiable Information (PII) of credit union members. However, the network drive is not in a PCI compliant environment. Does this sound familiar? More importantly, do you know where your processor reports are being stored?

Read more
Posted: Aug 24, 2017
Comments: 0
Author: Lou Grilli

But, that’s all about to change to the delight of smartphone users.

Entering a PIN on a physical pad of numbered buttons has just surpassed being a 50-year old technology, created with the first ATMs. The current security requirements around PIN management and transmission, ISO 9564, dates to 1991.

Today’s smartphone users are accustomed to tapping PINs on their screens, to unlock the phone and access mobile banking. But to make a debit transaction, the consumer still needs to press the buttons on the PIN pad. Security certification of dedicated hardware-based PIN pads assured that the PIN could not be compromised, and could be transmitted securely. “PIN on glass” implies entering PINs on many different phones, tablets, built-in screens on gas pumps, kiosks, etc. This represents a new challenge, because these screens are inherently software devices that potentially can be modified remotely, infiltrated by malware, or hijacked by fraudsters.

Read more
RSS

search

Featured Stories