SlideShare una empresa de Scribd logo

Iiw13 identifying with_your_bank

Steve Sidner
Steve Sidner

With the adoption of EMV bank cards by the US, a strong authN, global identity system is possible, using the payment card network to handle the identity transactions

Economía y finanzasEmpresariales
1 de 16
Descargar para leer sin conexión
Identifying with your Bank Sid Sidner, Ping Identity IIW 13 - October, 2011
EMV Smart Chip Banking Cards Are Coming to the U.S. ● Visa has created financial incentives that should drive issuers to issue EMV bank cards and merchants to accept them, by 2015 ● The U.S. has been the last holdout in worldwide EMV bank card deployment ● These cards will support NFC ● This event offers new possibilities in identity ● The banks could offer a global, strong identity system, with fees proportionate to the risk ● I want to know what you think! ○ Feasibility? ○ Risks? ○ Desirability?
Why are chips so important? ● S/w is only good for low value transactions due to malware ● You need hardware crypto w/ dedicated display and user input that can't be corrupted by software
Tamper Resistant Security Module Architecture
IBM ZTIC
VASCO 865 Commercial ZTIC implementation
Why do EMV bank cards change the world of identity? Several factors make EMV bank cards so important: ● Eventually every Internet user in the world will have one or more. ● They are very secure. ● They work well with personal computers, mobile devices, and even physical lock systems. ● The global banking payment network can easily authenticate them and collect fees based on the value of the authentication.
Bank Card Network Links
How would EMV bank cards work for identity? ● The global bank card network adds a new identity transaction to the payment network (ISO 8583, ISO 20022) ● The fee for the transaction is scaled, based on the risk associated with using the authentication (E.g. ordinary login, $0.001; $50,000 purchase, $5.00) ● Relying parties use their existing interface to the payment network ● Readers added to PCs and mobile devices (and door locks)
What’s so special about EMV? Ubiquity! ● 20 years: security & deployment ● Hundreds of millions EMV bank cards have been issued. ● Largest public key infrastructure that has ever been deployed ● EMV transactions are routed over the standard global payment card network so EMV bank cards can be issued and used anywhere. ● A business model for exchanging cash for value
Alternatives? ● Specialize smart cards: DoD CAC card, Hong Kong national ID card ● SIMs used in GSM mobile phones (AT&T, T-Mobile, European telcos) ● SD cards: memory + crypto ● TPM (Trusted Platform Module): widely deployed in Dells and others None of them have all the key attributes ● Global ● Secure key distribution framework ● Monetization of risk to incent secure behavior among stakeholders
What about fraud? ● There is risk of fraud in any transaction - goal: drive is small enough to include in transaction fees ● EMV has been hacked to bits. See the most recent Cambridge one in the Links page - amazing. But it gets addressed, which is what makes EMV so strong
What needs to happen? 1. The rest of the PCI needs to follow Visa 2. The PCI networks need to add an authentication transaction into the transaction set 3. Standard reader implementation, UX, and protocol need to be defined 4. Issuers need to offer these authN services; relying parties need to use them 5. "EMV in a phone" needs to be defined, to replace bank cards
Links PingTalk blog entries ● https://www.pingidentity.com/blogs/pingtalk/index. cfm/2011/9/27/Identifying-with-your-bank--part-1-of-2 ● https://www.pingidentity.com/blogs/pingtalk/index. cfm/2011/9/28/Identifying-with-your-bank--part-2-of-2 Visa announcement: http://corporate.visa.com/media- center/press-releases/press1142.jsp EMV: http://www.emvco.com/ NFC: http://arstechnica.com/gadgets/guides/2011/02/near-field- communications-a-technology-primer.ars/ Sid's InfoCard/3DSecure idea: http://tootallsid.blogspot. com/2006/12/infocard-and-e-commerce.html
More Links Zeus: http://en.wikipedia.org/wiki/Zeus_(trojan_horse) ZitMo: http://www.hackprotector.com/tag/zitmo-malware/ ZTIC: http://www.zurich.ibm.com/ztic/ VASCO: http://www.vasco. com/products/digipass/digipass_readers/connectable/digipass_ 865.aspx DoD CAC: http://www.cac.mil/ SIM: http://en.wikipedia.org/wiki/Subscriber_Identity_Module TPM: http://en.wikipedia.org/wiki/Trusted_platform_module Cambridge EMV hack: (watch video!) http://www. lightbluetouchpaper.org/2010/02/11/chip-and-pin-is-broken/ ISO 8583: http://en.wikipedia.org/wiki/ISO_8583 ISO 20022: http://www.iso20022.org/

Recomendados

The cointree
The cointreeThe cointree
The cointreeRedChip Companies, Inc.
 
7 Ways to Make EMV Easier / Webinar
7 Ways to Make EMV Easier / Webinar7 Ways to Make EMV Easier / Webinar
7 Ways to Make EMV Easier / WebinarIngenico Group
 
Fin conet report_online_mobile_payments
Fin conet report_online_mobile_paymentsFin conet report_online_mobile_payments
Fin conet report_online_mobile_paymentsDealdaddy.shop
 
SmartTrust WIB 1.3
SmartTrust WIB 1.3SmartTrust WIB 1.3
SmartTrust WIB 1.3Julien SIMON
 
Visa digital currency
Visa digital currencyVisa digital currency
Visa digital currencyAbbas Badran
 
Slide bitdharma eng
Slide bitdharma engSlide bitdharma eng
Slide bitdharma engFritz Martin Wagner García
 
EMV Myths Debunked / Fact vs. Fiction
EMV Myths Debunked / Fact vs. FictionEMV Myths Debunked / Fact vs. Fiction
EMV Myths Debunked / Fact vs. FictionIngenico Group
 
Mobile Practices European Release Final 27 04 11
Mobile Practices European Release Final 27 04 11Mobile Practices European Release Final 27 04 11
Mobile Practices European Release Final 27 04 11Neira Jones
 

Recomendados

The cointree
The cointreeThe cointree
The cointreeRedChip Companies, Inc.
 
7 Ways to Make EMV Easier / Webinar
7 Ways to Make EMV Easier / Webinar7 Ways to Make EMV Easier / Webinar
7 Ways to Make EMV Easier / WebinarIngenico Group
 
Fin conet report_online_mobile_payments
Fin conet report_online_mobile_paymentsFin conet report_online_mobile_payments
Fin conet report_online_mobile_paymentsDealdaddy.shop
 
SmartTrust WIB 1.3
SmartTrust WIB 1.3SmartTrust WIB 1.3
SmartTrust WIB 1.3Julien SIMON
 
Visa digital currency
Visa digital currencyVisa digital currency
Visa digital currencyAbbas Badran
 
Slide bitdharma eng
Slide bitdharma engSlide bitdharma eng
Slide bitdharma engFritz Martin Wagner García
 
EMV Myths Debunked / Fact vs. Fiction
EMV Myths Debunked / Fact vs. FictionEMV Myths Debunked / Fact vs. Fiction
EMV Myths Debunked / Fact vs. FictionIngenico Group
 
Mobile Practices European Release Final 27 04 11
Mobile Practices European Release Final 27 04 11Mobile Practices European Release Final 27 04 11
Mobile Practices European Release Final 27 04 11Neira Jones
 
Crypto Coinference 2019 - Banca Mediolanum a confronto con i nuovi modelli DLT.
Crypto Coinference 2019 - Banca Mediolanum a confronto con i nuovi modelli DLT.Crypto Coinference 2019 - Banca Mediolanum a confronto con i nuovi modelli DLT.
Crypto Coinference 2019 - Banca Mediolanum a confronto con i nuovi modelli DLT.Crypto Coinference
 
Safir International Presentation PDF NEW 2021
Safir International Presentation PDF NEW 2021Safir International Presentation PDF NEW 2021
Safir International Presentation PDF NEW 2021FORTUNE FIVE COMMUNITY
 
Emv chip card buyers guide
Emv chip card buyers guideEmv chip card buyers guide
Emv chip card buyers guide3D Merchant powered by CenPOS
 
The Evolution of E-Money
The Evolution of E-MoneyThe Evolution of E-Money
The Evolution of E-MoneyJon Matonis
 
Digital Currencies- Block chain, Cryptocurrencies and Bitcoin
Digital Currencies- Block chain, Cryptocurrencies and Bitcoin Digital Currencies- Block chain, Cryptocurrencies and Bitcoin
Digital Currencies- Block chain, Cryptocurrencies and Bitcoin Sai P Mishra
 
Blockchain case study powerpoints: Brief intro
Blockchain case study powerpoints: Brief introBlockchain case study powerpoints: Brief intro
Blockchain case study powerpoints: Brief introShane Ninai
 
Nordic eGovernment conference 201 - Peter Lind Damkjær
Nordic eGovernment conference 201 - Peter Lind DamkjærNordic eGovernment conference 201 - Peter Lind Damkjær
Nordic eGovernment conference 201 - Peter Lind DamkjærJulieCarlslund
 
The Future of Digital Currencies
The Future of Digital CurrenciesThe Future of Digital Currencies
The Future of Digital CurrenciesRobin Teigland
 
Plastc
PlastcPlastc
PlastcM Suman Patra
 
Money pad future wallet
Money pad future walletMoney pad future wallet
Money pad future walletAbbas Ambawala
 
Money for Nothing - Carolyn Wilkins, Bank of Canada, on CryptoAssets
Money for Nothing - Carolyn Wilkins, Bank of Canada, on CryptoAssetsMoney for Nothing - Carolyn Wilkins, Bank of Canada, on CryptoAssets
Money for Nothing - Carolyn Wilkins, Bank of Canada, on CryptoAssetsWendell Wood Collins
 
NFTs - Common Use Cases and Legal Considerations (Japan)
NFTs - Common Use Cases and Legal Considerations (Japan)NFTs - Common Use Cases and Legal Considerations (Japan)
NFTs - Common Use Cases and Legal Considerations (Japan)Joerg Schmidt
 
Natwest & Hitachi Collaboration
Natwest & Hitachi CollaborationNatwest & Hitachi Collaboration
Natwest & Hitachi CollaborationLena Aiello
 
Fantom DeFi chain modules 10 November 2019
Fantom DeFi chain modules 10 November 2019Fantom DeFi chain modules 10 November 2019
Fantom DeFi chain modules 10 November 2019Michael Chen
 
Welups -The World First Identity Blockchain Platform
Welups -The World First Identity Blockchain PlatformWelups -The World First Identity Blockchain Platform
Welups -The World First Identity Blockchain PlatformWel Ecosystem
 
Digital currency
Digital currencyDigital currency
Digital currencyMohamedSaberBakr
 
Bitcoin.pg
Bitcoin.pgBitcoin.pg
Bitcoin.pgSiva Sankar P G
 
EMV Vending Secure Card Reader and Payment Solution
EMV Vending Secure Card Reader and Payment SolutionEMV Vending Secure Card Reader and Payment Solution
EMV Vending Secure Card Reader and Payment SolutionStuart McGregor
 
Innovation In Payments, London
Innovation In Payments, LondonInnovation In Payments, London
Innovation In Payments, LondonShantanu Bhagwat
 
Money pad future wallet
Money pad future walletMoney pad future wallet
Money pad future walletrmangal
 
IIW 13 - Scalability Point to Point Federation
IIW 13 - Scalability Point to Point FederationIIW 13 - Scalability Point to Point Federation
IIW 13 - Scalability Point to Point FederationSteve Sidner
 
Pcitf iiw10
Pcitf iiw10Pcitf iiw10
Pcitf iiw10Steve Sidner
 

Más contenido relacionado

La actualidad más candente

Crypto Coinference 2019 - Banca Mediolanum a confronto con i nuovi modelli DLT.
Crypto Coinference 2019 - Banca Mediolanum a confronto con i nuovi modelli DLT.Crypto Coinference 2019 - Banca Mediolanum a confronto con i nuovi modelli DLT.
Crypto Coinference 2019 - Banca Mediolanum a confronto con i nuovi modelli DLT.Crypto Coinference
 
Safir International Presentation PDF NEW 2021
Safir International Presentation PDF NEW 2021Safir International Presentation PDF NEW 2021
Safir International Presentation PDF NEW 2021FORTUNE FIVE COMMUNITY
 
The Evolution of E-Money
The Evolution of E-MoneyThe Evolution of E-Money
The Evolution of E-MoneyJon Matonis
 
Digital Currencies- Block chain, Cryptocurrencies and Bitcoin
Digital Currencies- Block chain, Cryptocurrencies and Bitcoin Digital Currencies- Block chain, Cryptocurrencies and Bitcoin
Digital Currencies- Block chain, Cryptocurrencies and Bitcoin Sai P Mishra
 
Blockchain case study powerpoints: Brief intro
Blockchain case study powerpoints: Brief introBlockchain case study powerpoints: Brief intro
Blockchain case study powerpoints: Brief introShane Ninai
 
Nordic eGovernment conference 201 - Peter Lind Damkjær
Nordic eGovernment conference 201 - Peter Lind DamkjærNordic eGovernment conference 201 - Peter Lind Damkjær
Nordic eGovernment conference 201 - Peter Lind DamkjærJulieCarlslund
 
The Future of Digital Currencies
The Future of Digital CurrenciesThe Future of Digital Currencies
The Future of Digital CurrenciesRobin Teigland
 
Money pad future wallet
Money pad future walletMoney pad future wallet
Money pad future walletAbbas Ambawala
 
Money for Nothing - Carolyn Wilkins, Bank of Canada, on CryptoAssets
Money for Nothing - Carolyn Wilkins, Bank of Canada, on CryptoAssetsMoney for Nothing - Carolyn Wilkins, Bank of Canada, on CryptoAssets
Money for Nothing - Carolyn Wilkins, Bank of Canada, on CryptoAssetsWendell Wood Collins
 
NFTs - Common Use Cases and Legal Considerations (Japan)
NFTs - Common Use Cases and Legal Considerations (Japan)NFTs - Common Use Cases and Legal Considerations (Japan)
NFTs - Common Use Cases and Legal Considerations (Japan)Joerg Schmidt
 
Natwest & Hitachi Collaboration
Natwest & Hitachi CollaborationNatwest & Hitachi Collaboration
Natwest & Hitachi CollaborationLena Aiello
 
Fantom DeFi chain modules 10 November 2019
Fantom DeFi chain modules 10 November 2019Fantom DeFi chain modules 10 November 2019
Fantom DeFi chain modules 10 November 2019Michael Chen
 
Welups -The World First Identity Blockchain Platform
Welups -The World First Identity Blockchain PlatformWelups -The World First Identity Blockchain Platform
Welups -The World First Identity Blockchain PlatformWel Ecosystem
 
EMV Vending Secure Card Reader and Payment Solution
EMV Vending Secure Card Reader and Payment SolutionEMV Vending Secure Card Reader and Payment Solution
EMV Vending Secure Card Reader and Payment SolutionStuart McGregor
 
Innovation In Payments, London
Innovation In Payments, LondonInnovation In Payments, London
Innovation In Payments, LondonShantanu Bhagwat
 
Money pad future wallet
Money pad future walletMoney pad future wallet
Money pad future walletrmangal
 

La actualidad más candente (20)

Crypto Coinference 2019 - Banca Mediolanum a confronto con i nuovi modelli DLT.
Crypto Coinference 2019 - Banca Mediolanum a confronto con i nuovi modelli DLT.Crypto Coinference 2019 - Banca Mediolanum a confronto con i nuovi modelli DLT.
Crypto Coinference 2019 - Banca Mediolanum a confronto con i nuovi modelli DLT.
 
Safir International Presentation PDF NEW 2021
Safir International Presentation PDF NEW 2021Safir International Presentation PDF NEW 2021
Safir International Presentation PDF NEW 2021
 
Emv chip card buyers guide
Emv chip card buyers guideEmv chip card buyers guide
Emv chip card buyers guide
 
The Evolution of E-Money
The Evolution of E-MoneyThe Evolution of E-Money
The Evolution of E-Money
 
Digital Currencies- Block chain, Cryptocurrencies and Bitcoin
Digital Currencies- Block chain, Cryptocurrencies and Bitcoin Digital Currencies- Block chain, Cryptocurrencies and Bitcoin
Digital Currencies- Block chain, Cryptocurrencies and Bitcoin
 
Blockchain case study powerpoints: Brief intro
Blockchain case study powerpoints: Brief introBlockchain case study powerpoints: Brief intro
Blockchain case study powerpoints: Brief intro
 
Nordic eGovernment conference 201 - Peter Lind Damkjær
Nordic eGovernment conference 201 - Peter Lind DamkjærNordic eGovernment conference 201 - Peter Lind Damkjær
Nordic eGovernment conference 201 - Peter Lind Damkjær
 
The Future of Digital Currencies
The Future of Digital CurrenciesThe Future of Digital Currencies
The Future of Digital Currencies
 
Plastc
PlastcPlastc
Plastc
 
Money pad future wallet
Money pad future walletMoney pad future wallet
Money pad future wallet
 
Money for Nothing - Carolyn Wilkins, Bank of Canada, on CryptoAssets
Money for Nothing - Carolyn Wilkins, Bank of Canada, on CryptoAssetsMoney for Nothing - Carolyn Wilkins, Bank of Canada, on CryptoAssets
Money for Nothing - Carolyn Wilkins, Bank of Canada, on CryptoAssets
 
NFTs - Common Use Cases and Legal Considerations (Japan)
NFTs - Common Use Cases and Legal Considerations (Japan)NFTs - Common Use Cases and Legal Considerations (Japan)
NFTs - Common Use Cases and Legal Considerations (Japan)
 
Natwest & Hitachi Collaboration
Natwest & Hitachi CollaborationNatwest & Hitachi Collaboration
Natwest & Hitachi Collaboration
 
Fantom DeFi chain modules 10 November 2019
Fantom DeFi chain modules 10 November 2019Fantom DeFi chain modules 10 November 2019
Fantom DeFi chain modules 10 November 2019
 
Welups -The World First Identity Blockchain Platform
Welups -The World First Identity Blockchain PlatformWelups -The World First Identity Blockchain Platform
Welups -The World First Identity Blockchain Platform
 
Digital currency
Digital currencyDigital currency
Digital currency
 
Bitcoin.pg
Bitcoin.pgBitcoin.pg
Bitcoin.pg
 
EMV Vending Secure Card Reader and Payment Solution
EMV Vending Secure Card Reader and Payment SolutionEMV Vending Secure Card Reader and Payment Solution
EMV Vending Secure Card Reader and Payment Solution
 
Innovation In Payments, London
Innovation In Payments, LondonInnovation In Payments, London
Innovation In Payments, London
 
Money pad future wallet
Money pad future walletMoney pad future wallet
Money pad future wallet
 

Destacado

IIW 13 - Scalability Point to Point Federation
IIW 13 - Scalability Point to Point FederationIIW 13 - Scalability Point to Point Federation
IIW 13 - Scalability Point to Point FederationSteve Sidner
 
תפקידו של האנליסט בחברה עסקית אוּרי עייק
תפקידו של האנליסט בחברה עסקית אוּרי עייקתפקידו של האנליסט בחברה עסקית אוּרי עייק
תפקידו של האנליסט בחברה עסקית אוּרי עייקAnochi.com.
 
היד המלאימה של הכלכלה הישראלית
היד המלאימה של הכלכלה הישראליתהיד המלאימה של הכלכלה הישראלית
היד המלאימה של הכלכלה הישראליתAnochi.com.
 
03528411 idf prog
03528411 idf prog03528411 idf prog
03528411 idf progAnochi.com.
 
החברה להשבת נכסים - דו"ח מבקר המדינה
החברה להשבת נכסים - דו"ח מבקר המדינההחברה להשבת נכסים - דו"ח מבקר המדינה
החברה להשבת נכסים - דו"ח מבקר המדינהAnochi.com.
 
Sma case study - arab media influence report 2011
Sma case study - arab media influence report 2011Sma case study - arab media influence report 2011
Sma case study - arab media influence report 2011Anochi.com.
 
כלכלה מסביב לעולם רוסיה
כלכלה מסביב לעולם רוסיהכלכלה מסביב לעולם רוסיה
כלכלה מסביב לעולם רוסיהAnochi.com.
 
Desalination in Israel
Desalination in IsraelDesalination in Israel
Desalination in IsraelAnochi.com.
 
Desalination in-israel
Desalination in-israelDesalination in-israel
Desalination in-israelAnochi.com.
 
Screen guide for americans
Screen guide for americansScreen guide for americans
Screen guide for americansAnochi.com.
 
צו הפיקוח על מצרכים ושירותים ייצור דבש ומכירתו
צו הפיקוח על מצרכים ושירותים ייצור דבש ומכירתוצו הפיקוח על מצרכים ושירותים ייצור דבש ומכירתו
צו הפיקוח על מצרכים ושירותים ייצור דבש ומכירתוAnochi.com.
 
Position Paper Poverty Report Oct 2010
Position Paper Poverty Report Oct 2010Position Paper Poverty Report Oct 2010
Position Paper Poverty Report Oct 2010Anochi.com.
 
פרוטוקול ישיבה ועדה מחוזית צפון 190614 אפק
פרוטוקול ישיבה ועדה מחוזית צפון 190614 אפק פרוטוקול ישיבה ועדה מחוזית צפון 190614 אפק
פרוטוקול ישיבה ועדה מחוזית צפון 190614 אפק Anochi.com.
 
הצעה להחלטת ממשלה אנרגיה מתחדשת609
הצעה להחלטת ממשלה אנרגיה מתחדשת609הצעה להחלטת ממשלה אנרגיה מתחדשת609
הצעה להחלטת ממשלה אנרגיה מתחדשת609Anochi.com.
 
ההוצאה הלאומית לתרבות, לבידור ולספורט 2015
ההוצאה הלאומית לתרבות, לבידור ולספורט 2015ההוצאה הלאומית לתרבות, לבידור ולספורט 2015
ההוצאה הלאומית לתרבות, לבידור ולספורט 2015Anochi.com.
 
We Write to Work Out What We Think
We Write to Work Out What We ThinkWe Write to Work Out What We Think
We Write to Work Out What We ThinkIlene Dawn Alexander
 
רדו מהגב של הסופרמרקט בעיית הריכוזיות והשקשוקה
רדו מהגב של הסופרמרקט בעיית הריכוזיות והשקשוקהרדו מהגב של הסופרמרקט בעיית הריכוזיות והשקשוקה
רדו מהגב של הסופרמרקט בעיית הריכוזיות והשקשוקהAnochi.com.
 

Destacado (20)

IIW 13 - Scalability Point to Point Federation
IIW 13 - Scalability Point to Point FederationIIW 13 - Scalability Point to Point Federation
IIW 13 - Scalability Point to Point Federation
 
Pcitf iiw10
Pcitf iiw10Pcitf iiw10
Pcitf iiw10
 
Fido and Touch ID
Fido and Touch IDFido and Touch ID
Fido and Touch ID
 
תפקידו של האנליסט בחברה עסקית אוּרי עייק
תפקידו של האנליסט בחברה עסקית אוּרי עייקתפקידו של האנליסט בחברה עסקית אוּרי עייק
תפקידו של האנליסט בחברה עסקית אוּרי עייק
 
היד המלאימה של הכלכלה הישראלית
היד המלאימה של הכלכלה הישראליתהיד המלאימה של הכלכלה הישראלית
היד המלאימה של הכלכלה הישראלית
 
03528411 idf prog
03528411 idf prog03528411 idf prog
03528411 idf prog
 
החברה להשבת נכסים - דו"ח מבקר המדינה
החברה להשבת נכסים - דו"ח מבקר המדינההחברה להשבת נכסים - דו"ח מבקר המדינה
החברה להשבת נכסים - דו"ח מבקר המדינה
 
Sma case study - arab media influence report 2011
Sma case study - arab media influence report 2011Sma case study - arab media influence report 2011
Sma case study - arab media influence report 2011
 
כלכלה מסביב לעולם רוסיה
כלכלה מסביב לעולם רוסיהכלכלה מסביב לעולם רוסיה
כלכלה מסביב לעולם רוסיה
 
Desalination in Israel
Desalination in IsraelDesalination in Israel
Desalination in Israel
 
Desalination in-israel
Desalination in-israelDesalination in-israel
Desalination in-israel
 
Screen guide for americans
Screen guide for americansScreen guide for americans
Screen guide for americans
 
Timothy CV
Timothy CVTimothy CV
Timothy CV
 
צו הפיקוח על מצרכים ושירותים ייצור דבש ומכירתו
צו הפיקוח על מצרכים ושירותים ייצור דבש ומכירתוצו הפיקוח על מצרכים ושירותים ייצור דבש ומכירתו
צו הפיקוח על מצרכים ושירותים ייצור דבש ומכירתו
 
Position Paper Poverty Report Oct 2010
Position Paper Poverty Report Oct 2010Position Paper Poverty Report Oct 2010
Position Paper Poverty Report Oct 2010
 
פרוטוקול ישיבה ועדה מחוזית צפון 190614 אפק
פרוטוקול ישיבה ועדה מחוזית צפון 190614 אפק פרוטוקול ישיבה ועדה מחוזית צפון 190614 אפק
פרוטוקול ישיבה ועדה מחוזית צפון 190614 אפק
 
הצעה להחלטת ממשלה אנרגיה מתחדשת609
הצעה להחלטת ממשלה אנרגיה מתחדשת609הצעה להחלטת ממשלה אנרגיה מתחדשת609
הצעה להחלטת ממשלה אנרגיה מתחדשת609
 
ההוצאה הלאומית לתרבות, לבידור ולספורט 2015
ההוצאה הלאומית לתרבות, לבידור ולספורט 2015ההוצאה הלאומית לתרבות, לבידור ולספורט 2015
ההוצאה הלאומית לתרבות, לבידור ולספורט 2015
 
We Write to Work Out What We Think
We Write to Work Out What We ThinkWe Write to Work Out What We Think
We Write to Work Out What We Think
 
רדו מהגב של הסופרמרקט בעיית הריכוזיות והשקשוקה
רדו מהגב של הסופרמרקט בעיית הריכוזיות והשקשוקהרדו מהגב של הסופרמרקט בעיית הריכוזיות והשקשוקה
רדו מהגב של הסופרמרקט בעיית הריכוזיות והשקשוקה
 

Similar a Iiw13 identifying with_your_bank

Electronic Payment Fundamentals: When Tech Embracing Payment Industry
Electronic Payment Fundamentals: When Tech Embracing Payment IndustryElectronic Payment Fundamentals: When Tech Embracing Payment Industry
Electronic Payment Fundamentals: When Tech Embracing Payment IndustryGoutama Bachtiar
 
Industrial application on online banking
Industrial application on online bankingIndustrial application on online banking
Industrial application on online bankingAbhilash Kallayil
 
Embedded System Security: Learning from Banking and Payment Industry
Embedded System Security: Learning from Banking and Payment IndustryEmbedded System Security: Learning from Banking and Payment Industry
Embedded System Security: Learning from Banking and Payment IndustryNarudom Roongsiriwong, CISSP
 
EMV: Preparing for Changes to the Retail Payment Process
EMV: Preparing for Changes to the Retail Payment ProcessEMV: Preparing for Changes to the Retail Payment Process
EMV: Preparing for Changes to the Retail Payment Process- Mark - Fullbright
 
EMV - Is your business ready?
EMV - Is your business ready?EMV - Is your business ready?
EMV - Is your business ready?Shannon Walcott
 
EMV Payments: Changes at the Point of Sale
EMV Payments: Changes at the Point of SaleEMV Payments: Changes at the Point of Sale
EMV Payments: Changes at the Point of Sale- Mark - Fullbright
 
Improvement of a PIN-Entry Method Resilient to ShoulderSurfing and Recording ...
Improvement of a PIN-Entry Method Resilient to ShoulderSurfing and Recording ...Improvement of a PIN-Entry Method Resilient to ShoulderSurfing and Recording ...
Improvement of a PIN-Entry Method Resilient to ShoulderSurfing and Recording ...IJRTEMJOURNAL
 
Cash Is Still King: ATM market research '2023
Cash Is Still King: ATM market research '2023Cash Is Still King: ATM market research '2023
Cash Is Still King: ATM market research '2023Vladislav Solodkiy
 
EMV Chip Cards
EMV Chip CardsEMV Chip Cards
EMV Chip Cardstxheaven
 
The achilles heel of GPN Card implementation
The achilles heel of GPN Card implementationThe achilles heel of GPN Card implementation
The achilles heel of GPN Card implementationidsecconf
 
Digits ico-whitepaper-1v8c
Digits ico-whitepaper-1v8cDigits ico-whitepaper-1v8c
Digits ico-whitepaper-1v8cEtheralabs
 
Understanding Digital Payments
Understanding Digital PaymentsUnderstanding Digital Payments
Understanding Digital PaymentsSantosh Potadar
 
Digital wallet (e-wallet)
Digital wallet (e-wallet)Digital wallet (e-wallet)
Digital wallet (e-wallet)Krishna Kumar
 

Similar a Iiw13 identifying with_your_bank (20)

Electronic Payment Fundamentals: When Tech Embracing Payment Industry
Electronic Payment Fundamentals: When Tech Embracing Payment IndustryElectronic Payment Fundamentals: When Tech Embracing Payment Industry
Electronic Payment Fundamentals: When Tech Embracing Payment Industry
 
EMV Credit Card Technology in Parking
EMV Credit Card Technology in ParkingEMV Credit Card Technology in Parking
EMV Credit Card Technology in Parking
 
Industrial application on online banking
Industrial application on online bankingIndustrial application on online banking
Industrial application on online banking
 
Embedded System Security: Learning from Banking and Payment Industry
Embedded System Security: Learning from Banking and Payment IndustryEmbedded System Security: Learning from Banking and Payment Industry
Embedded System Security: Learning from Banking and Payment Industry
 
EMV: Preparing for Changes to the Retail Payment Process
EMV: Preparing for Changes to the Retail Payment ProcessEMV: Preparing for Changes to the Retail Payment Process
EMV: Preparing for Changes to the Retail Payment Process
 
EMV - Is your business ready?
EMV - Is your business ready?EMV - Is your business ready?
EMV - Is your business ready?
 
EMV Payments: Changes at the Point of Sale
EMV Payments: Changes at the Point of SaleEMV Payments: Changes at the Point of Sale
EMV Payments: Changes at the Point of Sale
 
E banking
E bankingE banking
E banking
 
EMV and Smartcards
EMV and SmartcardsEMV and Smartcards
EMV and Smartcards
 
Emv and smartcards
Emv and smartcardsEmv and smartcards
Emv and smartcards
 
Proposal
ProposalProposal
Proposal
 
kiosk banking
kiosk bankingkiosk banking
kiosk banking
 
Improvement of a PIN-Entry Method Resilient to ShoulderSurfing and Recording ...
Improvement of a PIN-Entry Method Resilient to ShoulderSurfing and Recording ...Improvement of a PIN-Entry Method Resilient to ShoulderSurfing and Recording ...
Improvement of a PIN-Entry Method Resilient to ShoulderSurfing and Recording ...
 
Cash Is Still King: ATM market research '2023
Cash Is Still King: ATM market research '2023Cash Is Still King: ATM market research '2023
Cash Is Still King: ATM market research '2023
 
EMV Chip Cards
EMV Chip CardsEMV Chip Cards
EMV Chip Cards
 
The achilles heel of GPN Card implementation
The achilles heel of GPN Card implementationThe achilles heel of GPN Card implementation
The achilles heel of GPN Card implementation
 
Digits ico-whitepaper-1v8c
Digits ico-whitepaper-1v8cDigits ico-whitepaper-1v8c
Digits ico-whitepaper-1v8c
 
Understanding Digital Payments
Understanding Digital PaymentsUnderstanding Digital Payments
Understanding Digital Payments
 
Digital wallet (e-wallet)
Digital wallet (e-wallet)Digital wallet (e-wallet)
Digital wallet (e-wallet)
 
Can security and convenience go hand in hand in e-commerce
Can security and convenience go hand in hand in e-commerceCan security and convenience go hand in hand in e-commerce
Can security and convenience go hand in hand in e-commerce
 

Último

The Economic History of the U.S. Lecture 30.pdf
The Economic History of the U.S. Lecture 30.pdfThe Economic History of the U.S. Lecture 30.pdf
The Economic History of the U.S. Lecture 30.pdfGale Pooley
 
Best VIP Call Girls Noida Sector 18 Call Me: 8448380779
Best VIP Call Girls Noida Sector 18 Call Me: 8448380779Best VIP Call Girls Noida Sector 18 Call Me: 8448380779
Best VIP Call Girls Noida Sector 18 Call Me: 8448380779Delhi Call girls
 
Booking open Available Pune Call Girls Shivane 6297143586 Call Hot Indian Gi...
Booking open Available Pune Call Girls Shivane 6297143586 Call Hot Indian Gi...Booking open Available Pune Call Girls Shivane 6297143586 Call Hot Indian Gi...
Booking open Available Pune Call Girls Shivane 6297143586 Call Hot Indian Gi...Call Girls in Nagpur High Profile
 
The Economic History of the U.S. Lecture 25.pdf
The Economic History of the U.S. Lecture 25.pdfThe Economic History of the U.S. Lecture 25.pdf
The Economic History of the U.S. Lecture 25.pdfGale Pooley
 
00_Main ppt_MeetupDORA&CyberSecurity.pptx
00_Main ppt_MeetupDORA&CyberSecurity.pptx00_Main ppt_MeetupDORA&CyberSecurity.pptx
00_Main ppt_MeetupDORA&CyberSecurity.pptxFinTech Belgium
 
The Economic History of the U.S. Lecture 19.pdf
The Economic History of the U.S. Lecture 19.pdfThe Economic History of the U.S. Lecture 19.pdf
The Economic History of the U.S. Lecture 19.pdfGale Pooley
 
02_Fabio Colombo_Accenture_MeetupDora&Cybersecurity.pptx
02_Fabio Colombo_Accenture_MeetupDora&Cybersecurity.pptx02_Fabio Colombo_Accenture_MeetupDora&Cybersecurity.pptx
02_Fabio Colombo_Accenture_MeetupDora&Cybersecurity.pptxFinTech Belgium
 
(ANIKA) Budhwar Peth Call Girls Just Call 7001035870 [ Cash on Delivery ] Pun...
(ANIKA) Budhwar Peth Call Girls Just Call 7001035870 [ Cash on Delivery ] Pun...(ANIKA) Budhwar Peth Call Girls Just Call 7001035870 [ Cash on Delivery ] Pun...
(ANIKA) Budhwar Peth Call Girls Just Call 7001035870 [ Cash on Delivery ] Pun...ranjana rawat
 
05_Annelore Lenoir_Docbyte_MeetupDora&Cybersecurity.pptx
05_Annelore Lenoir_Docbyte_MeetupDora&Cybersecurity.pptx05_Annelore Lenoir_Docbyte_MeetupDora&Cybersecurity.pptx
05_Annelore Lenoir_Docbyte_MeetupDora&Cybersecurity.pptxFinTech Belgium
 
High Class Call Girls Nashik Maya 7001305949 Independent Escort Service Nashik
High Class Call Girls Nashik Maya 7001305949 Independent Escort Service NashikHigh Class Call Girls Nashik Maya 7001305949 Independent Escort Service Nashik
High Class Call Girls Nashik Maya 7001305949 Independent Escort Service NashikCall Girls in Nagpur High Profile
 
The Economic History of the U.S. Lecture 23.pdf
The Economic History of the U.S. Lecture 23.pdfThe Economic History of the U.S. Lecture 23.pdf
The Economic History of the U.S. Lecture 23.pdfGale Pooley
 
The Economic History of the U.S. Lecture 21.pdf
The Economic History of the U.S. Lecture 21.pdfThe Economic History of the U.S. Lecture 21.pdf
The Economic History of the U.S. Lecture 21.pdfGale Pooley
 
VIP Call Girls Service Dilsukhnagar Hyderabad Call +91-8250192130
VIP Call Girls Service Dilsukhnagar Hyderabad Call +91-8250192130VIP Call Girls Service Dilsukhnagar Hyderabad Call +91-8250192130
VIP Call Girls Service Dilsukhnagar Hyderabad Call +91-8250192130Suhani Kapoor
 
Booking open Available Pune Call Girls Talegaon Dabhade 6297143586 Call Hot ...
Booking open Available Pune Call Girls Talegaon Dabhade 6297143586 Call Hot ...Booking open Available Pune Call Girls Talegaon Dabhade 6297143586 Call Hot ...
Booking open Available Pune Call Girls Talegaon Dabhade 6297143586 Call Hot ...Call Girls in Nagpur High Profile
 
Dividend Policy and Dividend Decision Theories.pptx
Dividend Policy and Dividend Decision Theories.pptxDividend Policy and Dividend Decision Theories.pptx
Dividend Policy and Dividend Decision Theories.pptxanshikagoel52
 
06_Joeri Van Speybroek_Dell_MeetupDora&Cybersecurity.pdf
06_Joeri Van Speybroek_Dell_MeetupDora&Cybersecurity.pdf06_Joeri Van Speybroek_Dell_MeetupDora&Cybersecurity.pdf
06_Joeri Van Speybroek_Dell_MeetupDora&Cybersecurity.pdfFinTech Belgium
 
The Economic History of the U.S. Lecture 20.pdf
The Economic History of the U.S. Lecture 20.pdfThe Economic History of the U.S. Lecture 20.pdf
The Economic History of the U.S. Lecture 20.pdfGale Pooley
 
TEST BANK For Corporate Finance, 13th Edition By Stephen Ross, Randolph Weste...
TEST BANK For Corporate Finance, 13th Edition By Stephen Ross, Randolph Weste...TEST BANK For Corporate Finance, 13th Edition By Stephen Ross, Randolph Weste...
TEST BANK For Corporate Finance, 13th Edition By Stephen Ross, Randolph Weste...ssifa0344
 
Log your LOA pain with Pension Lab's brilliant campaign
Log your LOA pain with Pension Lab's brilliant campaignLog your LOA pain with Pension Lab's brilliant campaign
Log your LOA pain with Pension Lab's brilliant campaignHenry Tapper
 

Último (20)

The Economic History of the U.S. Lecture 30.pdf
The Economic History of the U.S. Lecture 30.pdfThe Economic History of the U.S. Lecture 30.pdf
The Economic History of the U.S. Lecture 30.pdf
 
Best VIP Call Girls Noida Sector 18 Call Me: 8448380779
Best VIP Call Girls Noida Sector 18 Call Me: 8448380779Best VIP Call Girls Noida Sector 18 Call Me: 8448380779
Best VIP Call Girls Noida Sector 18 Call Me: 8448380779
 
Booking open Available Pune Call Girls Shivane 6297143586 Call Hot Indian Gi...
Booking open Available Pune Call Girls Shivane 6297143586 Call Hot Indian Gi...Booking open Available Pune Call Girls Shivane 6297143586 Call Hot Indian Gi...
Booking open Available Pune Call Girls Shivane 6297143586 Call Hot Indian Gi...
 
The Economic History of the U.S. Lecture 25.pdf
The Economic History of the U.S. Lecture 25.pdfThe Economic History of the U.S. Lecture 25.pdf
The Economic History of the U.S. Lecture 25.pdf
 
00_Main ppt_MeetupDORA&CyberSecurity.pptx
00_Main ppt_MeetupDORA&CyberSecurity.pptx00_Main ppt_MeetupDORA&CyberSecurity.pptx
00_Main ppt_MeetupDORA&CyberSecurity.pptx
 
The Economic History of the U.S. Lecture 19.pdf
The Economic History of the U.S. Lecture 19.pdfThe Economic History of the U.S. Lecture 19.pdf
The Economic History of the U.S. Lecture 19.pdf
 
02_Fabio Colombo_Accenture_MeetupDora&Cybersecurity.pptx
02_Fabio Colombo_Accenture_MeetupDora&Cybersecurity.pptx02_Fabio Colombo_Accenture_MeetupDora&Cybersecurity.pptx
02_Fabio Colombo_Accenture_MeetupDora&Cybersecurity.pptx
 
(ANIKA) Budhwar Peth Call Girls Just Call 7001035870 [ Cash on Delivery ] Pun...
(ANIKA) Budhwar Peth Call Girls Just Call 7001035870 [ Cash on Delivery ] Pun...(ANIKA) Budhwar Peth Call Girls Just Call 7001035870 [ Cash on Delivery ] Pun...
(ANIKA) Budhwar Peth Call Girls Just Call 7001035870 [ Cash on Delivery ] Pun...
 
05_Annelore Lenoir_Docbyte_MeetupDora&Cybersecurity.pptx
05_Annelore Lenoir_Docbyte_MeetupDora&Cybersecurity.pptx05_Annelore Lenoir_Docbyte_MeetupDora&Cybersecurity.pptx
05_Annelore Lenoir_Docbyte_MeetupDora&Cybersecurity.pptx
 
High Class Call Girls Nashik Maya 7001305949 Independent Escort Service Nashik
High Class Call Girls Nashik Maya 7001305949 Independent Escort Service NashikHigh Class Call Girls Nashik Maya 7001305949 Independent Escort Service Nashik
High Class Call Girls Nashik Maya 7001305949 Independent Escort Service Nashik
 
The Economic History of the U.S. Lecture 23.pdf
The Economic History of the U.S. Lecture 23.pdfThe Economic History of the U.S. Lecture 23.pdf
The Economic History of the U.S. Lecture 23.pdf
 
The Economic History of the U.S. Lecture 21.pdf
The Economic History of the U.S. Lecture 21.pdfThe Economic History of the U.S. Lecture 21.pdf
The Economic History of the U.S. Lecture 21.pdf
 
VIP Call Girls Service Dilsukhnagar Hyderabad Call +91-8250192130
VIP Call Girls Service Dilsukhnagar Hyderabad Call +91-8250192130VIP Call Girls Service Dilsukhnagar Hyderabad Call +91-8250192130
VIP Call Girls Service Dilsukhnagar Hyderabad Call +91-8250192130
 
Commercial Bank Economic Capsule - April 2024
Commercial Bank Economic Capsule - April 2024Commercial Bank Economic Capsule - April 2024
Commercial Bank Economic Capsule - April 2024
 
Booking open Available Pune Call Girls Talegaon Dabhade 6297143586 Call Hot ...
Booking open Available Pune Call Girls Talegaon Dabhade 6297143586 Call Hot ...Booking open Available Pune Call Girls Talegaon Dabhade 6297143586 Call Hot ...
Booking open Available Pune Call Girls Talegaon Dabhade 6297143586 Call Hot ...
 
Dividend Policy and Dividend Decision Theories.pptx
Dividend Policy and Dividend Decision Theories.pptxDividend Policy and Dividend Decision Theories.pptx
Dividend Policy and Dividend Decision Theories.pptx
 
06_Joeri Van Speybroek_Dell_MeetupDora&Cybersecurity.pdf
06_Joeri Van Speybroek_Dell_MeetupDora&Cybersecurity.pdf06_Joeri Van Speybroek_Dell_MeetupDora&Cybersecurity.pdf
06_Joeri Van Speybroek_Dell_MeetupDora&Cybersecurity.pdf
 
The Economic History of the U.S. Lecture 20.pdf
The Economic History of the U.S. Lecture 20.pdfThe Economic History of the U.S. Lecture 20.pdf
The Economic History of the U.S. Lecture 20.pdf
 
TEST BANK For Corporate Finance, 13th Edition By Stephen Ross, Randolph Weste...
TEST BANK For Corporate Finance, 13th Edition By Stephen Ross, Randolph Weste...TEST BANK For Corporate Finance, 13th Edition By Stephen Ross, Randolph Weste...
TEST BANK For Corporate Finance, 13th Edition By Stephen Ross, Randolph Weste...
 
Log your LOA pain with Pension Lab's brilliant campaign
Log your LOA pain with Pension Lab's brilliant campaignLog your LOA pain with Pension Lab's brilliant campaign
Log your LOA pain with Pension Lab's brilliant campaign
 

Iiw13 identifying with_your_bank

  • 1. Identifying with your Bank Sid Sidner, Ping Identity IIW 13 - October, 2011
  • 2. EMV Smart Chip Banking Cards Are Coming to the U.S. ● Visa has created financial incentives that should drive issuers to issue EMV bank cards and merchants to accept them, by 2015 ● The U.S. has been the last holdout in worldwide EMV bank card deployment ● These cards will support NFC ● This event offers new possibilities in identity ● The banks could offer a global, strong identity system, with fees proportionate to the risk ● I want to know what you think! ○ Feasibility? ○ Risks? ○ Desirability?
  • 3. Why are chips so important? ● S/w is only good for low value transactions due to malware ● You need hardware crypto w/ dedicated display and user input that can't be corrupted by software
  • 4.
  • 5. Tamper Resistant Security Module Architecture
  • 7. VASCO 865 Commercial ZTIC implementation
  • 8. Why do EMV bank cards change the world of identity? Several factors make EMV bank cards so important: ● Eventually every Internet user in the world will have one or more. ● They are very secure. ● They work well with personal computers, mobile devices, and even physical lock systems. ● The global banking payment network can easily authenticate them and collect fees based on the value of the authentication.
  • 10. How would EMV bank cards work for identity? ● The global bank card network adds a new identity transaction to the payment network (ISO 8583, ISO 20022) ● The fee for the transaction is scaled, based on the risk associated with using the authentication (E.g. ordinary login, $0.001; $50,000 purchase, $5.00) ● Relying parties use their existing interface to the payment network ● Readers added to PCs and mobile devices (and door locks)
  • 11. What’s so special about EMV? Ubiquity! ● 20 years: security & deployment ● Hundreds of millions EMV bank cards have been issued. ● Largest public key infrastructure that has ever been deployed ● EMV transactions are routed over the standard global payment card network so EMV bank cards can be issued and used anywhere. ● A business model for exchanging cash for value
  • 12. Alternatives? ● Specialize smart cards: DoD CAC card, Hong Kong national ID card ● SIMs used in GSM mobile phones (AT&T, T-Mobile, European telcos) ● SD cards: memory + crypto ● TPM (Trusted Platform Module): widely deployed in Dells and others None of them have all the key attributes ● Global ● Secure key distribution framework ● Monetization of risk to incent secure behavior among stakeholders
  • 13. What about fraud? ● There is risk of fraud in any transaction - goal: drive is small enough to include in transaction fees ● EMV has been hacked to bits. See the most recent Cambridge one in the Links page - amazing. But it gets addressed, which is what makes EMV so strong
  • 14. What needs to happen? 1. The rest of the PCI needs to follow Visa 2. The PCI networks need to add an authentication transaction into the transaction set 3. Standard reader implementation, UX, and protocol need to be defined 4. Issuers need to offer these authN services; relying parties need to use them 5. "EMV in a phone" needs to be defined, to replace bank cards
  • 15. Links PingTalk blog entries ● https://www.pingidentity.com/blogs/pingtalk/index. cfm/2011/9/27/Identifying-with-your-bank--part-1-of-2 ● https://www.pingidentity.com/blogs/pingtalk/index. cfm/2011/9/28/Identifying-with-your-bank--part-2-of-2 Visa announcement: http://corporate.visa.com/media- center/press-releases/press1142.jsp EMV: http://www.emvco.com/ NFC: http://arstechnica.com/gadgets/guides/2011/02/near-field- communications-a-technology-primer.ars/ Sid's InfoCard/3DSecure idea: http://tootallsid.blogspot. com/2006/12/infocard-and-e-commerce.html
  • 16. More Links Zeus: http://en.wikipedia.org/wiki/Zeus_(trojan_horse) ZitMo: http://www.hackprotector.com/tag/zitmo-malware/ ZTIC: http://www.zurich.ibm.com/ztic/ VASCO: http://www.vasco. com/products/digipass/digipass_readers/connectable/digipass_ 865.aspx DoD CAC: http://www.cac.mil/ SIM: http://en.wikipedia.org/wiki/Subscriber_Identity_Module TPM: http://en.wikipedia.org/wiki/Trusted_platform_module Cambridge EMV hack: (watch video!) http://www. lightbluetouchpaper.org/2010/02/11/chip-and-pin-is-broken/ ISO 8583: http://en.wikipedia.org/wiki/ISO_8583 ISO 20022: http://www.iso20022.org/