Chip-enabled Credit Cards Not the Answer to Security Vulnerabilities

Chip-enabled Credit Cards Not the Answer to Security Vulnerabilities

Set by credit card companies, the deadline is October 2015. At this time, U.S. consumers will be required to carry a new type of credit card if they plan on using it at retailers across the nation that will have upgraded payment terminals to accommodate the cards. This change costs $8.65 billion, while only addressing a narrow range of security issues.

These new credit cards will be chip-enabled, which means they will come with embedded computer chips, making them harder to counterfeit; however, credit card counterfeiting is only about 37% of all credit card fraud combined. The embedded computer chips will still be vulnerable to hacking and to the same cyber attacks that current swipe-card systems already deal with.

PINs will no longer be issued, requiring just a signature to complete a transaction. PINs work as an additional layer of security that helps make lost or stolen cards useless when attempting to make in-person purchases at retail stores. But, cost and complexity are reasons for not issuing these secret numbers. It would require a larger investment from credit card companies, and PIN management systems require additional customer support.

Chip technology has been used in Europe for about two decades in addition to requiring PINs, but even with these security layers, data is still unprotected at three key points:

  • Entering the terminal;
  • Transmission through a processor; and
  • Storage on the retailer’s systems.

While security experts argue that it would make more sense for the United States to use point-to-point encryption, which scrambles data to make it unreadable from the instant the transaction starts, higher cost and limited track record as proof of success stands in the way.

About the Author

Ginger Hill is Group Social Media Manager.

Featured

  • Live From ISC West: Day 2 Recap

    If it’s even possible, Day 2 of ISC West in Las Vegas, Nevada, was even busier than the first. Remember to keep tabs on our Live From ISC West page for news and updates from the show floor at the Venetian, because there’s more news coming out than anyone could be expected to keep track of. Our Live From sponsors—NAPCO Security, Alibi Security, Vistacom, RGB Spectrum, and DoorKing—kept the momentum from Day 1 going with packed booths, happy hours, giveaways, product demonstrations, and more. Read Now

    • Industry Events
    • ISC West
  • Visiting Sin City

    I’m a recovering alcoholic, ten years sober this June. I almost wrote “recovered alcoholic,” because it’s a problem I’ve long since put to bed in every practical sense. But anyone who’s dealt with addiction knows that that part of your brain never goes away. You just learn to tell the difference between that insidious voice in your head and your actual internal monologue, and you get better at telling the other guy to shut up. Read Now

  • On My Way Out the Door

    To answer that one question I always get, at every booth visit, I have seen amazing product technology, solutions and above all else, the people that make it all work. Read Now

    • Industry Events
    • ISC West
  • Return to Form

    My first security trade show was in 2021. At the time, I was awed by the sheer magnitude of the event and the spectacle of products on display. But this was the first major trade show coming out of the pandemic, and the only commentary I heard was how low the attendance was. Two representatives from one booth even spent the last morning playing catch in the aisle with their giveaway stress balls. Read Now

    • Industry Events
    • ISC West

Featured Cybersecurity

New Products

  • BIO-key MobileAuth

    BIO-key MobileAuth

    BIO-key International has introduced its new mobile app, BIO-key MobileAuth™ with PalmPositive™ the latest among over sixteen strong authentication factors available for BIO-key's PortalGuard® Identity-as-a-Service (IDaaS) platform. 3

  • Connect ONE’s powerful cloud-hosted management platform provides the means to tailor lockdowns and emergency mass notifications throughout a facility – while simultaneously alerting occupants to hazards or next steps, like evacuation.

    Connect ONE®

    Connect ONE’s powerful cloud-hosted management platform provides the means to tailor lockdowns and emergency mass notifications throughout a facility – while simultaneously alerting occupants to hazards or next steps, like evacuation. 3

  • HID Signo Readers

    HID Signo Readers

    HID Global has announced its HID® Signo™ Biometric Reader 25B that is designed to capture and read fingerprints in real-world applications and conditions. 3