Latest Podcast



Featured Articles

Ofcom helps protect customers against unexpected roaming charges

Ofcom helps protect customers against unexpected roaming charges

UK service providers must notify customers when they connect to a different network

New rules from UK telecoms regulator Ofcom will protect customers when they use their mobile phone on a foreign network. In addition, customers will be alerted if they are inadvertently roaming, perhaps because they're near an international border.
Author: The Fonecast
0 Comments
Article rating: No rating

Global smartphone market is set for recovery, says new forecast

A new forecast from research specialists Canalys shows the smartphone market is set to recover next year. Worldwide shipments declined by 12% last year but that decline is expected to slow to 5% this year.
Author: The Fonecast
0 Comments
Article rating: No rating
Vodafone and Three plan to merge their UK businesses

Vodafone and Three plan to merge their UK businesses

New Hutchison/Vodafone network would be biggest UK operator

Vodafone Group plc and CK Hutchison Group Telecom Holdings Limited have agreed to combine their UK telecommunication businesses, respectively Vodafone UK and Three UK. The merger will create a large new network operator to compete with Virgin Media O2 and EE.
Author: The Fonecast
0 Comments
Article rating: No rating

UK mobile payment service Paym to close in March 2023

UK mobile payment service Paym will close on 7th March 2023. The service, which allowed users to make and receive payments using their mobile phone numbers, was launched in 2014.
Author: The Fonecast
0 Comments
Article rating: No rating
Qualcomm legal action moves forward in the UK

Qualcomm legal action moves forward in the UK

Which? seeks payout for Samsung and Apple smartphone owners

Consumer protection organisation Which? has been given permission by the UK's Competition Appeal Tribunal to represent Apple and Samsung smartphone buyers in a legal case against chip manufacturer Qualcomm.
Author: The Fonecast
0 Comments
Article rating: No rating
RSS

Opinion Articles

Tuesday, November 12, 2013

The lowdown on mPOS solutions, their technology and the security risk

Rachel McCormack writes:

Mobile point of sale transactions (mPOS) are growing in popularity as mobile use takes over from desktop computers. The description of ‘mobile’ point of sale transactions denotes the ability of a payment to be taken via smartphone or tablet rather than a traditional card reader. There are many different ways to do this; mobile chip & PIN, mobile swipe & sign and NFC payments. All of these methods vary in popularity and security conceptions and many are difficult to understand. In this article we will explore each and give you the chance to understand the technology and issues surrounding the various methods.

Mobile Chip&PIN

This field of mobile payments is rapidly growing, with several players - including payleven - already dominating the space. These companies work by providing an app that is generally free to download and a chip&PIN device which costs anything from 59.99 to 99.99. To purchase these devices you have to pass a high security level; however once you are verified you can pretty much take payments straight away as soon as you receive your card reader.

The devices work by connecting to a smartphone or tablet via Bluetooth technology. Once a connection is established the transaction amount needs to be entered into the app, then the customer card is inserted and the PIN is entered to finish the transaction. Aside from working on simple Bluetooth technology, these devices also depend on an internet connection to link to the necessary bank account.

Security:

As this method requires various authentications from both merchant and customer, it is largely viewed as one of the most secure ways to conduct mobile payments. There is some trepidation about the safety of sending such important information over an internet connection and it is unadvisable to conduct such payments over an unsecure line. However, this rule applies for many kinds of private information and the device is very difficult to hack. As with any traditional card machine, there is no need to worry about leaving data traces on the merchant’s phone - only the necessary transaction information is left within the app.

Mobile Swipe & Sign

Many merchants that offer Chip&PIN also offer a swipe and sign option, as the device price is a little cheaper (smaller and much less complicated hardware) however the obvious downside to this method is that swipe and sign is not a popular method of payment in many countries including the UK. However, companies such as Sum Up offer it anyway. Using this method the user purchases a small swipe card reader that plugs into the audio jack of the phone; before he does this he must also pass security verification checks. As the card reader connects via the audio jack there is no reason to be connected to another device, however an internet connection is needed. The customer is required to use the phone screen to sign his name for verification.

Security:

The main security risk with this payment type is the same as with traditional swipe and sign: it is difficult to verify, even more so when signed with a finger on a mobile phone screen. However, chargebacks are available if fraud does occur. In terms of data security, as there is no ‘between device’ internet connection required, it could be argued to be more secure for data protection if the only other option is an open WiFi connection.

Mobile Wallet/ NFC

This is perhaps the most controversial type of payment, but nevertheless the one that is gathering the most traction. Big companies such as Google and PayPal are opening themselves to these wallet-type payment models, however for the moment these two companies are just trialling in the USA. Mobile wallet payments are dependent on NFC (near field communication) technology. Similar to Bluetooth, it establishes a connection between two devices, however the difference is that this connection is made at very small distances (4cm) and uses electromagnetic radio fields to communicate. So, a user needs to download an application such as Google Wallet, input his bank details and top up by credit card. This topped up amount acts as ‘cash’ in the wallet (once you run out of the topped up amount, you must add more to spend more via NFC) and can be used to pay for a number of things by simply bumping a phone against an NFC primed device.

Security:

The main security issue with this type of payment is that fact that the only verification of payment necessary is proximity. Bumping a phone and a device together is commonly used as this is an action that is unlikely to happen by accident; however this does not account for fraud. If a phone is stolen with a Google wallet amount of $100, the thief is free to use that money easily until the phone is reported stolen or Google wallet is shut down. However, it does have the advantage of coming with a money limitation; funds do not get transferred straight out of a bank account, meaning that theft can be a small issue. Similarly, in terms of data security, this method does not require transmission of sensitive data over an internet connection; again a benefit for those worried about data.

Rachel McCormack works in online marketing for mobile payment provider payleven.
Print
Author: The Fonecast
0 Comments
Rate this article:
No rating

Categories: Applications, OpinionNumber of views: 25180

Tags: opinion nfc banking payments payleven

Leave a comment

This form collects your name, email, IP address and content so that we can keep track of the comments placed on the website. For more info check our Privacy Policy and Terms Of Use where you will get more info on where, how and why we store your data.
Add comment

Recent Podcasts

Podcast - 23rd November 2011

We're squeezing plenty of news into this week's podcast, starting with a warning about so-called 'unlimited' data tariffs and ending with a new online gallery that hopes to put art into smartphones.

Author: The Fonecast
0 Comments
Article rating: No rating

Podcast - 18th November 2011

Supporting the 'bring your own device' trend

We talk to Dr Nicko van Someren, CTO at Good Technology, about mobile security for businesses - from protecting confidential email to creating secure mobile apps.
Author: The Fonecast
0 Comments
Article rating: No rating

Podcast - 16th November 2011

This week we're covering a wide range of news stories, from Adobe's mobile Flash plans to the iZettle payment app. We discuss eBay's plea to the UK government, a new UK 4G trial, a potential new threat to iPhones... and much more.

Author: The Fonecast
0 Comments
Article rating: No rating

Podcast - 11th November 2011

Eddy Willems, Security Evangelist at G Data, talks about mobile security threats. With the amount of mobile malware reported to have increased by 273% this year, Eddy explains what smartphone users can do - and what the mobile industry should be doing, too.

Author: The Fonecast
0 Comments
Article rating: No rating

Podcast - 9th November 2011

There's good news and bad news, as Best Buy Europe announces plans to close its 'big box' UK stores and Everything Everywhere cuts 550 jobs - while Jawbone UP hits the shops and the Simply Tap mobile shopping app goes live.

Author: The Fonecast
0 Comments
Article rating: No rating
RSS
First4243444547495051Last

Follow thefonecast.com

Twitter @TheFonecast RSS podcast feed
Find us on Facebook Subscribe free via iTunes

Archive Calendar

«November 2024»
MonTueWedThuFriSatSun
28293031123
45678910
11121314151617
18192021222324
2526272829301
2345678

Archive

Terms Of Use | Privacy Statement