Tuesday, 07 June 2011


RSA Offers to Replace SecurID Tokens

In an open letter to RSA customers Arthur W. Coviello, Jr. offers to replace SecurID tokens for customers with concentrated user bases typically focused on protecting intellectual property and corporate networks. As well as offering to implement risk-based authentication strategies for consumer-focused customers with a large, dispersed user base, typically focused on protecting web-based financial transactions.

On March 17, 2011, RSA publicly disclosed that it had detected a very sophisticated cyber attack on its systems, and that certain information related to the RSA SecurID product had been extracted. Certain characteristics of the attack on RSA indicated that the perpetrator's most likely motive was to obtain an element of security information that could be used to target defence secrets and related IP, rather than financial gain, PII, or public embarrassment.

On Thursday, June 2, 2011, RSA were able to confirm that information taken from RSA in March had been used as an element of an attempted broader attack on Lockheed Martin, a major U.S. government defence contractor. Lockheed Martin has stated that this attack was thwarted.

"RSA's technologies, including RSA SecurID authentication, help protect much of the world's most critical information and infrastructure. The threats to digital information continue to escalate. As the leader in authentication solutions, our goal is to ensure that this growing threat environment does not impede the tremendous potential and opportunity of a trusted digital world. We believe that SecurID is the most powerful multi-factor authentication solution in the industry."



MasterCard Gets Its First TSM Partner

Today, MasterCard Worldwide announced its first partnership with a trusted service manager, Cassis International. The partnership will help MasterCard's "streamlined" system to personalise PayPass contactless applications on NFC mobile phones from different worldwide issuers.

The provisioning system called 'MOTAPS' (Mobile Over-the-Air Provisioning Service) sets up a standardised way to collate customer payment account data to be delivered directly over-the-air to secure elements in NFC smartphones. Cassis will deliver the account data securely to the secure chips, which can be either SIM cards, embedded chips or possibly other secure elements in NFC phones.

'MOTAPS' is designed to make it easier for consumers with MasterCard branded credit, debit or prepaid accounts to request having PayPass applications personalised over the air to their phones. It would speed up the PayPass applications process work, as no longer will the MasterCard and banks need to manually set up the account data to be downloaded to mobile phones.



Global Chipless RFID Tags Market to reach $2 Billion by 2017: A Report

According to a new report by the Global Industry Analysts, Inc, due to the increasing acceptance of the chipless tag technology worldwide, by the year 2017, the RFID Tags Market will reach $2 Billion

Analysts see a promising future of the chipless technology due to its ability to offer RFID features such as track and trace, without the need for real-time and line-of-sight technology. USA and Europe account for a major share of the global chipless RFID tags volume sales. In terms of value, Europe and Asia-Pacific markets offer the maximum growth opportunities.

Small and mid-sized businesses, in particular, are likely to adopt chipless tags due to its cost effectiveness. Further, the relatively lower emphasis on standards, when compared to the need for offering Universal Product Code (UPC) or other similar tracking systems, is also likely to foster the deployment of chipless tags in small and mid-sized businesses.

However, the report also state, "despite the enormous promise, chipless RFID tags are unlikely to comprehensively replace chip RFID in the near future. The scenario more likely favours the co-existence of RFID and chipless tags, replicating the successful co-existence of RFID and UPC bar codes, in the process providing end-users with the best-possible solution".



Clairmail Hires New CFO and TO

Mobile banking and payments provider Clairmail Inc. has appointed Steve Anderson as the new chief financial officer, and made Gordon Simpson, the Company's new chief technology officer.

Pete Daffern, Clairmail's chief executive said: "As we continue to gain market share, we need a strong team to support our efforts. Steve and Gordon both add a broad base of experience and expertise to the company, and will provide the leadership needed to help drive Clairmail's continued growth and success".



The EPC Releases SEPA Cards Standardisation Requirements for Public Consultation

The European Payments Council (EPC) and the Cards Stakeholders Group released the latest version of the SEPA Cards Standardisation Volume - Book of Requirements for public consultation. The SEPA Cards Standardisation Volume defines the functional and security standards requirements needed to achieve interoperability based on open and free standards within the Single Euro Payments Area (SEPA) cards market. The EPC and the Cards Stakeholders Group call on industry stakeholders to review the recent revisions and provide feedback by 29 July 2011.

The EPC, representing the European banking industry in relation to payments, carries out a card standardisation programme designed to achieve a consistent customer experience, high levels of security and optimum process efficiency throughout the SEPA cards market. In 2009, the EPC promoted the creation of the Cards Stakeholders Group together with representatives of five sectors also active in the cards domain including retailers, vendors - such as manufacturer of card payment devices and related IT systems - processors, card schemes and banks. The Cards Stakeholders Group develops the SEPA Cards Standardisation Volume. The European Economic and Financial Affairs Council (ECOFIN), which comprises the Finance Ministers of European Union Member States, requested in its conclusions on SEPA in December 2009 that industry sets the conditions for further standardisation in the area of cards.

Version 5.5 of the SEPA Cards Standardisation Volume has recently been updated by the Cards Stakeholders Group and is currently undergoing public consultation. This version includes updates with regard to security requirements, payment with cashback, dynamic currency conversion, mobile contactless payments, payment with aggregated amount and surcharging.

Gerard Hartsink, EPC Chair, comments: "Creating the Cards Stakeholders Group allows pinpointing the expectations of a broad range of payment card stakeholders. It also ensures a strong co-management in the process of identifying standard requirements and implementation best practices that will promote interoperability in the SEPA cards market."



Contis Group New Leader of Card Payment Market

Contis Group, a global provider of online banking and prepaid card technologies, has acquired card issuer GTP Financial Services Ltd for an undisclosed amount of money.

General Manager and Director Mike Fromant of the Skipton-based Contis Group said: "the group will further develop its strengths and capabilities as a full supplier of Visa prepaid card solutions across the UK and EU". Fromant believes in today's market, there are great opportunities in developing innovative prepaid solutions which can be linked to the Company's internet banking solutions and to its advanced payment platforms. The group's cutting-edge technology is commissioned by leading banks, retailers and financial services giants.



VASCO Data Security Launches DIGIPASS KEY 101

VASCO Data Security International, Inc. today launches DIGIPASS KEY 101, a USB-based PKI solution for strong authentication, digital signatures and data protection.

DIGIPASS KEY 101 offers secure remote access and digital signatures in a single 'plug-and-play' device with an extremely sturdy and portable design. It can be used for various purposes such as desktop and application log-on, disk encryption, and transaction signing. It combines the strength of certificate-based authentication with the simplicity and portability of a built-in USB reader.

"DIGIPASS KEY 101 offers strong two-factor authentication based on PKI, combining the simplicity of a USB device with the capabilities of a cryptographic smart card. The solution provides multi-platform support and an unmatched user convenience and is therefore extremely well suited for mass deployments, enabling banks, corporations and application providers alike to provide their customers, partners and employees with certificate based security in a straightforward manner," says Jan Valcke, President and COO of VASCO Data Security.



Allied Irish Banks Deploys Gemalto Online Banking Solution

Gemalto, the world leader in digital security, announced that the Allied Irish Banks (AIB) have agreed in deploying Gemalto's Ezio solution to provide additional security features to its online banking services.

As part of the multi-year contract, Gemalto will provide authentication software, Ezio Club EMV card readers as well as consulting services to develop AIB's online offering with new and enhanced financial services for the benefit of customers.

In addition to generating One-Time-Passwords, the Ezio Club reader can be used to verify and sign transaction details, such as amount transferred and account credited. This added layer of "sign-what-you-see" security ensures the authenticity of the internet banking session, whilst enhancing the user's protection.

Philippe Regniers, Senior Vice President, Gemalto confirmed: "More than 50 million online banking customers worldwide use and trust Gemalto's Ezio technology and we are leveraging this experience to support AIB's project".




Note to Subscribers

If you would prefer to receive your News On Line email in plain text, please send an email with "Plain Text" in the subject line.

If you are a subscriber to our Daily News On Line service or Monthly Newsletter you are entitled to access restricted pages on our website news archive. For the username and password please send an email with "Subscriber Password" in the subject line. lesley.dann, Subscriptions Administrator, Smart Card Group. lesley.dann@smartcard.co.uk

To Unsubscribe Email Us at info@smartcard.co.uk or click Unsubscribe

Important Information

From time to time, this news service may include industry forecasts and forward looking statements made by the companies concerned. Readers should be advised that Smart Card News Ltd cannot be held responsible for decisions and/or actions taken by readers of our news service, based on the information provided. This news is only to be distributed to persons/companies who have a contract with Smart Card News Ltd. Unless your company has gained a licence and/or written permission from Smart Card News, the contents of this news page are not to be forwarded to any other person or server. Any replication by any means without prior permission is illegal and action may be taken. If you receive this online news from a forwarded source please contact the team at Smart Card News Ltd. It is illegal to replicate this online news.

Email: info@smartcard.co.uk
Tel: +44 (0)1903 734 677