SlideShare a Scribd company logo

Boosting and securing online shopping - making PIN on phone a reality

BSP Media Group
BSP Media Group
TechnologyEconomy & FinanceBusiness
1 of 41
Download to read offline
This document is offered compliments of BSP Media Group. www.bspmediagroup.com All rights reserved.
Boosting and securing online shopping - making PIN on phone a reality Africa Com 2013
Oltio is a joint venture between the Standard Bank and MTN Groups – formally called MTN Mobile Money Bank • Largest banking group in Africa • Operates in 42 countries worldwide • Significant card issuer and acquirer • Largest Mobile Network Operator in Africa and Middle East • 21 countries • >200m subscribers “Oltio – the secure mobile commerce company” 2
Oltio was a GSM-A Global Mobile awards finalist in 2012 with payD and MasterCard Mobile 3
What is a mobile payment? What is online shopping? 4
payD basics • • • • • • • • • • payD uses the handset as a “personal PIN entry device”; customers enter their ATM/POS PIN into their own phone when making a purchase. payD works across multiple channels – phone, web, POS, kiosk, App etc payD WIG uses SIM and handset based security to do the encryption of the PIN where the network has keys loaded to its SIMs. ORAGS App makes use of a 3DES DUKPT like security protocol for feature and smart phones where the SIM keys cannot be accessed. System constructs and submits to the acquirer an ISO 8583 transaction for debit and credit cards. The transaction is a CNP (card not present) with PIN. The normal four party card acquiring processes apply. In SA liability is shifted to issuer in a similar manner to 3D secure. payD has been live in SA for 4 years MasterCard approved and branded, Visa supported via marketing - in SA 5
Case study: South Africa: good debit card with PIN penetration – POS and online usage poor due to limited debit card acceptance $10,000 • High levels of debit card penetration • PIN required due to single message ATM genesis • High GDP per capita - good retail potential • >120% mobile phone penetration • Airtime top-up via cash not card South Africa GDP per capita PPP $8,000 $6,000 $4,000 $2,000 GDP per Capita and Financial Penetration Indonesia Kenya Uganda 20% 40% 60% 80% 100% Financial Penetration 6
The m and e-commerce challenge in South Africa Total retail sales in South Africa Online retail sales in South Africa: 0,36% 7
The m and e-payments challenge in South Africa All payment types accepted Debit Cards with PIN code didn’t work in m and ecommerce 8
There are an estimated 750 000 spaza shops in South Africa – with almost no POS acceptance •POS cost too high for merchants •Not viable to acquirers •VAS services key • • Less than 200 000 POS merchants in SA mostly in formal retail sectors Cost of POS high to merchant – R750pm min if turnover under R20 000 pm 9
Flea markets and other informal merchants pose similar challenges New game: spot the POS 10
The lack of electronic acceptance is impacting business growth – suppliers wont accept cash – not just an SA issue •Bulk distributors will not accept cash •Lack of electronic acceptance limits float to pay 11
Using a phone as the merchant device is a logical leap but does have limitations in emerging markets •mPOS requires certification, distribution logistics and specific phones 12
Card payment – traditional four party model needs to be retained…. Request Response A ACQUIRER Card is presented at terminal Tx details captured on POS and sent to acquirer Acquirer attempts authorisation from Issuer Request Response I ISSUER Response sent back to acquirer and to POS 13
So…..which way? Converge carefully…. •Mobile Phones are pervasive and key to expanding payments •Phones need to be secure for PIN entry 14
payD uses the phone‘s SIM to encrypt the PIN •SIM has encrypt and decrypt functionality •ISO PIN block can be created 15
payD uses WIG security embedded into a mobile network operator's system Derived keys loaded onto the SIM card at the point of Manufacture WIG Gateway PIN-block returned HSM SIM Card containing a WIB browser That allows encryption of Data using the keys WIG Push for PIN Customer Enters PIN on Receipt of request Re-encrypted with Application Keys HSM Transaction Application Server System is protected by patents and licensed to operators 16
…allowing the phone to become a Personal Key Entry Device - restricted to the identified cardholder = Personal Key Entry Device •Not for general PIN entry use by merchant •Locked to identified cardholder •Phone number is proxy for card number •No device certification required 17
…..SIM and PIN = Chip and PIN Card PIN SIM 18
payD replaces the card and POS A Request Response I Request Response ACQUIRER ISSUER Enabling Mobile Card Based Transaction - Card-Not-Present + PIN Secure encryption engine to capture and process ATM/POS PIN Auth Engine Customer’s card number linked to mobile number Request payD builds and sends formatted auth request to bank A Card Nr Mobile Nr I Response Response Database Request ACQUIRER ISSUER Mobile Phone number is used to identify cardholder 19
payD is secure and PCI compliant •payD is PCI DSS level 1 compliant •PCI Compliance is not required by merchant/PSP in payD transaction as card details are captured into the customers phone •payD is a “cloud” POS •Reduces merchant risk and cost 20
Authenticated Mobile Transaction (AMT) is a PASA approved Card PCH rule in South Africa • Card PCH specified and approved • PIN is captured into phone in secure manner • AMT rule is similar to 3D Secure and V-by-V • Liability shifts to issuer • Issuer opt-in required • Applies to all card types • payD conforms to AMT • Licensed in South Africa to IPSEP 2 1
payD is supported by both MasterCard and Visa •MasterCard Mobile Remote Payment (MMRP) certified •Supported by Visa •Issuer opt–in required 22
MTN uses payD to sell airtime directly to customers - via MTN Eazi Recharge – customers dial a USSD shortcode and enter the PIN in a WIG session *141*10# •Customers do on average 8 transactions pm • Debit card purchase as opposed to cash withdrawal •350 000 registered users 23
As do Vodacom for their Express Recharge offering … *130*082# 24
payD also enables e-commerce purchases for PIN-based cards 25
payD WIG is a complex system and needs all elements to be in place to work - this isn't always the case outside of South Africa Key learning's from payD WIG • MNO dependence - requires MNO technical support – correct SIM, SIM keys and WIG to be in place • App is in – customers demand a richer experience – use of USSD declining and WIG/S@T has not proven successful to MNO’s 26
ORAGS App – works on all networks, with 3DES DUKPT like security protocol - called ORAGS 1. Customer downloads App 2. Phone sends SMS to identify itself 3. Subset of keys sent to phone 4. Creates one off session Feature and smart phones PIN-block returned encrypted under secure protocol – one off use only 27
ORAGS works across multiple channels vPos Physical POS App to App Low cost POS with no extra hardware required Can be used on current technology (no EMV compliance required). mCommerce Ticketing Cinema Airtime WEB eCommerce Simple API and simulator for merchant integration Static Parking Ticketing Retail F2F Code Entry Call Centre Outbound Sales Insurance In most instances App or USSD WIG can be used Kiosk Bill Payment 28
Face-to-face provides the biggest opportunity for payment acceptance expansion and cash reduction 29
Face-to-face using a phone App - no extra hardware is required - low level phones can be used 30
POS – non-EMV for example – here using USSD 31
App to App allows the monetisation of Apps 32
Payment on web via App 33
Bill payments 34
Tickets at a kiosk 35
Payment using printed code via USSD and WIG 36
Chargeback experience; well known SA ex- low cost airline • Largest low cost airline in SA – over 200 000 passengers per month • Linked to payD to allow debit cards to grow potential customer base Sample year; commencing July 2011: • 8900 tickets sold with sales values of R11m via payD • No confirmed charge backs via payD noted • 20% of usage was credit card and PIN • 3D not user friendly to mobile 37
Stakeholder Benefits summary Stakeholder Card Issuer Card Acquiring Benefit  Provides additional value added services to cardholders by allowing mobile remote authentication  Increased PV on transactions through expansion of acceptance channels that except remote authentication  Enablement of debit cards for mobile authentication on cards that do not allow card not present transactions.  Expand acceptance network to include remote authentication solutions. Enjoy increased merchant fees from expanded estate.  Enable new card based payment channels, e.g. B2B mobile payments. Cardholder   Merchant   Card company         Convenience of using mobile phone to pay in remote authentication situations e.g. travel bookings No need to share card information with any merchant or payment gateway that reduces hacking of data Accept card based transactions in previously unsupported environments, e.g. debit e-commerce transactions. Cost savings through direct distribution capability of virtual services e.g. airtime. (In this scenario the mobile network operator becomes the merchant.) Enjoys liability shift rules similar to VbyV/3D – no need to be PCI Compliant Increased security of cardholder information. No card data is shared with a merchant when a transaction is processed. Out of band authentication ensures separation of card sensitive data. Data compromises do not enable fraudsters to replicate transactions or cloning cards. Remote authentication capability increases PV for issuers. Remote authentication capability can extend acceptance infrastructure within a market. Enables the mobile phone as an authentication device. Provides a direct communications interface to the cardholder. Promotions and offers can be better articulated and promoted. Increased security through GIS enablement of transaction info. All transactions carry a location 38 signature.
The Future is - CNP plus PIN 39
Show video 4 0

Recommended

Empowering smes with mobile payment
Empowering smes with mobile paymentEmpowering smes with mobile payment
Empowering smes with mobile paymentChunJia Sio
 
Future Payment Trends
Future Payment TrendsFuture Payment Trends
Future Payment TrendsKona Software Lab Limited.
 
EMV 201 EMF June 2016
EMV 201 EMF June 2016EMV 201 EMF June 2016
EMV 201 EMF June 2016Philip Andreae
 
Mobile payment-security-risk-and-response
Mobile payment-security-risk-and-responseMobile payment-security-risk-and-response
Mobile payment-security-risk-and-responseDESMOND YUEN
 
Smart card to the cloud for convenient, secured nfc payment
Smart card to the cloud for convenient, secured nfc paymentSmart card to the cloud for convenient, secured nfc payment
Smart card to the cloud for convenient, secured nfc paymentKona Software Lab Limited.
 
Kona Corporate Profile
Kona Corporate ProfileKona Corporate Profile
Kona Corporate ProfileKona Software Lab Limited.
 
EMV Overview
EMV OverviewEMV Overview
EMV OverviewKona Software Lab Limited.
 
EMV Payments: Changes at the Point of Sale
EMV Payments: Changes at the Point of SaleEMV Payments: Changes at the Point of Sale
EMV Payments: Changes at the Point of Sale- Mark - Fullbright
 

Recommended

Empowering smes with mobile payment
Empowering smes with mobile paymentEmpowering smes with mobile payment
Empowering smes with mobile paymentChunJia Sio
 
Future Payment Trends
Future Payment TrendsFuture Payment Trends
Future Payment TrendsKona Software Lab Limited.
 
EMV 201 EMF June 2016
EMV 201 EMF June 2016EMV 201 EMF June 2016
EMV 201 EMF June 2016Philip Andreae
 
Mobile payment-security-risk-and-response
Mobile payment-security-risk-and-responseMobile payment-security-risk-and-response
Mobile payment-security-risk-and-responseDESMOND YUEN
 
Smart card to the cloud for convenient, secured nfc payment
Smart card to the cloud for convenient, secured nfc paymentSmart card to the cloud for convenient, secured nfc payment
Smart card to the cloud for convenient, secured nfc paymentKona Software Lab Limited.
 
Kona Corporate Profile
Kona Corporate ProfileKona Corporate Profile
Kona Corporate ProfileKona Software Lab Limited.
 
EMV Overview
EMV OverviewEMV Overview
EMV OverviewKona Software Lab Limited.
 
EMV Payments: Changes at the Point of Sale
EMV Payments: Changes at the Point of SaleEMV Payments: Changes at the Point of Sale
EMV Payments: Changes at the Point of Sale- Mark - Fullbright
 
Emv chip card buyers guide
Emv chip card buyers guideEmv chip card buyers guide
Emv chip card buyers guide3D Merchant powered by CenPOS
 
QR Code Based Payment- The most advanced contactless payment
QR Code Based Payment- The most advanced contactless paymentQR Code Based Payment- The most advanced contactless payment
QR Code Based Payment- The most advanced contactless paymentMahindra Comviva
 
emv-ebook
emv-ebookemv-ebook
emv-ebookRichard Dover
 
Hasin group profile 2019
Hasin group profile 2019Hasin group profile 2019
Hasin group profile 2019GholamrezaGolpayegan
 
Secure QR code payment
Secure QR code paymentSecure QR code payment
Secure QR code paymentJames Wu
 
Analysis of Mobile Payments in Singapore - v0.3 Jan 2018
Analysis of Mobile Payments in Singapore - v0.3 Jan 2018Analysis of Mobile Payments in Singapore - v0.3 Jan 2018
Analysis of Mobile Payments in Singapore - v0.3 Jan 2018Jerry CHI 迟欣
 
Introduction to emv
Introduction to emvIntroduction to emv
Introduction to emvAnil Chaurasiya
 
NFC Contactless EMV Payment Device
NFC Contactless EMV Payment DeviceNFC Contactless EMV Payment Device
NFC Contactless EMV Payment DeviceStuart McGregor
 
Myanmar Mobile Money Services INtroduction
Myanmar Mobile Money Services INtroductionMyanmar Mobile Money Services INtroduction
Myanmar Mobile Money Services INtroductionAung Cho
 
Fraud and security concern, how it applies in e-Commerce and banking financial
Fraud and security concern, how it applies in e-Commerce and banking financialFraud and security concern, how it applies in e-Commerce and banking financial
Fraud and security concern, how it applies in e-Commerce and banking financialTechnopreneurs Association of Malaysia
 
Mobile - the next wave of opportunities and challenges
Mobile - the next wave of opportunities and challengesMobile - the next wave of opportunities and challenges
Mobile - the next wave of opportunities and challengesAnuradha Weeraman
 
EMV Migration Webinar / Lessons Learned + Next Steps
EMV Migration Webinar / Lessons Learned + Next StepsEMV Migration Webinar / Lessons Learned + Next Steps
EMV Migration Webinar / Lessons Learned + Next StepsIngenico Group
 
Emv overview-payscape-2015 (1)
Emv overview-payscape-2015 (1)Emv overview-payscape-2015 (1)
Emv overview-payscape-2015 (1)Karina Khemani
 
The basics of mobile payments
The basics of mobile paymentsThe basics of mobile payments
The basics of mobile paymentsPragati Rai
 
Payment Gateway
Payment Gateway Payment Gateway
Payment Gateway Rohit Srivastav
 
7 Ways to Make EMV Easier / Webinar
7 Ways to Make EMV Easier / Webinar7 Ways to Make EMV Easier / Webinar
7 Ways to Make EMV Easier / WebinarIngenico Group
 
MOLPoints Global Presentation 2015 03
MOLPoints Global Presentation 2015 03MOLPoints Global Presentation 2015 03
MOLPoints Global Presentation 2015 03MOL Global Inc
 
Emv Explained in few words
Emv Explained in few words Emv Explained in few words
Emv Explained in few words Banque Populaire Du Rwanda
 
Cardless ATMs - European ATMs 2015 conference in London
Cardless ATMs - European ATMs 2015 conference in LondonCardless ATMs - European ATMs 2015 conference in London
Cardless ATMs - European ATMs 2015 conference in LondonMichal Voldrich, MBA
 
EMV chip cards
EMV chip cardsEMV chip cards
EMV chip cardsDilip Kumar
 
Changing African Youth Attitude to the legal Digital Music
Changing African Youth Attitude to the legal Digital MusicChanging African Youth Attitude to the legal Digital Music
Changing African Youth Attitude to the legal Digital MusicBSP Media Group
 
Successful Strategies for optimized customer experience management
Successful Strategies for optimized customer experience management Successful Strategies for optimized customer experience management
Successful Strategies for optimized customer experience management BSP Media Group
 

More Related Content

What's hot

QR Code Based Payment- The most advanced contactless payment
QR Code Based Payment- The most advanced contactless paymentQR Code Based Payment- The most advanced contactless payment
QR Code Based Payment- The most advanced contactless paymentMahindra Comviva
 
Secure QR code payment
Secure QR code paymentSecure QR code payment
Secure QR code paymentJames Wu
 
Analysis of Mobile Payments in Singapore - v0.3 Jan 2018
Analysis of Mobile Payments in Singapore - v0.3 Jan 2018Analysis of Mobile Payments in Singapore - v0.3 Jan 2018
Analysis of Mobile Payments in Singapore - v0.3 Jan 2018Jerry CHI 迟欣
 
NFC Contactless EMV Payment Device
NFC Contactless EMV Payment DeviceNFC Contactless EMV Payment Device
NFC Contactless EMV Payment DeviceStuart McGregor
 
Myanmar Mobile Money Services INtroduction
Myanmar Mobile Money Services INtroductionMyanmar Mobile Money Services INtroduction
Myanmar Mobile Money Services INtroductionAung Cho
 
Fraud and security concern, how it applies in e-Commerce and banking financial
Fraud and security concern, how it applies in e-Commerce and banking financialFraud and security concern, how it applies in e-Commerce and banking financial
Fraud and security concern, how it applies in e-Commerce and banking financialTechnopreneurs Association of Malaysia
 
Mobile - the next wave of opportunities and challenges
Mobile - the next wave of opportunities and challengesMobile - the next wave of opportunities and challenges
Mobile - the next wave of opportunities and challengesAnuradha Weeraman
 
EMV Migration Webinar / Lessons Learned + Next Steps
EMV Migration Webinar / Lessons Learned + Next StepsEMV Migration Webinar / Lessons Learned + Next Steps
EMV Migration Webinar / Lessons Learned + Next StepsIngenico Group
 
Emv overview-payscape-2015 (1)
Emv overview-payscape-2015 (1)Emv overview-payscape-2015 (1)
Emv overview-payscape-2015 (1)Karina Khemani
 
The basics of mobile payments
The basics of mobile paymentsThe basics of mobile payments
The basics of mobile paymentsPragati Rai
 
7 Ways to Make EMV Easier / Webinar
7 Ways to Make EMV Easier / Webinar7 Ways to Make EMV Easier / Webinar
7 Ways to Make EMV Easier / WebinarIngenico Group
 
MOLPoints Global Presentation 2015 03
MOLPoints Global Presentation 2015 03MOLPoints Global Presentation 2015 03
MOLPoints Global Presentation 2015 03MOL Global Inc
 
Cardless ATMs - European ATMs 2015 conference in London
Cardless ATMs - European ATMs 2015 conference in LondonCardless ATMs - European ATMs 2015 conference in London
Cardless ATMs - European ATMs 2015 conference in LondonMichal Voldrich, MBA
 

What's hot (20)

Emv chip card buyers guide
Emv chip card buyers guideEmv chip card buyers guide
Emv chip card buyers guide
 
QR Code Based Payment- The most advanced contactless payment
QR Code Based Payment- The most advanced contactless paymentQR Code Based Payment- The most advanced contactless payment
QR Code Based Payment- The most advanced contactless payment
 
emv-ebook
emv-ebookemv-ebook
emv-ebook
 
Hasin group profile 2019
Hasin group profile 2019Hasin group profile 2019
Hasin group profile 2019
 
Secure QR code payment
Secure QR code paymentSecure QR code payment
Secure QR code payment
 
Analysis of Mobile Payments in Singapore - v0.3 Jan 2018
Analysis of Mobile Payments in Singapore - v0.3 Jan 2018Analysis of Mobile Payments in Singapore - v0.3 Jan 2018
Analysis of Mobile Payments in Singapore - v0.3 Jan 2018
 
Introduction to emv
Introduction to emvIntroduction to emv
Introduction to emv
 
NFC Contactless EMV Payment Device
NFC Contactless EMV Payment DeviceNFC Contactless EMV Payment Device
NFC Contactless EMV Payment Device
 
Myanmar Mobile Money Services INtroduction
Myanmar Mobile Money Services INtroductionMyanmar Mobile Money Services INtroduction
Myanmar Mobile Money Services INtroduction
 
Fraud and security concern, how it applies in e-Commerce and banking financial
Fraud and security concern, how it applies in e-Commerce and banking financialFraud and security concern, how it applies in e-Commerce and banking financial
Fraud and security concern, how it applies in e-Commerce and banking financial
 
Mobile - the next wave of opportunities and challenges
Mobile - the next wave of opportunities and challengesMobile - the next wave of opportunities and challenges
Mobile - the next wave of opportunities and challenges
 
EMV Migration Webinar / Lessons Learned + Next Steps
EMV Migration Webinar / Lessons Learned + Next StepsEMV Migration Webinar / Lessons Learned + Next Steps
EMV Migration Webinar / Lessons Learned + Next Steps
 
Emv overview-payscape-2015 (1)
Emv overview-payscape-2015 (1)Emv overview-payscape-2015 (1)
Emv overview-payscape-2015 (1)
 
The basics of mobile payments
The basics of mobile paymentsThe basics of mobile payments
The basics of mobile payments
 
Payment Gateway
Payment Gateway Payment Gateway
Payment Gateway
 
7 Ways to Make EMV Easier / Webinar
7 Ways to Make EMV Easier / Webinar7 Ways to Make EMV Easier / Webinar
7 Ways to Make EMV Easier / Webinar
 
MOLPoints Global Presentation 2015 03
MOLPoints Global Presentation 2015 03MOLPoints Global Presentation 2015 03
MOLPoints Global Presentation 2015 03
 
Emv Explained in few words
Emv Explained in few words Emv Explained in few words
Emv Explained in few words
 
Cardless ATMs - European ATMs 2015 conference in London
Cardless ATMs - European ATMs 2015 conference in LondonCardless ATMs - European ATMs 2015 conference in London
Cardless ATMs - European ATMs 2015 conference in London
 
EMV chip cards
EMV chip cardsEMV chip cards
EMV chip cards
 

Viewers also liked

Changing African Youth Attitude to the legal Digital Music
Changing African Youth Attitude to the legal Digital MusicChanging African Youth Attitude to the legal Digital Music
Changing African Youth Attitude to the legal Digital MusicBSP Media Group
 
Successful Strategies for optimized customer experience management
Successful Strategies for optimized customer experience management Successful Strategies for optimized customer experience management
Successful Strategies for optimized customer experience management BSP Media Group
 
Mobile Money Regulation
Mobile Money Regulation Mobile Money Regulation
Mobile Money Regulation BSP Media Group
 
The Telco journey to cloud
The Telco journey to cloudThe Telco journey to cloud
The Telco journey to cloudBSP Media Group
 
From big data to big value : Infrastructure need and Huawei best practise
From big data to big value : Infrastructure need and Huawei best practise From big data to big value : Infrastructure need and Huawei best practise
From big data to big value : Infrastructure need and Huawei best practise BSP Media Group
 
Capturing big value in big data
Capturing big value in big data Capturing big value in big data
Capturing big value in big data BSP Media Group
 
Bsp media branded_rp_africacom_2013_verimatrix_freecopyx
Bsp media branded_rp_africacom_2013_verimatrix_freecopyxBsp media branded_rp_africacom_2013_verimatrix_freecopyx
Bsp media branded_rp_africacom_2013_verimatrix_freecopyxBSP Media Group
 
Mobile financial Services & opportunities or threat
Mobile financial Services & opportunities or threat Mobile financial Services & opportunities or threat
Mobile financial Services & opportunities or threat BSP Media Group
 
Working with OTT player in the Cloud
Working with OTT player in the Cloud Working with OTT player in the Cloud
Working with OTT player in the Cloud BSP Media Group
 
What is an Accelerator? Where does it fit in Africa?
What is an Accelerator? Where does it fit in Africa?What is an Accelerator? Where does it fit in Africa?
What is an Accelerator? Where does it fit in Africa?BSP Media Group
 
Traditional Media vs Digital Media
Traditional Media vs Digital Media Traditional Media vs Digital Media
Traditional Media vs Digital Media BSP Media Group
 
Positioning itself as a broadcaster for all devices
Positioning itself as a broadcaster for all devicesPositioning itself as a broadcaster for all devices
Positioning itself as a broadcaster for all devicesBSP Media Group
 
Leveraging Big Data for bigger revenue.
Leveraging Big Data for bigger revenue.Leveraging Big Data for bigger revenue.
Leveraging Big Data for bigger revenue.BSP Media Group
 
The importance of network in the customer experience: effective service assur...
The importance of network in the customer experience: effective service assur...The importance of network in the customer experience: effective service assur...
The importance of network in the customer experience: effective service assur...BSP Media Group
 
Just Fact: Using 4G mobile and fixed services on a dual mode WiMAX/LTE network
Just Fact: Using 4G mobile and fixed services on a dual mode WiMAX/LTE networkJust Fact: Using 4G mobile and fixed services on a dual mode WiMAX/LTE network
Just Fact: Using 4G mobile and fixed services on a dual mode WiMAX/LTE networkBSP Media Group
 
Leveraging APIs to drive Money Innovation
Leveraging APIs to drive Money Innovation Leveraging APIs to drive Money Innovation
Leveraging APIs to drive Money Innovation BSP Media Group
 

Viewers also liked (16)

Changing African Youth Attitude to the legal Digital Music
Changing African Youth Attitude to the legal Digital MusicChanging African Youth Attitude to the legal Digital Music
Changing African Youth Attitude to the legal Digital Music
 
Successful Strategies for optimized customer experience management
Successful Strategies for optimized customer experience management Successful Strategies for optimized customer experience management
Successful Strategies for optimized customer experience management
 
Mobile Money Regulation
Mobile Money Regulation Mobile Money Regulation
Mobile Money Regulation
 
The Telco journey to cloud
The Telco journey to cloudThe Telco journey to cloud
The Telco journey to cloud
 
From big data to big value : Infrastructure need and Huawei best practise
From big data to big value : Infrastructure need and Huawei best practise From big data to big value : Infrastructure need and Huawei best practise
From big data to big value : Infrastructure need and Huawei best practise
 
Capturing big value in big data
Capturing big value in big data Capturing big value in big data
Capturing big value in big data
 
Bsp media branded_rp_africacom_2013_verimatrix_freecopyx
Bsp media branded_rp_africacom_2013_verimatrix_freecopyxBsp media branded_rp_africacom_2013_verimatrix_freecopyx
Bsp media branded_rp_africacom_2013_verimatrix_freecopyx
 
Mobile financial Services & opportunities or threat
Mobile financial Services & opportunities or threat Mobile financial Services & opportunities or threat
Mobile financial Services & opportunities or threat
 
Working with OTT player in the Cloud
Working with OTT player in the Cloud Working with OTT player in the Cloud
Working with OTT player in the Cloud
 
What is an Accelerator? Where does it fit in Africa?
What is an Accelerator? Where does it fit in Africa?What is an Accelerator? Where does it fit in Africa?
What is an Accelerator? Where does it fit in Africa?
 
Traditional Media vs Digital Media
Traditional Media vs Digital Media Traditional Media vs Digital Media
Traditional Media vs Digital Media
 
Positioning itself as a broadcaster for all devices
Positioning itself as a broadcaster for all devicesPositioning itself as a broadcaster for all devices
Positioning itself as a broadcaster for all devices
 
Leveraging Big Data for bigger revenue.
Leveraging Big Data for bigger revenue.Leveraging Big Data for bigger revenue.
Leveraging Big Data for bigger revenue.
 
The importance of network in the customer experience: effective service assur...
The importance of network in the customer experience: effective service assur...The importance of network in the customer experience: effective service assur...
The importance of network in the customer experience: effective service assur...
 
Just Fact: Using 4G mobile and fixed services on a dual mode WiMAX/LTE network
Just Fact: Using 4G mobile and fixed services on a dual mode WiMAX/LTE networkJust Fact: Using 4G mobile and fixed services on a dual mode WiMAX/LTE network
Just Fact: Using 4G mobile and fixed services on a dual mode WiMAX/LTE network
 
Leveraging APIs to drive Money Innovation
Leveraging APIs to drive Money Innovation Leveraging APIs to drive Money Innovation
Leveraging APIs to drive Money Innovation
 

Similar to Boosting and securing online shopping - making PIN on phone a reality

NFC Presentation [Compatibility Mode]
NFC Presentation [Compatibility Mode]NFC Presentation [Compatibility Mode]
NFC Presentation [Compatibility Mode]Khaled Hasan
 
Mobile Payments - How is it done?
Mobile Payments - How is it done?Mobile Payments - How is it done?
Mobile Payments - How is it done?Parag Arjunwadkar
 
Lyra company profile 2018
Lyra company profile 2018Lyra company profile 2018
Lyra company profile 2018ChainikaThakar
 
Lyra company profile.ppt
Lyra company profile.pptLyra company profile.ppt
Lyra company profile.pptChainikaThakar
 
DG Bank’s Advanced Mobile Money Solution
DG Bank’s Advanced Mobile Money SolutionDG Bank’s Advanced Mobile Money Solution
DG Bank’s Advanced Mobile Money SolutionNikunj Gundaniya
 
SIMKOMAT - a new era of SIM-card sales
SIMKOMAT - a new era of SIM-card salesSIMKOMAT - a new era of SIM-card sales
SIMKOMAT - a new era of SIM-card salesSIMKOMAT
 
ONECARD FAQ
ONECARD FAQ ONECARD FAQ
ONECARD FAQ StanLoh
 
Payment gateway
Payment gatewayPayment gateway
Payment gatewayPiyush Dua
 
Wireless Payment System
Wireless Payment SystemWireless Payment System
Wireless Payment SystemDuy Anh
 
Digits ico-whitepaper-1v8c
Digits ico-whitepaper-1v8cDigits ico-whitepaper-1v8c
Digits ico-whitepaper-1v8cEtheralabs
 
Cash Less Society- Digital Payments
Cash Less Society- Digital PaymentsCash Less Society- Digital Payments
Cash Less Society- Digital Paymentsmahajanmanu
 
Patricio Walsh - eRetail Week Online [Live] Experience - ePayments
Patricio Walsh - eRetail Week Online [Live] Experience - ePaymentsPatricio Walsh - eRetail Week Online [Live] Experience - ePayments
Patricio Walsh - eRetail Week Online [Live] Experience - ePaymentseCommerce Institute
 
Strong Customer Authentication & Biometrics
Strong Customer Authentication & BiometricsStrong Customer Authentication & Biometrics
Strong Customer Authentication & BiometricsFIDO Alliance
 
PSD2: The Advent of the New Payments Market in Europe
PSD2: The Advent of the New Payments Market in EuropePSD2: The Advent of the New Payments Market in Europe
PSD2: The Advent of the New Payments Market in EuropeTransUnion
 
How the UK's #1 Mobile Network Enhanced Its Approval Rate by 10%, with Zero F...
How the UK's #1 Mobile Network Enhanced Its Approval Rate by 10%, with Zero F...How the UK's #1 Mobile Network Enhanced Its Approval Rate by 10%, with Zero F...
How the UK's #1 Mobile Network Enhanced Its Approval Rate by 10%, with Zero F...Vesta Corporation
 
Payment gateway/payment service providers and future trends in mobile payment...
Payment gateway/payment service providers and future trends in mobile payment...Payment gateway/payment service providers and future trends in mobile payment...
Payment gateway/payment service providers and future trends in mobile payment...Danail Yotov
 

Similar to Boosting and securing online shopping - making PIN on phone a reality (20)

NFC Presentation [Compatibility Mode]
NFC Presentation [Compatibility Mode]NFC Presentation [Compatibility Mode]
NFC Presentation [Compatibility Mode]
 
Mobile Payments - How is it done?
Mobile Payments - How is it done?Mobile Payments - How is it done?
Mobile Payments - How is it done?
 
Lyra company profile 2018
Lyra company profile 2018Lyra company profile 2018
Lyra company profile 2018
 
Lyra company profile.ppt
Lyra company profile.pptLyra company profile.ppt
Lyra company profile.ppt
 
DG Bank’s Advanced Mobile Money Solution
DG Bank’s Advanced Mobile Money SolutionDG Bank’s Advanced Mobile Money Solution
DG Bank’s Advanced Mobile Money Solution
 
Payment Gateway
Payment GatewayPayment Gateway
Payment Gateway
 
SIMKOMAT - a new era of SIM-card sales
SIMKOMAT - a new era of SIM-card salesSIMKOMAT - a new era of SIM-card sales
SIMKOMAT - a new era of SIM-card sales
 
Contactless payments
Contactless paymentsContactless payments
Contactless payments
 
ONECARD FAQ
ONECARD FAQ ONECARD FAQ
ONECARD FAQ
 
Payment gateway
Payment gatewayPayment gateway
Payment gateway
 
Wireless Payment System
Wireless Payment SystemWireless Payment System
Wireless Payment System
 
Digits ico-whitepaper-1v8c
Digits ico-whitepaper-1v8cDigits ico-whitepaper-1v8c
Digits ico-whitepaper-1v8c
 
Cash Less Society- Digital Payments
Cash Less Society- Digital PaymentsCash Less Society- Digital Payments
Cash Less Society- Digital Payments
 
Patricio Walsh - eRetail Week Online [Live] Experience - ePayments
Patricio Walsh - eRetail Week Online [Live] Experience - ePaymentsPatricio Walsh - eRetail Week Online [Live] Experience - ePayments
Patricio Walsh - eRetail Week Online [Live] Experience - ePayments
 
Strong Customer Authentication & Biometrics
Strong Customer Authentication & BiometricsStrong Customer Authentication & Biometrics
Strong Customer Authentication & Biometrics
 
PSD2: The Advent of the New Payments Market in Europe
PSD2: The Advent of the New Payments Market in EuropePSD2: The Advent of the New Payments Market in Europe
PSD2: The Advent of the New Payments Market in Europe
 
m:Cypher overview
m:Cypher overviewm:Cypher overview
m:Cypher overview
 
How the UK's #1 Mobile Network Enhanced Its Approval Rate by 10%, with Zero F...
How the UK's #1 Mobile Network Enhanced Its Approval Rate by 10%, with Zero F...How the UK's #1 Mobile Network Enhanced Its Approval Rate by 10%, with Zero F...
How the UK's #1 Mobile Network Enhanced Its Approval Rate by 10%, with Zero F...
 
Micro Finance with Smart Card
Micro Finance with Smart CardMicro Finance with Smart Card
Micro Finance with Smart Card
 
Payment gateway/payment service providers and future trends in mobile payment...
Payment gateway/payment service providers and future trends in mobile payment...Payment gateway/payment service providers and future trends in mobile payment...
Payment gateway/payment service providers and future trends in mobile payment...
 

Recently uploaded

A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)Gabriella Davis
 
A Call to Action for Generative AI in 2024
A Call to Action for Generative AI in 2024A Call to Action for Generative AI in 2024
A Call to Action for Generative AI in 2024Results
 
Boost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivityBoost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivityPrincipled Technologies
 
IAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI SolutionsIAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI SolutionsEnterprise Knowledge
 
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking MenDelhi Call girls
 
Transforming Data Streams with Kafka Connect: An Introduction to Single Messa...
Transforming Data Streams with Kafka Connect: An Introduction to Single Messa...Transforming Data Streams with Kafka Connect: An Introduction to Single Messa...
Transforming Data Streams with Kafka Connect: An Introduction to Single Messa...HostedbyConfluent
 
Enhancing Worker Digital Experience: A Hands-on Workshop for Partners
Enhancing Worker Digital Experience: A Hands-on Workshop for PartnersEnhancing Worker Digital Experience: A Hands-on Workshop for Partners
Enhancing Worker Digital Experience: A Hands-on Workshop for PartnersThousandEyes
 
Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365
Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365
Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 3652toLead Limited
 
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time AutomationFrom Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time AutomationSafe Software
 
The 7 Things I Know About Cyber Security After 25 Years | April 2024
The 7 Things I Know About Cyber Security After 25 Years | April 2024The 7 Things I Know About Cyber Security After 25 Years | April 2024
The 7 Things I Know About Cyber Security After 25 Years | April 2024Rafal Los
 
The Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptxThe Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptxMalak Abu Hammad
 
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdfThe Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdfEnterprise Knowledge
 
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...Miguel Araújo
 
Maximizing Board Effectiveness 2024 Webinar.pptx
Maximizing Board Effectiveness 2024 Webinar.pptxMaximizing Board Effectiveness 2024 Webinar.pptx
Maximizing Board Effectiveness 2024 Webinar.pptxOnBoard
 
Kalyanpur ) Call Girls in Lucknow Finest Escorts Service 🍸 8923113531 🎰 Avail...
Kalyanpur ) Call Girls in Lucknow Finest Escorts Service 🍸 8923113531 🎰 Avail...Kalyanpur ) Call Girls in Lucknow Finest Escorts Service 🍸 8923113531 🎰 Avail...
Kalyanpur ) Call Girls in Lucknow Finest Escorts Service 🍸 8923113531 🎰 Avail...gurkirankumar98700
 
Breaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path MountBreaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path MountPuma Security, LLC
 
08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking Men08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking MenDelhi Call girls
 
Automating Business Process via MuleSoft Composer | Bangalore MuleSoft Meetup...
Automating Business Process via MuleSoft Composer | Bangalore MuleSoft Meetup...Automating Business Process via MuleSoft Composer | Bangalore MuleSoft Meetup...
Automating Business Process via MuleSoft Composer | Bangalore MuleSoft Meetup...shyamraj55
 
Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024The Digital Insurer
 
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
04-2024-HHUG-Sales-and-Marketing-Alignment.pptxHampshireHUG
 

Recently uploaded (20)

A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)
 
A Call to Action for Generative AI in 2024
A Call to Action for Generative AI in 2024A Call to Action for Generative AI in 2024
A Call to Action for Generative AI in 2024
 
Boost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivityBoost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivity
 
IAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI SolutionsIAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI Solutions
 
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
 
Transforming Data Streams with Kafka Connect: An Introduction to Single Messa...
Transforming Data Streams with Kafka Connect: An Introduction to Single Messa...Transforming Data Streams with Kafka Connect: An Introduction to Single Messa...
Transforming Data Streams with Kafka Connect: An Introduction to Single Messa...
 
Enhancing Worker Digital Experience: A Hands-on Workshop for Partners
Enhancing Worker Digital Experience: A Hands-on Workshop for PartnersEnhancing Worker Digital Experience: A Hands-on Workshop for Partners
Enhancing Worker Digital Experience: A Hands-on Workshop for Partners
 
Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365
Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365
Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365
 
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time AutomationFrom Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
 
The 7 Things I Know About Cyber Security After 25 Years | April 2024
The 7 Things I Know About Cyber Security After 25 Years | April 2024The 7 Things I Know About Cyber Security After 25 Years | April 2024
The 7 Things I Know About Cyber Security After 25 Years | April 2024
 
The Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptxThe Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptx
 
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdfThe Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
 
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
 
Maximizing Board Effectiveness 2024 Webinar.pptx
Maximizing Board Effectiveness 2024 Webinar.pptxMaximizing Board Effectiveness 2024 Webinar.pptx
Maximizing Board Effectiveness 2024 Webinar.pptx
 
Kalyanpur ) Call Girls in Lucknow Finest Escorts Service 🍸 8923113531 🎰 Avail...
Kalyanpur ) Call Girls in Lucknow Finest Escorts Service 🍸 8923113531 🎰 Avail...Kalyanpur ) Call Girls in Lucknow Finest Escorts Service 🍸 8923113531 🎰 Avail...
Kalyanpur ) Call Girls in Lucknow Finest Escorts Service 🍸 8923113531 🎰 Avail...
 
Breaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path MountBreaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path Mount
 
08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking Men08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking Men
 
Automating Business Process via MuleSoft Composer | Bangalore MuleSoft Meetup...
Automating Business Process via MuleSoft Composer | Bangalore MuleSoft Meetup...Automating Business Process via MuleSoft Composer | Bangalore MuleSoft Meetup...
Automating Business Process via MuleSoft Composer | Bangalore MuleSoft Meetup...
 
Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024
 
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
 

Boosting and securing online shopping - making PIN on phone a reality

  • 1. This document is offered compliments of BSP Media Group. www.bspmediagroup.com All rights reserved.
  • 2. Boosting and securing online shopping - making PIN on phone a reality Africa Com 2013
  • 3. Oltio is a joint venture between the Standard Bank and MTN Groups – formally called MTN Mobile Money Bank • Largest banking group in Africa • Operates in 42 countries worldwide • Significant card issuer and acquirer • Largest Mobile Network Operator in Africa and Middle East • 21 countries • >200m subscribers “Oltio – the secure mobile commerce company” 2
  • 4. Oltio was a GSM-A Global Mobile awards finalist in 2012 with payD and MasterCard Mobile 3
  • 5. What is a mobile payment? What is online shopping? 4
  • 6. payD basics • • • • • • • • • • payD uses the handset as a “personal PIN entry device”; customers enter their ATM/POS PIN into their own phone when making a purchase. payD works across multiple channels – phone, web, POS, kiosk, App etc payD WIG uses SIM and handset based security to do the encryption of the PIN where the network has keys loaded to its SIMs. ORAGS App makes use of a 3DES DUKPT like security protocol for feature and smart phones where the SIM keys cannot be accessed. System constructs and submits to the acquirer an ISO 8583 transaction for debit and credit cards. The transaction is a CNP (card not present) with PIN. The normal four party card acquiring processes apply. In SA liability is shifted to issuer in a similar manner to 3D secure. payD has been live in SA for 4 years MasterCard approved and branded, Visa supported via marketing - in SA 5
  • 7. Case study: South Africa: good debit card with PIN penetration – POS and online usage poor due to limited debit card acceptance $10,000 • High levels of debit card penetration • PIN required due to single message ATM genesis • High GDP per capita - good retail potential • >120% mobile phone penetration • Airtime top-up via cash not card South Africa GDP per capita PPP $8,000 $6,000 $4,000 $2,000 GDP per Capita and Financial Penetration Indonesia Kenya Uganda 20% 40% 60% 80% 100% Financial Penetration 6
  • 8. The m and e-commerce challenge in South Africa Total retail sales in South Africa Online retail sales in South Africa: 0,36% 7
  • 9. The m and e-payments challenge in South Africa All payment types accepted Debit Cards with PIN code didn’t work in m and ecommerce 8
  • 10. There are an estimated 750 000 spaza shops in South Africa – with almost no POS acceptance •POS cost too high for merchants •Not viable to acquirers •VAS services key • • Less than 200 000 POS merchants in SA mostly in formal retail sectors Cost of POS high to merchant – R750pm min if turnover under R20 000 pm 9
  • 11. Flea markets and other informal merchants pose similar challenges New game: spot the POS 10
  • 12. The lack of electronic acceptance is impacting business growth – suppliers wont accept cash – not just an SA issue •Bulk distributors will not accept cash •Lack of electronic acceptance limits float to pay 11
  • 13. Using a phone as the merchant device is a logical leap but does have limitations in emerging markets •mPOS requires certification, distribution logistics and specific phones 12
  • 14. Card payment – traditional four party model needs to be retained…. Request Response A ACQUIRER Card is presented at terminal Tx details captured on POS and sent to acquirer Acquirer attempts authorisation from Issuer Request Response I ISSUER Response sent back to acquirer and to POS 13
  • 15. So…..which way? Converge carefully…. •Mobile Phones are pervasive and key to expanding payments •Phones need to be secure for PIN entry 14
  • 16. payD uses the phone‘s SIM to encrypt the PIN •SIM has encrypt and decrypt functionality •ISO PIN block can be created 15
  • 17. payD uses WIG security embedded into a mobile network operator's system Derived keys loaded onto the SIM card at the point of Manufacture WIG Gateway PIN-block returned HSM SIM Card containing a WIB browser That allows encryption of Data using the keys WIG Push for PIN Customer Enters PIN on Receipt of request Re-encrypted with Application Keys HSM Transaction Application Server System is protected by patents and licensed to operators 16
  • 18. …allowing the phone to become a Personal Key Entry Device - restricted to the identified cardholder = Personal Key Entry Device •Not for general PIN entry use by merchant •Locked to identified cardholder •Phone number is proxy for card number •No device certification required 17
  • 19. …..SIM and PIN = Chip and PIN Card PIN SIM 18
  • 20. payD replaces the card and POS A Request Response I Request Response ACQUIRER ISSUER Enabling Mobile Card Based Transaction - Card-Not-Present + PIN Secure encryption engine to capture and process ATM/POS PIN Auth Engine Customer’s card number linked to mobile number Request payD builds and sends formatted auth request to bank A Card Nr Mobile Nr I Response Response Database Request ACQUIRER ISSUER Mobile Phone number is used to identify cardholder 19
  • 21. payD is secure and PCI compliant •payD is PCI DSS level 1 compliant •PCI Compliance is not required by merchant/PSP in payD transaction as card details are captured into the customers phone •payD is a “cloud” POS •Reduces merchant risk and cost 20
  • 22. Authenticated Mobile Transaction (AMT) is a PASA approved Card PCH rule in South Africa • Card PCH specified and approved • PIN is captured into phone in secure manner • AMT rule is similar to 3D Secure and V-by-V • Liability shifts to issuer • Issuer opt-in required • Applies to all card types • payD conforms to AMT • Licensed in South Africa to IPSEP 2 1
  • 23. payD is supported by both MasterCard and Visa •MasterCard Mobile Remote Payment (MMRP) certified •Supported by Visa •Issuer opt–in required 22
  • 24. MTN uses payD to sell airtime directly to customers - via MTN Eazi Recharge – customers dial a USSD shortcode and enter the PIN in a WIG session *141*10# •Customers do on average 8 transactions pm • Debit card purchase as opposed to cash withdrawal •350 000 registered users 23
  • 25. As do Vodacom for their Express Recharge offering … *130*082# 24
  • 26. payD also enables e-commerce purchases for PIN-based cards 25
  • 27. payD WIG is a complex system and needs all elements to be in place to work - this isn't always the case outside of South Africa Key learning's from payD WIG • MNO dependence - requires MNO technical support – correct SIM, SIM keys and WIG to be in place • App is in – customers demand a richer experience – use of USSD declining and WIG/S@T has not proven successful to MNO’s 26
  • 28. ORAGS App – works on all networks, with 3DES DUKPT like security protocol - called ORAGS 1. Customer downloads App 2. Phone sends SMS to identify itself 3. Subset of keys sent to phone 4. Creates one off session Feature and smart phones PIN-block returned encrypted under secure protocol – one off use only 27
  • 29. ORAGS works across multiple channels vPos Physical POS App to App Low cost POS with no extra hardware required Can be used on current technology (no EMV compliance required). mCommerce Ticketing Cinema Airtime WEB eCommerce Simple API and simulator for merchant integration Static Parking Ticketing Retail F2F Code Entry Call Centre Outbound Sales Insurance In most instances App or USSD WIG can be used Kiosk Bill Payment 28
  • 30. Face-to-face provides the biggest opportunity for payment acceptance expansion and cash reduction 29
  • 31. Face-to-face using a phone App - no extra hardware is required - low level phones can be used 30
  • 32. POS – non-EMV for example – here using USSD 31
  • 33. App to App allows the monetisation of Apps 32
  • 34. Payment on web via App 33
  • 36. Tickets at a kiosk 35
  • 37. Payment using printed code via USSD and WIG 36
  • 38. Chargeback experience; well known SA ex- low cost airline • Largest low cost airline in SA – over 200 000 passengers per month • Linked to payD to allow debit cards to grow potential customer base Sample year; commencing July 2011: • 8900 tickets sold with sales values of R11m via payD • No confirmed charge backs via payD noted • 20% of usage was credit card and PIN • 3D not user friendly to mobile 37
  • 39. Stakeholder Benefits summary Stakeholder Card Issuer Card Acquiring Benefit  Provides additional value added services to cardholders by allowing mobile remote authentication  Increased PV on transactions through expansion of acceptance channels that except remote authentication  Enablement of debit cards for mobile authentication on cards that do not allow card not present transactions.  Expand acceptance network to include remote authentication solutions. Enjoy increased merchant fees from expanded estate.  Enable new card based payment channels, e.g. B2B mobile payments. Cardholder   Merchant   Card company         Convenience of using mobile phone to pay in remote authentication situations e.g. travel bookings No need to share card information with any merchant or payment gateway that reduces hacking of data Accept card based transactions in previously unsupported environments, e.g. debit e-commerce transactions. Cost savings through direct distribution capability of virtual services e.g. airtime. (In this scenario the mobile network operator becomes the merchant.) Enjoys liability shift rules similar to VbyV/3D – no need to be PCI Compliant Increased security of cardholder information. No card data is shared with a merchant when a transaction is processed. Out of band authentication ensures separation of card sensitive data. Data compromises do not enable fraudsters to replicate transactions or cloning cards. Remote authentication capability increases PV for issuers. Remote authentication capability can extend acceptance infrastructure within a market. Enables the mobile phone as an authentication device. Provides a direct communications interface to the cardholder. Promotions and offers can be better articulated and promoted. Increased security through GIS enablement of transaction info. All transactions carry a location 38 signature.
  • 40. The Future is - CNP plus PIN 39