Standard Seeks to Create More Secure PIN Entry for NFC Payment

As prospects for NFC-based mobile payment heat up, banks and payment brands are left with the problem of how to secure high-value transactions.

With viruses on smartphones an ever-present worry, some are not convinced it’s safe to allow consumers to enter PIN codes on handset keypads, which could be spied upon by fraudsters.

So some banks are requiring users in trials, such as one now going on in Spain, to enter their PINs on point-of-sale terminal keypads, which are then compared with PINs stored on the backend. Some NFC trial organizers don’t allow high-value transactions at all.

And while most banks and payment companies likely will want to enable PIN entry on the NFC handset to ensure the user experience is consistent, they might follow the lead of French banks, which in NFC pilots have renamed the PIN as the “personal code.” Although the banks emphasize that this code is different from the PINs used by customers for their French debit cards, it does not avoid the potential risks of an insecure phone keypad.

But vendors have been developing hardware and software that could provide a trusted area right on the phone processor, which could store encryption keys, certificates and other security measures.

This so-called “trusted execution environment” would add security features to help safeguard PIN entry on the phone keypad and also deter hackers from spying on transaction data displayed on the handset screen. It could offer a security boost for a range of other applications, including enabling secure access through corporate virtual private networks or digital rights management for games or music, among a range of services in app stores of the various smartphone makers.

“The picture is very clear, you will have a smartphone in your pocket; you will have a rich OS (operating system), and there is a real need for security whatever the OS,” Gil Bernabeu, technical director for GlobalPlatform, told NFC Times. “Currently, the Apple and RIM (BlackBerry maker Research in Motion) and Android stores, those guys are making applications with no security.”

GlobalPlatform is developing specifications that apply to software and hardware that use the trusted execution environment in phones. The specifications are for the application programming interface, or API, for applications that run in this trusted environment. The API would enable developers working with various smartphone operating systems and chips to develop applications across all the platforms. Their products now remain proprietary.

While most trusted execution environments on phones use a secure area called TrustZone by UK-based chip design company ARM Holdings, TrustZone ties into different operators systems, such as BlackBerry OS and Android. There are also different phone processor chip makers and also at least two major providers of software platforms for applications using TrustZone and the trusted execution environment–smart card vendor Giesecke & Devrient and Trusted Logic, owned by smart card maker Gemalto.

GlobalPlatform members ARM, Giesecke & Devrient, Trusted Logic and chip makers ST-Ericsson and Texas Instruments have worked on the specifications.

These specs will not only be used for NFC applications, and mobile operator group, the Open Mobile Terminal Platform, also worked on the specifications. The group is now known as the Wholesale Applications Community, or WAC.

But GlobalPlatform needs some support from the major smartphone makers and other chip makers for its specifications. The initiative presumably has the backing of Giesecke & Devrient and Trusted Logic. GlobalPlatform has formed a working group to continue work on the standard.

There is also a need for a secure connection from the trusted execution environment to the secure element or secure chip in the NFC phones, which would store the actual keys to the payment applications and the customers’ PIN codes. This chip could be on a SIM card, embedded in the handset itself or located elsewhere, such as in a microSD card inserted in the phone.

And even with the more secure phone keypad that the trusted environment provides, PIN entry on the phone to complete a payment transaction would not be considered as secure as entering PINs on POS terminal keypads that support the PIN Entry Device standard, or PED, of the PCI Security Standards Council.

But with NFC-based mobile payment expected to begin rolling out by next year, a standard promoting more secure phone keypads and screens is no doubt welcome news for banks and card brands. 

Article comments

 
MK.Mustafa Sep 14 2010

All these security issues can be solved if SCWS enabled SIM cards, this will enable all mobile to interact with mobile payment application which stored in SIM cards through web server. All encryption keys are stored in SIM and are not visible to phone OS all encryption operations are done in SIM card level.

Please register or login to post a comment.

HEADLINE NEWS

Smaller Slovakian Bus Agencies Support Virtual Cards in Google Pay

Two mid-tier bus operators in Slovakia are among the latest to enable their customers to tap virtual closed-loop transit cards in Google Pay to pay fares, using a provisioning service from NXP Semiconductors.

Case Study: BONNsmart Project Seeks to Introduce Open-Loop Payments to Cash-Loving Germany

SWB Bus and Bahn, the transit agency serving the city of Bonn, is the first such operator in Germany to accept contactless EMV payments.

Moovit Moves Forward to Enable Ticketing and Payments in App with More Transit Agencies

NFC TIMES Exclusive – Large trip-planning app provider Moovit has enabled customers of more than 50 mostly small transit agencies in the U.S. to buy mobile tickets it its app, with more agencies to come, the company confirmed to Mobility Payments.

Cubic: Recent MaaS Company Failures among Signs Pointing to Need for ‘MaaS 2.0’

There is little disputing the fact that mobility as a service has not yet lived up to its hype. And the industry’s largest automated fare collection system provider, Cubic Transportation Systems, said it believes that going forward, public transit services need to form the backbone of MaaS platforms, along with enabling more demand-responsive transport.

State of California Seeks to Change Way Transit Agencies Procure Fare Systems

As the California Department of Transportation, or Caltrans, sees it, the state’s more than 300 local transit agencies offer a fragmented and inefficient mix of fare collection systems–a fact it says discourages many potential riders among the state’s nearly 40 million residents from taking public transit.

Google Launches Ticketing in Maps after Delays; but Search Giant Says It has No Plans to Build MaaS App

Google has finally enabled users to initiate purchases of public transit tickets from its Maps app, following delays. Meanwhile, rival trip-planning app providers Moovit and Transit have been quietly moving forward with signing up most of the same small U.S. transit agencies to sell tickets in their apps.

Washington, D.C.’s, SmarTrip Latest Closed-Loop Fare Card Added to Pays Wallet

NFC TIMES Exclusive Insight – The Washington Metropolitan Area Transit Authority, or WMATA, as expected, has added its closed-loop fare card SmarTrip to Google Pay, following support by Apple Pay for the card last year.

Open-Loop Payments Trial at Small California Transit Agency Could Lead to More Rollouts in Giant State

NFC TIMES Exclusive Insight – California public bus agency Monterey-Salinas Transit on Tuesday officially launched a six-month “demonstration” project to pilot contactless open-loop payments. While the agency is very small, providing only around 3,500 rides per day last year, the launch holds much greater significance.

Cubic Announces Two More Small Transit Agencies Launching Umo, as Company Seeks to Broaden Market Reach

NFC TIMES Exclusive Insight – U.S.-based Cubic Transportation Systems has announced contracts with two more small U.S. transit agencies to move to Cubic’s Umo ticketing platform, as the large automated fare-collection system vendor seeks to broaden its market reach.

In-Depth: Transit Agency Sells Passes for Bikes and Buses through Trip-Planning App, though Cash Still Reigns

NFC TIMES Exclusive Insight – RTC of Southern Nevada, the main transit agency serving Las Vegas and the surrounding region, now enables customers to buy passes for bike share in addition to tickets for buses through the trip-planning Transit app. Although the implementation is relatively small, project backers say Las Vegas is the first U.S. city to launch bike share and transit passes in the same app.

Budding MaaS App Hits Milestone for Public Transit Tickets but Share of Total Rides Still Low

NFC TIMES Exclusive Insight – U.S.-based trip-planning app Transit announced it has enabled 500,000 rides from its app for a group of 13 small to mid-tier transit agencies based in the state of Ohio, though mobile ticketing still makes up a small percentage of total rides provided by the agencies.

Insight: Apple Pay Launch of Virtual Closed-Loop Virtual Clipper Card Follows Emerging Trend

NFC Times Exclusive Insight – Although the trend for transit agencies to support open-loop fare payments, including with Apple Pay, Google Pay and other Pays wallets, has continued unabated–even accelerated–during the pandemic, another trend is taking shape: That of agencies adding virtual versions of their closed-loop fare cards into the Pays wallets.