Standard Seeks to Create More Secure PIN Entry for NFC Payment

As prospects for NFC-based mobile payment heat up, banks and payment brands are left with the problem of how to secure high-value transactions.

With viruses on smartphones an ever-present worry, some are not convinced it’s safe to allow consumers to enter PIN codes on handset keypads, which could be spied upon by fraudsters.

So some banks are requiring users in trials, such as one now going on in Spain, to enter their PINs on point-of-sale terminal keypads, which are then compared with PINs stored on the backend. Some NFC trial organizers don’t allow high-value transactions at all.

And while most banks and payment companies likely will want to enable PIN entry on the NFC handset to ensure the user experience is consistent, they might follow the lead of French banks, which in NFC pilots have renamed the PIN as the “personal code.” Although the banks emphasize that this code is different from the PINs used by customers for their French debit cards, it does not avoid the potential risks of an insecure phone keypad.

But vendors have been developing hardware and software that could provide a trusted area right on the phone processor, which could store encryption keys, certificates and other security measures.

This so-called “trusted execution environment” would add security features to help safeguard PIN entry on the phone keypad and also deter hackers from spying on transaction data displayed on the handset screen. It could offer a security boost for a range of other applications, including enabling secure access through corporate virtual private networks or digital rights management for games or music, among a range of services in app stores of the various smartphone makers.

“The picture is very clear, you will have a smartphone in your pocket; you will have a rich OS (operating system), and there is a real need for security whatever the OS,” Gil Bernabeu, technical director for GlobalPlatform, told NFC Times. “Currently, the Apple and RIM (BlackBerry maker Research in Motion) and Android stores, those guys are making applications with no security.”

GlobalPlatform is developing specifications that apply to software and hardware that use the trusted execution environment in phones. The specifications are for the application programming interface, or API, for applications that run in this trusted environment. The API would enable developers working with various smartphone operating systems and chips to develop applications across all the platforms. Their products now remain proprietary.

While most trusted execution environments on phones use a secure area called TrustZone by UK-based chip design company ARM Holdings, TrustZone ties into different operators systems, such as BlackBerry OS and Android. There are also different phone processor chip makers and also at least two major providers of software platforms for applications using TrustZone and the trusted execution environment–smart card vendor Giesecke & Devrient and Trusted Logic, owned by smart card maker Gemalto.

GlobalPlatform members ARM, Giesecke & Devrient, Trusted Logic and chip makers ST-Ericsson and Texas Instruments have worked on the specifications.

These specs will not only be used for NFC applications, and mobile operator group, the Open Mobile Terminal Platform, also worked on the specifications. The group is now known as the Wholesale Applications Community, or WAC.

But GlobalPlatform needs some support from the major smartphone makers and other chip makers for its specifications. The initiative presumably has the backing of Giesecke & Devrient and Trusted Logic. GlobalPlatform has formed a working group to continue work on the standard.

There is also a need for a secure connection from the trusted execution environment to the secure element or secure chip in the NFC phones, which would store the actual keys to the payment applications and the customers’ PIN codes. This chip could be on a SIM card, embedded in the handset itself or located elsewhere, such as in a microSD card inserted in the phone.

And even with the more secure phone keypad that the trusted environment provides, PIN entry on the phone to complete a payment transaction would not be considered as secure as entering PINs on POS terminal keypads that support the PIN Entry Device standard, or PED, of the PCI Security Standards Council.

But with NFC-based mobile payment expected to begin rolling out by next year, a standard promoting more secure phone keypads and screens is no doubt welcome news for banks and card brands. 

Article comments

 
MK.Mustafa Sep 14 2010

All these security issues can be solved if SCWS enabled SIM cards, this will enable all mobile to interact with mobile payment application which stored in SIM cards through web server. All encryption keys are stored in SIM and are not visible to phone OS all encryption operations are done in SIM card level.

Please register or login to post a comment.

HEADLINE NEWS

Ohio Transit Agency Expects Significant Revenue Loss as it Builds Equity with Fare Capping

The Central Ohio Transit Authority, or COTA, officially launched its new digital-payments service Monday, including a fare-capping feature that the agency estimates will cost it $1.8 million per year in lost fare revenue, the agency confirmed to Mobility Payments.

Special Report: Interest Grows in ‘White-Label EMV’ for Closed-Loop Transit Cards

As more transit agencies introduce open-loop fare payments, interest is starting to grow in use of white-label EMV cards that agencies can issue in place of proprietary closed-loop cards for riders who don’t have bank cards or don’t want to use them to pay fares.

Swedish Transit Agency Launches Express Mode Feature for Apple Pay, though Most Ticketing Still with Barcode-Based App

Skånetrafiken, the transit agency serving one of Sweden’s largest counties, announced today it has expanded its contactless open-loop payments service to include the Express Mode feature for Apple Pay.

Major Bus Operators in Hong Kong Now Accepting Open-Loop Payments–Adding More Competition for Octopus

Two more bus operators in Hong Kong on Saturday launched acceptance of open-loop contactless fare payments, with both also accepting QR code-based mobile ticketing–as the near ubiquitous closed-loop Octopus card continues to see more competition.

Moscow Metro Launches Full Rollout of ‘Face Pay;’ Largest Biometric Payments Service of Its Kind

Touting it as the largest rollout of biometric payments in the world, Moscow Metro launched its high-profile “Face Pay” service Friday, as expected, and predicted that 10% to 15% would regularly us

Indonesian Capital Seeks to Expand to Multimodal Fare Collection and MaaS

Indonesia’s capital Jakarta, whose metropolitan area is home to more than 30 million people, is notorious for its stifling traffic congestion. In response, the government metro and light-rail networks and now it is funding an expansion of the fare-collection system to enable more multimodal payments and to build a mobility-as-a-service platform.

Exclusive: NFC Wallets Grow as Share of Contactless Fare Payments and Not Only Because of Covid

Transit agencies that have rolled out open-loop contactless payments are seeing growing use of NFC wallets to pay fares, as Covid-wary passengers see convenience in tapping their phones or wearables to pay.

Paris Transit Authority Moves Closer to Rolling Out Mobile Ticketing on Range of Android Phones

Large Paris regional transit authority Île-de-France Mobilités is finally moving closer to supporting mobile ticketing on a range of Android phones using host-card emulation technology from Google, after having rejected the technology as not secure enough.

Exclusive: Share of Contactless Rides Paid for with Apple Pay and other Pays Wallets in Manchester More than Doubles in Two Years

Transport for Greater Manchester in the UK is the latest transit agency seeing substantial growth of contactless open-loop fare payments from NFC mobile wallets–with the percentage of its contactless tram trips paid for with Apple Pay, Google Pay and other Pays services more than doubling over the past two years, NFC Times' sister publication Mobility Payments has learned.

Fifth Transit Agency to Conduct Open-Loop Payments Trial, Testing California’s ‘Mobility Marketplace’

California transit agency Santa Cruz Metropolitan Transit District said it plans to launch a pilot of contactless open-loop payments in early 2022, as it seeks to increase customer convenience and reduce use of cash on board its buses, NFC Times' sister publication Mobility Payments has learned.

In-Depth: Contactless Transactions Soar, but Transport for London Affirms that Oyster Will Remain Payments Option

Contactless open-loop payments have surged in recent months for Transport for London, returning to their steep growth trajectory before the pandemic, and now account for 70% of all pay-as-you-go, or PAYG, trips on the London Underground and two-thirds of PAYG trips on buses. And contactless has surpassed 50% of all trips–including those made with season tickets (see chart below).

Transport for London to Offer Weekly Fare Capping with Oyster Cards; Move Expected to Drive Even More Riders to Pay as You Go

In a move expected to make Transport for London’s pay-as-you-go model even more dominant and further erode support for season tickets and other period travel passes, the agency today said it will i