Title :
The Implementation of a Full EMV Smartcard for a Point-of-Sale Transaction and Its Impact on the PCI DSS
Author :
Ogundele, O. ; Zavarsky, Pavol ; Ruhl, Ron ; Lindskog, Dale
Author_Institution :
Inf. Syst. Security Dept., Concordia Univ., Edmonton, AB, Canada
Abstract :
This paper argues that given the relevant known vulnerabilities and attacks against the EMV (named after Euro pay, MasterCard and Visa) technology, if the combined dynamic data authentication (CDA) card variant of the EMV payment card is deployed in a full EMV environment for point of sale terminal (POS) transaction, it becomes unnecessary to comply with the Payment Card Industry Data Security Standard (PCI DSS) unless the merchant with the POS terminal has been exposed to proven breach and even in that case the damage caused is likely to be minimal.
Keywords :
credit transactions; point of sale systems; security of data; smart cards; Euro pay; MasterCard; PCI DSS; Payment Card Industry Data Security Standard; Visa; combined dynamic data authentication; full EMV smartcard; point-of-sale transaction; Authentication; Authorization; Credit cards; Cryptography; Decision support systems; Standards; Chip and PIN; EMV; Magnetic-stripe; PCI DSS; Payment card; Point of sale terminal;
Conference_Titel :
Privacy, Security, Risk and Trust (PASSAT), 2012 International Conference on and 2012 International Confernece on Social Computing (SocialCom)
Conference_Location :
Amsterdam
Print_ISBN :
978-1-4673-5638-1
DOI :
10.1109/SocialCom-PASSAT.2012.80
