The Payments Ecosystem: Security Challenges in the 21st Century
Project and Program: Enterprise Data Center
, Security and Compliance
, SHARE in Anaheim 2012
Credit and debit cards--whether they use magnetic stripes, EMV (";chip" cards), or near-field communication--are an established feature of world commerce, and we all know that they are built on embedded devices, various networks, and high-performance back-end computer systems.
But how does this ecosystem really work? What are its vulnerabilities and security gaps, and how can we defend them?
As story after story in the press has demonstrated, simply keeping your physical card secure is no longer sufficient --and neither is protecting the IT perimeters of card processing systems. Millions of card numbers have been breached at all layers of the system, despite companies' best efforts to secure at a system level. The Payment Card Industry Data Security Standard (PCI DSS) lays down excellent guidelines to help secure data, but some breaches have occurred despite passing PCI DSS compliance assessments.
Come learn about how the threat landscape is evolving, what the attackers are doing, and how merchants and processors are reacting to counter it.
Phil Smith ; Voltage Security, Inc.
Back to Proceedings File Library