SecurityCents Blog

Insights on payment data security, payments news and trends

4 Payment Technologies Hospitality Businesses Need to Increase Security

Hospitality is a dynamic industry and is constantly evolving, particularly with the integration of new technologies to engage customers and improve service quality. Hospitality executives need to be aware of key technologies in the market, including the latest developments in payment solutions. I’ve summarized four technologies that hospitality tech executives need to understand.

NRF 2017 Recap

Another January and another NRF Big Show under our belts. This year’s show was very well attended with over 33,000 attendees and 500+ vendors. Sir Richard Branson delivered a great keynote describing the foundation of Virgin Atlantic after being stranded on vacation and chartering his own plane and selling the extra seats to other stranded travelers.

Payment Security and its Impact in Lodging

As payment security has evolved over the years, so has merchants’ implementation and approaches to PCI and security. Separating PCI from security makes sense because PCI is considered a minimum set of standards to try to keep a merchant’s environment, and customer’s data in that environment, secure.

Hotel Data Security: Why Cloud Computing is the Reliable Option

In the early days there was a little bit of fear mongering regarding the security of the cloud and despite its wide scale adoption (more than 90% of enterprises and 52% of all SME use cloud services in the US) cloud computing is still an object of skepticism for some who have mixed feelings about it’s security and reliability.

Pay at the Table – What do you think of the process?

The move to EMV has introduced a number of changes for both customers and merchants. One of the most impacted will be table service restaurants. Consumers are used to going to a “sit down” restaurant, ordering their meal, and then paying their wait staff by handing them a credit card. With EMV, in theory, the process should have the wait staff bring the payment device to the consumer, hand the device to the consumer, and then and wait for the transaction to complete. This has raised eyebrows in the U.S., as consumers are left feeling uncomfortable with a hovering waiter.

Impact of Terminal Configurations in U.S. EMV | Part IV

What About Liability

The stick in the card brands’ EMV initiative is, of course, merchant liability for transactions for which merchants are considered the “less secure” party. In the case of Visa, the rules are very simple. If the merchant processes the transaction as an EMV card, the merchant is protected. On the off chance that it is a PIN Preferring Visa card (possible if it is an international card), and the merchant processes it as a signature CVM, the merchant is still protected in the event the card was lost or stolen. For the other card brands, the rules are slightly more complex. If the card is PIN-preferring, and the merchant supports PIN-preferring, the issuer holds the liability. If however, the card is PIN-preferring and the merchant is only supporting signature, the liability would fall to the merchant in the event the card was lost or stolen because the merchant is deemed the least secure party.

Impact of Terminal Configurations in U.S. EMV | Part III

What Role Does the PIN Pad Play?

While the card maintains a CVM priority list, the PIN pad also has a configuration that determines which CVMs it can support. For example, a customer-facing terminal can be set up to support:

– Online PIN
– Offline PIN
– Signature
– No CVM

Are you ready for MasterCard® 2 Series BIN?

MasterCard® has announced that it is creating a new BIN (Bank Identification Number) range for MasterCard®, which will effectively double the number of available MasterCard® credit cards worldwide. This will enable growth in card products as well as accommodate the need for new card numbers made necessary for card brand payment tokens when cardholders load a payment card into a digital wallet on their personal digital device (e.g., mobile phone, tablet, etc.).

Impact of Terminal Configurations in U.S. EMV | Part II

How are the Chips Falling?

In the United States, Visa determined early on that it would recommend to its issuers that signature be the preferred CVM for all Visa cards issued in the United States. Issuers agreed, and so Visa cards are almost exclusively signature-based cards. MasterCard, however, recommended that issuers make its cards PIN-preferring rather than signature-preferring. At this time, the vast majority of MasterCard’s issued still remain signature-based, although there is a small percentage that are PIN-preferring. Both Discover and American Express have started with signature-based cards.