What's Next After the EMV Migration? Tokenization

Email     |     Share  
1 | 2 | 3 | 4 | 5 | 6 | 7
Next What's Next After the EMV Migration? Tokenization-4 Next

Avoid Regulatory Compliance

Tokens are often exempt from regulatory audits as they replace original credit card data with random values. Because tokenization completely replaces sensitive credit card data, all transaction systems are able to use tokens, thereby reducing the number of devices that must meet PCI DSS compliance requirements. Not only does tokenization better protect sensitive data, it also greatly reduces efforts and costs to be compliant with the latest security requirements.

As one of the last countries in the world, the U.S. will migrate to an EMV-based payments infrastructure on October 1, 2015. By then, Visa and MasterCard alone will have issued more than 550 million chip and pin cards. While migration to an EMV-based payments infrastructure is a significant step in securing payment data, it won't eradicate all risks.

Typically, payment data flows from the customer in the swipe of the payment card, via the merchant's point-of-sale terminal, to the acquirer and then onward to the card association for payment validation. When an EMV chip is embedded in a card, it helps ensure that the card being used is real and that it in fact belongs to the person using it, thereby drastically reducing the risk of stolen or counterfeit cards in comparison to traditional magnetic stripe cards.

These chip and pin cards are a vast improvement for preventing counterfeit use in comparison to traditional magnetic stripe cards. However, security controls still need to be put in place to protect cardholders' confidential information on payment cards not just at the moment the card is swiped or dipped, but all the way through the transaction process. To secure data in-transit, merchants are turning to tokenization.

In this slideshow, Malte Pollman, CEO of Utimaco, a leading manufacturer of hardware-based security solutions, looks at how merchants will need to take extra steps toward encryption and tokenization if they want to truly secure transactions.


Related Topics : Unisys, Stimulus Package, Security Breaches, Symantec, Electronic Surveillance

More Slideshows

Compliance4-190x128 GRC Programs: Building the Business Case for Value

Experience shows that organizations that manage GRC as an integrated program — involving people, processes and technologies — are more successful in delivering value to their organizations ...  More >>

Social14-190x128.jpg 10 Ways to Improve Your Social Media Security Policy and Posture

When phone calls, video conference information, pictures, chat logs, etc. are all stored in a central location via social media, a potential hacker has access to just about everything, quickly and easily. ...  More >>

Security120-290x195 5 DDoS Myths Debunked

Unearth the real story behind five commonly held myths about distributed denial-of-service attacks. ...  More >>

Subscribe to our Newsletters

Sign up now and get the best business technology insights direct to your inbox.