Transaction Security

Recommendations

Info

CEO Interviews Michael Keresman, CardinalCommerce (cont.) “CCA is different because Cardinal is the only one in the market that provides this service or anything like it. The market essentially relies on two mutually exclusive parties to help take fraud out of the system.” How is Cardinal’s Consumer Authentication (CCA) service different from other providers in the marketplace? CCA is different because Cardinal is the only one in the market that provides this service or anything like it. The market essentially relies on two mutually exclusive parties to help take fraud out of the system. Merchants use fraud screening services and issuers use their version of risk mitigation technologies. Each of the parties attempts to assess which orders are “suspicious” and depending on their respective criteria, eliminates those orders. Merchants won’t submit their suspicious orders for authorization and issuers will not authorize orders that fall into their criteria of such. In the POS world, there are many specifics regarding a transaction: the store, POS terminal and the consumer can be identified fairly easily … but online, not so much. Remote commerce has inherent suspicions that the POS world does not have. The end result is both sides of the transaction (the merchant and the IB) grind down potential orders to the lowest common denominator of “good” orders, because their respective systems use mutually exclusive information and approaches. Good orders that the issuer might authorize are thwarted by the merchants’ fraud screening services, and orders from the merchant’s perspective that are “good” are not authorized by the issuer. Only CCA creates a collaborative approach in which there is visibility in how each side would treat the transaction, essentially increasing the authorization yield from the lowest common denominator of “good” orders to the highest common denominator of “good’ orders. Yet, and importantly, both sides still have veto power when the order is very suspicious. It may be easiest to understand this as a classic 2 X 2 matrix; yes/yes, yes/no, no/yes and no/no. In the yes/no and no/yes the respective “yes” side can decide to accept the transaction, whereas without this approach those orders would most likely be declined or not authorized. Both the merchants and issuers have a vested interest in ensuring “good” orders are not thwarted. Sometimes the merchant has the better vantage point in knowing what is good and other times the issuer does. CCA, more or less, creates a real-time arbitrage of determining the quality of an order with this collaborative approach. Why can’t acquirers, networks and issuers solve authentication / fraud problems themselves? The acquirers, networks and issuers are connected to each other through the authorization stream (authorize, capture and settle transactions) after the order begins to be processed. In the POS world, the authentication happens at the cash register, the card is verified and the consumer, if necessary, is authenticated prior to “swiping” the card. For remote transactions, there is not a way to validate the card (i.e. card swipe), nor authenticate the consumer, prior to requesting an authorization, without Consumer Authentication. Simply put, the vast and complex card processing system was designed to authorize, capture and settle payments for the face-to-face, or POS, world. The merchant is responsible in the POS world to authenticate the consumer is who he says he is. The merchant needed to figure out how to authenticate consumers for Card-Not-Present (CNP) commerce. That is where Cardinal comes in. With CCA, this challenge is successfully addressed by arranging a private session with the consumer’s funding source or IB, BEFORE there is a request to authorize the payment. There are literally billions of consumers, millions of merchants and thousands of issuing banks, and the permutations and combinations of merchant/bank processors, software/hardware systems and connectivity is almost beyond comprehension. Cardinal leverages 3DS, enables over 100 payment brands, harmonizing transactions through this maze. 34
CEO Interviews Michael Keresman, CardinalCommerce (cont.) “In every country in which EMV has been implemented, there was lower fraud at POS, but that fraud quickly leaped to the less secure channels, such as remote commerce… CCA is the perfect complement to EMV, providing protection for the remote channels as EMV provides for POS commerce.” Why is the incumbent payments system ill-equipped to handle omni-channel commerce? Each distribution channel is designed to attract the most consumers in the best possible way to sell more goods or services, as they should be. Payments are forced to fit into those distribution channels and each channel has limitations and advantages. For example, POS transactions have positive validation that the card is authentic, while in remote commerce this creates a challenge. Wallets such as PayPal are easy to use online but not easy in the conventional POS world. Similarly, the merchant order management system and payment infrastructure was designed only for POS transactions. Remote commerce (i.e., e-commerce, mobile commerce, etc.) were more or less forced to fit the traditional payment systems and generally are only connected at the “back-end,” rather than through the entire order management-payment supply chain front-end. For example, there are retailers that have difficulty accepting their own private label card online, new payment brands such as PayPal don’t quite fit the existing set of order management-financial supply chain sets of railroad tracks and even PIN debit, while accepted in stores, has challenges in remote commerce. Fraudsters can also exacerbate the matter by buying online with someone else’s account, and return merchandise to the store for a refund or product exchange. In short, the payment system was designed for POS sales and doesn’t have channel ubiquity, nor is it very flexible to handle omni-channel commerce. With Cardinal Centinel, all of those disparate payment brands, methods or approaches are harmonized via the centralized Cardinal SafeCloud TM technology. Centinel, our Universal Merchant Platform, is able to digest the information from virtually any connected device, and translate, format and route that transaction in a digestible data package for the merchant’s existing financial service supply chain. This, in effect, helps FutureProof a merchant’s payment needs. New devices, payment methods or approaches once added to Centinel give the merchant, through Centinel’s Super APITM, a seamless harmonization of change. How do you see the overall market (and Cardinal) being impacted by the upcoming EMV deadline? Adoption of EMV (chip-enabled) credit cards in the U.S. is imminent, with the first deadline in October 2015. EMV will do quite a bit to remedy fraud, especially counterfeit card fraud in the POS environments. As indicated by EMV conversions in all other markets, this change will cause a significant increase in CNP fraud rates. Said another way, in every country in which EMV has been implemented, there was lower fraud at POS, but that fraud quickly leaped to the less secure channels, such as remote commerce. This is because EMV doesn’t address remote commerce because connected devices don’t have the expensive ‘chip’ card readers the stores will have. Cardinal Consumer Authentication (CCA) is the perfect complement to EMV, providing protection for the remote channels as EMV provides for POS commerce. Fraudsters will go after the easier targets. Online merchants will want to protect their business from the greater increase in fraud attempts. This is also especially true for merchants that only sell online or in remote channels. As the crooks will be more thwarted by EMV at the POS, they won’t quit, rather they will seek the less secure channels. 35
Page 1 and 2: Financial Technology Partners Augus
Page 3 and 4: I. Executive Summary
Page 5 and 6: Executive Summary Overview (cont.)
Page 7 and 8: Selected Industry Trends E-Commerce
Page 9 and 10: Selected Industry Trends Difficulty
Page 11 and 12: Selected Industry Trends Comparison
Page 13 and 14: Selected Industry Trends Overview o
Page 15 and 16: Selected Industry Trends EMV Mandat
Page 17 and 18: Selected Industry Trends Consumer P
Page 19 and 20: Overview of Transaction Security Te
Page 21 and 22: Merchant Solutions Issuer Solutions
Page 31 and 32: IV. CEO Interviews
Page 33: CEO Interviews Michael Keresman, Ca
Page 37 and 38: CEO Interviews Michael Keresman, Ca
Page 39 and 40: CEO Interviews Yaron Samid, BillGua
Page 41 and 42: CEO Interviews Nuno Sebastiao, Feed
Page 43 and 44: CEO Interviews Nuno Sebastiao, Feed
Page 45 and 46: CEO Interviews Reed Taussig, Threat
Page 51 and 52: V. Competitive Landscape
Page 53 and 54: Competitive Landscape Transaction S
Page 55 and 56: VI. Selected Company Profiles
Page 57 and 58: Selected Company Profiles Company P
Page 85 and 86:
Selected Company Profiles Company P
Page 87 and 88:
Page 89 and 90:
Page 91 and 92:
Page 93 and 94:
Page 95 and 96:
30 25 20 15 10 5 0 20 18 16 14 12 1
Page 97 and 98:
Financing and M&A Transactions Tran
Page 99 and 100:
Page 101 and 102:
Page 103 and 104:
Page 105 and 106:
A. Singtel Acquires Trustwave for $
Page 107 and 108:
Singtel Acquires Trustwave for $810
Page 109 and 110:
Singtel Acquires Trustwave for $810
Page 111 and 112:
Early Warning Acquires Authentify T
Page 113 and 114:
Early Warning Acquires Authentify E
Page 115 and 116:
Overview of FT Partners Strong Doma
Page 117 and 118:
Overview of FT Partners Feedzai Rai
Page 119 and 120:
Overview of FT Partners FT Partners
Page 121 and 122:
Overview of FT Partners Selected FT
Page 123 and 124:
Overview of FT Partners Platform of
show all

Transaction Security

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?