Visa to Strengthen Payment Security in Australia with Chip and PIN
Visa has announced details of a five-year agenda for Australia to strengthen the security of the payments system. As part of the agenda, Visa will engage in discussions with Australian financial and merchant communities to set deadlines for the implementation of seven key security initiatives. Visa says that "all of the initiatives will provide greater protection against fraud for cardholders, merchants and financial institutions, while some will also help to reduce the time it takes to make an electronic transaction."
These initiatives are aimed at addressing online fraud; fraud resulting from lost, stolen and counterfeit cards and from the possible theft of personal information.
Although fraud in Australia is low by world standards, new initiatives are required to help manage the trend from cash and cheque to electronic payments.
The seven key initiatives planned for implementation within the next five years are:
- Ensuring all merchant terminals in Australia are chip-capable and operational;
- Moving to 100 percent chip card issuance earlier than planned;
- Introducing a broad rollout of PIN (Personal Identification Number) verification for all domestic transactions with the aim of ending the use of signature;
- Enrolling all cardholders in the online authentication system - Verified by Visa;
- Requiring all online merchants in Australia to check the three-digit security code (Cardholder Verification Value 2) on the back of the card;
- Ensuring higher levels of data security protection at “Level Four” eCommerce merchants and,
- Ensuring all Automated Teller Machines (ATMs) are chip-enabled and activated.
Visa already offers 100 percent purchase protection across all of its credit, debit and prepaid cards issued in Australia under its Zero Liability policy. Under this policy, Visa cardholders are not held liable for unauthorized transactions whether they are conducted online, in person or over the phone.
Visa’s General Manager for Australia, New Zealand and the South Pacific, Mr. Chris Clark, said a number of factors had combined meaning Australia could now enhance the payments system.
“The time is now right to take advantage of new technologies and to strengthen the system in so doing. While we have a versatile, robust and secure system at present, these initiatives will make it even better,” Mr Clark said.
“Since 2003, all new terminals have been chip-capable and now all of the major banks and several smaller institutions are issuing chip cards. This year, we have introduced PIN verification on Visa transactions.
“We’re also seeing more and more transactions on electronic payment products. For the 12 months ending December 2007, the Australian Payments Clearing Association reported that $251 billion was transacted in Australia on credit and charge products offered by Visa and other organizations. More and more of these transactions are online.
“The initiatives planned for the next five years will help to combat further all types of fraud and make the system quicker and easier to use6. While these initiatives are being implemented, consumers can continue to use the system, as they have done for years, with confidence.
“The initiatives involving chip-enabled terminals and chip cards will see Australia move to 100 percent chip implementation for all Visa cards and terminals, rather than just the majority, earlier than planned. The introduction of PIN as the cardholder verification method will add another layer of security for card present transactions and will see Visa cardholders transact even faster than they do now,” Mr Clark said.
According to Mr Clark, Visa will also focus on the online environment. “As part of our security agenda, we will require all online merchants to check the three-digit security code on the back of the card before processing a transaction. This will be followed at a later date by the automatic enrollment of cardholders in Verified by Visa and encouraging merchants to offer this service,” he said.
“The merchant community has been rapidly adopting the Payment Card Industry Data Security Standard (PCIDSS) and the focus has been on high volume merchants. We also need to make sure merchants at the other end of the scale are equally secure. The final part of the plan involves fitting current and new ATMs with chip card readers. Once this is introduced, we will be taking full advantage of chip card technology.
“In early 2009, Visa will convene meetings with financial institutions and merchants to develop an appropriate timetable for the implementation of these initiatives. While Visa hopes to have all of this completed within five years, it is looking to introduce most initiatives sooner rather than later,” Mr Clark said.
Background information
CVV2 – three digit security code
Payment Card Industry Data Security Standards http://www.corporate.visa.com/md/nr/press873.jsp http://www.visa-asia.com/ap/au/merchants/riskmgmt/ais.shtml
Any update on this plan from visa? dates?
Posted by: ireneo policar | June 10, 2009 at 09:32 PM