Authorizing Card Payments with PINs
Authors | |
---|---|
Year of publication | 2008 |
Type | Article in Periodical |
Magazine / Source | Computer |
MU Faculty or unit | |
Citation | |
Web | http://csdl2.computer.org/persagen/DLAbsToc.jsp?resourcePath=/dl/mags/co/&toc=comp/mags/co/2008/02/mco02toc.xml&DOI=10.1109/MC.2008.40 |
Field | Informatics |
Keywords | Chip and PIN technology; ecommerce; PIN pads |
Description | Chip \& PIN is the name of the new technology supposed to considerably decrease fraud related to payment cards. While this is definitely true from the banks' point of view, what is not so clear are implications for customers -- the ultimate card users. Introduction of smartcards within the Chip \& PIN deployment exercise is quite likely the most extensive deployment of computers in the human history, with security as a major aspect. We first review some of the most critical issues related to the introduction of Chip \& PIN card payment authorization, and then discuss our two-phase experiment.\footnote{This experiment was partly supported by the FIDIS (Future of Identity in the Information Society) Network of Excellence.} Our experiment examined, in two phases, whether the introduction of this authorization method is advantageous for an opportunistic thief and whether the customer truly benefits from the Chip \& PIN technology with respect to this opportunistic thief. This is, to our best knowledge, the first presentation of non-trivial field experiment results on the ease of PIN in-shop observation to the general public. |
Related projects: |