Welcome!

API Journal Authors: Chris Kocher, Elizabeth White, Peter Silva, Carmen Gonzalez, Jonathan Fries

Blog Feed Post

Mobile Payments Sector Growth Could Bring Fresh Fraud Challenges Says New UKFraud Special Interest Group

UKFraud (www.ukfraud.co.uk) has set up a new Special Interest Group (SIG) for the Mobile Payments sector. The new SIG will monitor, analyse and report on key market developments for use by stakeholders in the domestic fraud prevention sector. The SIG consists of leading fraud prevention consultants coupled with representative input from a wide range of mobile payment industry specialists. In its initial review, the SIG will analyse those characteristics and challenges of the mobile payment market that are most likely to encourage fraudsters to target the sector. In particular, the SIG will investigate the factors that could give rise to an increased risk of fraud. Amongst the key market challenges that the SIG will review are:

1 Sheer Scale of Market Growth
The SIG notes the appearance of a number of spectacular recent mobile payment market forecasts. These include a report from Reuters, in March 2013, highlighting a survey by 'Heavy Reading Mobile Networks Insider' suggesting: "The mobile payment industry is growing, offering revenue generating solutions throughout the market and potentially… $1 trillion in global transactions by 2015."

The SIG is also conscious of the global spread of mobile payment, with the explosive growth of m-commerce in the United States, China, India, Latin America and the Far East. Recent data from the ITU (International Telecommunication Union) supports this, pointing to global mobile subscriptions now reaching 6 billion. However, in the face of this backdrop of explosive growth, the SIG is concerned that key sector protagonists lack visible preparedness for the likelihood of such large-scale market expansion or the resultant fraud risks that might ensue.

Indeed, the SIG believes from its own analysis of the sector, that only a small proportion of marketers currently have any formal strategy for leveraging and exploiting mobile payments fully. And, whilst there are also other reports that there is a huge need for 'Mobile SEO' to spread the news of the latest products to potential consumers, it is the SIG believes, also still a relatively scarce activity. Should this scenario represent reality on the promotional side, then it is also unlikely, the SIG believes, that adequate fraud systems will have been put in place by many of the main players either.

2 The Speed of Technology Advances
The SIG also recognises that the greatest challenge to the development of plans and strategies that align organisations within the mobile payments sector is the sheer speed of technical change. Seemingly, all the main mobile device players are racing to produce the 'next best thing' and major forces such as Google with its Wallet and Apple with the Passbook are also having a significant and positive impact with market pundits. The international card schemes also have an influence on the development route(s) as do many other highly innovative and respected third parties including: iZettle, mpowa, and PayPal. However the chances are, says the SIG, that whilst some of the other sector protagonists, regulators and customers could potentially struggle to keep pace with such an enormous rate of change, the fraudster thrives in such fast moving environments and simply 'adapts' like an 'amorphous entity' to outsmart and outflank the market's developments.

3 What Are The Customer Perceptions of The Mobile Payments Sector?
Amongst the other contradictions to be reviewed by the SIG are claims by some pundits who point to the relatively modest levels of take up of mobile payment products to date. Whilst some believe that many people are waiting until the next 'big thing' appears, others cite the plethora of new products already appearing. Some claim that this consumer reluctance to adopt, is the result of confusion over the number and nomenclature of devices and financial products. Yet others highlight a number of recent high profile data breaches both amongst financial services and social media companies which drive caution amongst consumers. However, it is felt that once a major new standard or solution appears that the dam could break. When the dam breaks, the SIG feels, there is a potential concern that some of the new solutions will be more easily and quickly exploited by fraudsters than those that currently benefit from clear best-practice and consumer guidelines.

4 Can Standards Keep Pace?
Whilst standards would boost consumer confidence, the impact of technology and financial product churn coupled with extreme growth could, the SIG believes, threaten the applicability of many existing standards. Other newer standards might simply not keep pace. There is also, the SIG believes, a myriad of organisations from which such standards can come. This could well cause confusion for consumers and therein delight the fraudsters.

The SIG feels that a widely respected organisation that might potentially take a positive lead in the payments sector is UK Payments (formerly APACS). The SIG will also review other alternatives and analyse which existing standards bodies might develop an effective solution. Well regarded bodies might include: the ISO or the European Payments Council, which could potentially, some feel, develop a new SEPA regulation for the mobile sector. The SIG will also review whether widely acclaimed and respected card schemes (such as: Visa / MasterCard etc.) might take a lead as there is potentially a strong interest to capture the market if it grows rapidly.

The SIG feels that potentially mobile payments control could be evolved through an entirely new 'standard' that will develop by default and be adopted by others. It is possible, says the SIG, that this could be led by a card organisation, a proprietary payments provider, by an individual bank or a telecoms company. Indeed, the SIG believes that there is every chance that it could result from a collaboration or spin-off of any of the above. Indeed, as things roll-on so fast, this body may not yet exist.

Mobile payments could potentially, the SIG claims, replicate traditional magnetic stripe read transactions; or even replace the later 'chip read' transactions. This would cause an evolution in ecommerce transactions through m-commerce, and be the ideal facilitator of NFC contactless payments. In addition, mobile devices could very well become the first choice to be used by merchants as a payment acceptance terminal themselves.

5 Who Owns The Regulation?
The SIG will also review whether a 'potential standards debacle' might have a 'knock-on' effect upon regulation. The SIG feels that there are so many complications, and so many interested stakeholders, all with conflicting desires to collaborate or compete, that it is hard to know where and how mobile payments will be regulated, let alone who will 'own' the regulation.

It will be interesting to see the role governments play. The SIG feels that with the respected EU Cyber directive focussing on setting good foundations with the Network and Information Security standards in individual member states, the current thrust seems potentially a long way from specifically addressing mobile payments. Turning to the UK, the SIG questions whether the government is likely to drive innovation in this area, as the risk, payments and fraud skills within the leading departments (Cabinet Office, FED and the National Fraud Bureau) might not be those required.

Commenting on the new SIG, its Chairman Kevin Smith (a former head of fraud management at Visa Europe and now an independent payments, risk and fraud specialist) feels that the review will highlight a need to 'build fraud prevention in' at all stages early on. He notes, "There will be so much potential change and growth, that it's not just the technology vendors or financial service providers that are watching the situation closely. Rest assured that a seasoned group of criminals will be looking just as closely, albeit at a different range of opportunities. Only by sharing information and working together at an early stage can the sector start to properly understand the challenges and offer a really effective series of counter-measures. Our aim is hopefully to assimilate and collate a weight of analysis that will prove useful to those stakeholders who are keen to fend off fraudulent activity."

Bill Trueman CEO of UKFraud welcomed Smith's comments. In his view, sharing information and collaboration could work at all levels and could even be led by the UK government. He notes, "Potentially there is a golden opportunity here for the UK to take a lead. Naturally a governmental lead would be preferable. However, some feel that The NFA (National Fraud Authority) and also the Cybercrimes Unit are rather more engaged in defending UK Plc., against attacks than driving commercial standards globally in internationally applicable growth areas such as this. However, they should play a major role here. Some though feel that recently the priority of these bodies has been turned upon the domestic public sector, as this alone is a mammoth area to direct and protect. Hopefully, though, if the mobile payments sector grows as fast as has been suggested, the UK government will then see an opportunity to invest an appropriate amount of money in safeguarding the UK from fraud in the mobile payments sector. In the meantime, we shall work alongside other like-minded groups as a collective approach is certainly one way to ensure that the right information is shared by those in fraud prevention who most need it."

The SIG's findings will be published later this year.

Ends

About UKFraud (http://www.ukfraud.co.uk/)
UKFraud is a leading UK based consultancy, with an impressive international track record of eliminating the risk of fraud. Its founder Bill Trueman is widely accepted as one of Europe's leading fraud experts and a frequent commentator and writer on the issues involved. Trueman has extensive experience of the banking, insurance and the financial services sectors and is a thought leader at the forefront of many industry wide and international debates.

For further information, please contact:

Bill Trueman
UKFraud
020 8133 7575
[email protected]

or

Leigh Richards
The Right Image PR
0844 561 7586
[email protected]

Read the original blog entry...

More Stories By RealWire News Distribution

RealWire is a global news release distribution service specialising in the online media. The RealWire approach focuses on delivering relevant content to the receivers of our client's news releases. As we know that it is only through delivering relevance, that influence can ever be achieved.

@ThingsExpo Stories
The 20th International Cloud Expo has announced that its Call for Papers is open. Cloud Expo, to be held June 6-8, 2017, at the Javits Center in New York City, brings together Cloud Computing, Big Data, Internet of Things, DevOps, Containers, Microservices and WebRTC to one location. With cloud computing driving a higher percentage of enterprise IT budgets every year, it becomes increasingly important to plant your flag in this fast-expanding business opportunity. Submit your speaking proposal ...
In this strange new world where more and more power is drawn from business technology, companies are effectively straddling two paths on the road to innovation and transformation into digital enterprises. The first path is the heritage trail – with “legacy” technology forming the background. Here, extant technologies are transformed by core IT teams to provide more API-driven approaches. Legacy systems can restrict companies that are transitioning into digital enterprises. To truly become a lead...
The Internet of Things (IoT) promises to simplify and streamline our lives by automating routine tasks that distract us from our goals. This promise is based on the ubiquitous deployment of smart, connected devices that link everything from industrial control systems to automobiles to refrigerators. Unfortunately, comparatively few of the devices currently deployed have been developed with an eye toward security, and as the DDoS attacks of late October 2016 have demonstrated, this oversight can ...
You have great SaaS business app ideas. You want to turn your idea quickly into a functional and engaging proof of concept. You need to be able to modify it to meet customers' needs, and you need to deliver a complete and secure SaaS application. How could you achieve all the above and yet avoid unforeseen IT requirements that add unnecessary cost and complexity? You also want your app to be responsive in any device at any time. In his session at 19th Cloud Expo, Mark Allen, General Manager of...
Bert Loomis was a visionary. This general session will highlight how Bert Loomis and people like him inspire us to build great things with small inventions. In their general session at 19th Cloud Expo, Harold Hannon, Architect at IBM Bluemix, and Michael O'Neill, Strategic Business Development at Nvidia, discussed the accelerating pace of AI development and how IBM Cloud and NVIDIA are partnering to bring AI capabilities to "every day," on-demand. They also reviewed two "free infrastructure" pr...
As data explodes in quantity, importance and from new sources, the need for managing and protecting data residing across physical, virtual, and cloud environments grow with it. Managing data includes protecting it, indexing and classifying it for true, long-term management, compliance and E-Discovery. Commvault can ensure this with a single pane of glass solution – whether in a private cloud, a Service Provider delivered public cloud or a hybrid cloud environment – across the heterogeneous enter...
"Dice has been around for the last 20 years. We have been helping tech professionals find new jobs and career opportunities," explained Manish Dixit, VP of Product and Engineering at Dice, in this SYS-CON.tv interview at 19th Cloud Expo, held November 1-3, 2016, at the Santa Clara Convention Center in Santa Clara, CA.
Extracting business value from Internet of Things (IoT) data doesn’t happen overnight. There are several requirements that must be satisfied, including IoT device enablement, data analysis, real-time detection of complex events and automated orchestration of actions. Unfortunately, too many companies fall short in achieving their business goals by implementing incomplete solutions or not focusing on tangible use cases. In his general session at @ThingsExpo, Dave McCarthy, Director of Products...
"ReadyTalk is an audio and web video conferencing provider. We've really come to embrace WebRTC as the platform for our future of technology," explained Dan Cunningham, CTO of ReadyTalk, in this SYS-CON.tv interview at WebRTC Summit at 19th Cloud Expo, held November 1-3, 2016, at the Santa Clara Convention Center in Santa Clara, CA.
The many IoT deployments around the world are busy integrating smart devices and sensors into their enterprise IT infrastructures. Yet all of this technology – and there are an amazing number of choices – is of no use without the software to gather, communicate, and analyze the new data flows. Without software, there is no IT. In this power panel at @ThingsExpo, moderated by Conference Chair Roger Strukhoff, Dave McCarthy, Director of Products at Bsquare Corporation; Alan Williamson, Principal...
Businesses and business units of all sizes can benefit from cloud computing, but many don't want the cost, performance and security concerns of public cloud nor the complexity of building their own private clouds. Today, some cloud vendors are using artificial intelligence (AI) to simplify cloud deployment and management. In his session at 20th Cloud Expo, Ajay Gulati, Co-founder and CEO of ZeroStack, will discuss how AI can simplify cloud operations. He will cover the following topics: why clou...
Video experiences should be unique and exciting! But that doesn’t mean you need to patch all the pieces yourself. Users demand rich and engaging experiences and new ways to connect with you. But creating robust video applications at scale can be complicated, time-consuming and expensive. In his session at @ThingsExpo, Zohar Babin, Vice President of Platform, Ecosystem and Community at Kaltura, discussed how VPaaS enables you to move fast, creating scalable video experiences that reach your aud...
"At ROHA we develop an app called Catcha. It was developed after we spent a year meeting with, talking to, interacting with senior citizens watching them use their smartphones and talking to them about how they use their smartphones so we could get to know their smartphone behavior," explained Dave Woods, Chief Innovation Officer at ROHA, in this SYS-CON.tv interview at 19th Cloud Expo, held November 1-3, 2016, at the Santa Clara Convention Center in Santa Clara, CA.
WebRTC is the future of browser-to-browser communications, and continues to make inroads into the traditional, difficult, plug-in web communications world. The 6th WebRTC Summit continues our tradition of delivering the latest and greatest presentations within the world of WebRTC. Topics include voice calling, video chat, P2P file sharing, and use cases that have already leveraged the power and convenience of WebRTC.
20th Cloud Expo, taking place June 6-8, 2017, at the Javits Center in New York City, NY, will feature technical sessions from a rock star conference faculty and the leading industry players in the world. Cloud computing is now being embraced by a majority of enterprises of all sizes. Yesterday's debate about public vs. private has transformed into the reality of hybrid cloud: a recent survey shows that 74% of enterprises have a hybrid cloud strategy.
In his keynote at 18th Cloud Expo, Andrew Keys, Co-Founder of ConsenSys Enterprise, provided an overview of the evolution of the Internet and the Database and the future of their combination – the Blockchain. Andrew Keys is Co-Founder of ConsenSys Enterprise. He comes to ConsenSys Enterprise with capital markets, technology and entrepreneurial experience. Previously, he worked for UBS investment bank in equities analysis. Later, he was responsible for the creation and distribution of life sett...
DevOps is being widely accepted (if not fully adopted) as essential in enterprise IT. But as Enterprise DevOps gains maturity, expands scope, and increases velocity, the need for data-driven decisions across teams becomes more acute. DevOps teams in any modern business must wrangle the ‘digital exhaust’ from the delivery toolchain, "pervasive" and "cognitive" computing, APIs and services, mobile devices and applications, the Internet of Things, and now even blockchain. In this power panel at @...
The Internet of Things will challenge the status quo of how IT and development organizations operate. Or will it? Certainly the fog layer of IoT requires special insights about data ontology, security and transactional integrity. But the developmental challenges are the same: People, Process and Platform and how we integrate our thinking to solve complicated problems. In his session at 19th Cloud Expo, Craig Sproule, CEO of Metavine, demonstrated how to move beyond today's coding paradigm and sh...
With major technology companies and startups seriously embracing IoT strategies, now is the perfect time to attend @ThingsExpo 2016 in New York. Learn what is going on, contribute to the discussions, and ensure that your enterprise is as "IoT-Ready" as it can be! Internet of @ThingsExpo, taking place June 6-8, 2017, at the Javits Center in New York City, New York, is co-located with 20th Cloud Expo and will feature technical sessions from a rock star conference faculty and the leading industry p...
20th Cloud Expo, taking place June 6-8, 2017, at the Javits Center in New York City, NY, will feature technical sessions from a rock star conference faculty and the leading industry players in the world. Cloud computing is now being embraced by a majority of enterprises of all sizes. Yesterday's debate about public vs. private has transformed into the reality of hybrid cloud: a recent survey shows that 74% of enterprises have a hybrid cloud strategy.