Posted on 05/26/2015 5:51:20 AM PDT by Kaslin
Martha Mary Coakley, recently hired at the liberal Boston law and lobbying firm Foley Hoag, has come out swinging for mandatory “Chip-and-PIN” systems for debit and credit cards.
Although, she must be desperate for a win, it is hard for me to pity Coakley or agree with her.
When I was a reporter in Somerville, Massachusetts, a small city bordering Boston, I knew of three instances, where she declined to pursue sexual assault charges against politically connected suspects, as the Middlesex County District Attorney.
This was before she lost a Senate race to Republican Scott P. Brown in 2010 or she failed in her 2014 bid for Massachusetts governor against Charles D. Baker Jr., a man even more liberal than Brown.
The Chip-and-PIN system is almost universal in Europe and Canada and it is familiar to federal civilian workers and military personnel as the Common Access Card, or CAC card, that allows the holder to access buildings, digitally sign documents and log on to government computers.
For the consumer, it means he no longer has to sign a paper receipt, when he interfaces with the Europay-Mastercard-Visa transactional grid. With the Chip and PIN card, the consumer inserts his card with the brass colored chip into the reader and for purchases over a certain amount, let us say $20, the consumer types in his personal identification number.
In the United States, retailers and card companies have been pushing to leave the magnetic stripe and its vulnerabilities which Professor Aad van Moorsel, head of the School of Computing Science at Newcastle University and expert in cyber crime security, said is the lowest hanging fruit with regard to payment card fraud.
The professor said, “With the magnetic stripe option currently being phased out, the next target that criminals will aim for is the contactless payment feature.” Chip-and-PIN is called contactless because the cashier no longer inspects a card or signature at the point-of-sale.
Already, the hackers have figured out how to subvert the Chip-and-PIN. At the August 2014 Black Hat cyber security conference in Las Vegas, researchers from MWR Labs, simply used a “Chip-and-PIN” card loaded with a spy program to override at reader's instructions.
Writing for CNN Money, Jose Pagliery said that the new instructions could be: "Stop encrypting PINs and store all subsequent credit card swipes in your computer memory." Then, at the end of the day, another hacker inserts a card with new instructions: “Download all data to me.”
Getting back to Martha Mary, what she is trying to do is get Congress to make the “Chip-and-PIN” system the law of the land, which is a problem. The one size-fits-all solution would not do anything to protect the massive data hacks that have compromised consumers’ personal information held by major retailers.
Coakley should know better, she has investigated and sued multiple retailers for failing to protect consumers’ personal information from hackers.
During the recent data breaches at Target and Home Depot, Coakley said: “This significant data breach has put the personal information of Massachusetts consumers at risk,” Coakley claimed her office would ensure that proper safeguards were in place on the retailers’ systems to protect consumer information.
In 2011, Coakley took action against a major restaurant group in Boston and said her office would continue to take action against companies that fail to implement basic security measures on their computer systems to protect the sensitive information entrusted to them by consumers.
In announcing the settlement with TJ Maxx, the Massachusetts-based retailer, Coakley said, “All retailers and companies that hold or use personally-identifiable information must employ data security systems that guard against the improper disclosure or use of that information."
The Chip-and-PIN system has great advantages over the magnetic stripe, but it is not invulnerable. In the free market it will thrive until it does not thrive and the next security system takes over. Locking in one technology to the exclusion of others stalls innovation and disrupts the competitive evolution of technology.
Yes, Coakley desperately needs a win, but giving Chip-and-PIN feudal rights over all transactions is the wrong win for consumers and the free market.
Obama thinks CHIP and PIN are just golf terms.
This is an issue that can definitely be served by free market choices - ( I know, an alien concept to the world’s liberals)
You want card with a chip, apply to a company that offers them.
I did
And he causeth all, both small and great, rich and poor, free and bond, to receive a mark in their right hand, or in their foreheads:
And that no man might buy or sell, save he that had the mark, or the name of the beast, or the number of his name.
Merchants will be required to have a point-of-sale terminal that can read the chip by October. If they don't, they will assume responsibility for any fraudulent use of a card that has a chip.
However, it will be almost universally "chip and SIGNATURE" for credit cards. Unlike other countries that use a PIN, it would require a large change in how some merchants process credit cards -- like restaurants.
I think we will eventually go to PINs in the US. But, it won't happen this year.
No, "contactless" means that the card isn't inserted into, or swiped on the reader.
Contactless cards use NFC (near field communication). You can find a sideways WiFi symbol on the back of cards that support it. It's called "tap to pay" in other countries.
Apple Pay and Google Wallet work by emulating a contactless card.
My free market choice is cash whenever possible.
Part of the T&C will force somebody other than the credit card company or the issuing bank to be responsible for losses.
All approved by Congress at some point.
Banks win, consumers and merchants lose.
Bump! Cash is king. I use a debit card for online purchases but that’s it. Local purchases gets paid by cash.
ping
Last year I was issued a new credit card that the chip and the old strip. In some places like Wally World I had to slide in the slot that reads chips. Other places with older machines I slid the conventional way to read the strip.
About six months later they cancelled that card and sent me a replacement with NO CHIP! I figure this means the chip had some drawbacks they way they had implemented it.
Give everyone a one time pass code reader. You have your debit or credit card pin, then you enter a pin that is generated off your FOB. It is one time only so the only fraud that can happen is your FOB is stolen and you are forced to give up your secret pin.
Ha ha.
Could you make this cheap and disposable? So the CC issuer is going to mail you one of these?
“Could you make this cheap and disposable? So the CC issuer is going to mail you one of these?”
The biggest cost will come from the back end infrastructure being implemented. The readers themselves are pretty cheap.
I don’t understand why they can’t go to a biometric that analyzes the signature itself, including the cadence with which it is written.
There are credit cards that have an LCD screen with a pseudo-random code generator embedded:
But, they aren't being deployed in the US.
It's not reliable. You would have people standing in line while someone tries to sign it in a way that will validate.
Depends upon the tolerances and what it is measuring.
The devices that could be used for this sort of thing suffer from all kinds of calibration problems. All you have to do is observe your captured signature on the electronic pads that are already in use.
The tolerances would have to be so wide that it would be effectively useless for verification.
Disclaimer: Opinions posted on Free Republic are those of the individual posters and do not necessarily represent the opinion of Free Republic or its management. All materials posted herein are protected by copyright law and the exemption for fair use of copyrighted works.