The Implementation of a Full EMV Smartcard for a Point-of-Sale Transaction and Its Impact on the PCI DSS
2012 International Conference on Privacy, Security, Risk and Trust and 2012 International Confernece on Social Computing
Pub Date : 2012-09-03
DOI:10.1109/SocialCom-PASSAT.2012.80
引用次数: 9
Abstract
This paper argues that given the relevant known vulnerabilities and attacks against the EMV (named after Euro pay, MasterCard and Visa) technology, if the combined dynamic data authentication (CDA) card variant of the EMV payment card is deployed in a full EMV environment for point of sale terminal (POS) transaction, it becomes unnecessary to comply with the Payment Card Industry Data Security Standard (PCI DSS) unless the merchant with the POS terminal has been exposed to proven breach and even in that case the damage caused is likely to be minimal.在销售点交易中使用全EMV智能卡及其对PCI DSS的影响
本文认为,鉴于EMV(以Euro pay、MasterCard和Visa命名)技术的相关已知漏洞和攻击,如果将EMV支付卡的组合动态数据认证(CDA)卡变体部署在完整的EMV环境中进行POS交易,没有必要遵守支付卡行业数据安全标准(PCI DSS),除非拥有POS终端的商家已经暴露于被证实的违规行为,即使在这种情况下,造成的损害也可能是最小的。
本文章由计算机程序翻译,如有差异,请以英文原文为准。
求助全文
约1分钟内获得全文
求助全文
来源期刊
自引率
0.00%
发文量
0
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
