Technorati Tags: contactless, credit cards, debit cards, security
David reinforced the feasibility of relay attacks against contactless systems and in the subsequent discussion, it seemed to me that me people felt that serious fraudsters would begin investing in this soon, so the industry needs to take it seriously. On the EMV side, Mike put forward the common sense proposition: so long as the industry puts “legacy” magnetic stripes on the cards so the fraudsters will continue to attempt to obtain the data necessary to make magnetic stripes cards and use them in non-EMV territories as this is simply the path of least resistance.
Afterwards, Smartex had arranged for us all to go punting. It was a beautiful day so I can’t resist posting a couple of pictures. Here I am with Mike Bond, discussing the relative merits of chip vs. stripe attacks in mature EMV markets like the UK…
This was the scene while the assembled throng discussed the relay (“ghost and leech”) attack on contactless terminals and worthwhile countermeasures…