[Dave Birch] Normally the only stories about European standards that you read in the newspapers here in Britain are the ones about straight bananas (actually, I think that the rules on banana curvature were recently relaxed) or people going to jail for advertising brussels sprouts in imperial measures (although, once again, the EU’s stringent policy appears to have been abandoned). But I read in last month’s Cards & Payments that the European Commission are upset about EMV being chosen as the standard for the SEPA Cards Framework (SCF) because they view it as “non-European” (worse still, and more specifically, they view it as American). The EU Competition Commissioner, Neelie Kroes, recently labelled the worldwide standard for card payments as “proprietary”.

Perhaps there is some displacement going on here. Perhaps the Commission are upset because they pushed for SEPA and SCF. It is now clear that SCF will lead to an increase in the average merchant service charge in Europe as low-cost domestic debit schemes are replaced by more expensive international credit and debit schemes (ie, Visa and MasterCard branded cards). But it’s an interesting development to move on and begin the attack on EMV.

I’m not for one moment suggesting that EMV is perfect and ought to be beyond criticism. There’s a lot wrong with it. But my suspicion is that what is behind Nellie’s words is the thinking that the currently non-existent “third scheme” in Europe ought not to be founded merely as another brand, another set of scheme rules, on top of the existing EMV infrastructure but an entirely new infrastructure more suited to the 21st century (that is, more suited to contactless, mobile, prepaid, the Internet and all sorts of other modern fancies). Well, I hope that’s what it is. I think the idea of an open-source third scheme might be quite an exciting development, and you could certainly imagine a situation where there’s a “payment Linux” used by everyone and where schemes compete on products and services by using it.

It’s diverting to think what such a scheme might look like. Purely for the purposes of amusement let us consider one or two of the functions and characteristics of a potential replacement while avoiding trivial English schoolboy “not on your Nellie puns”. I think if it were up to me, I would begin with the process of gathering requirements by making sure that all of the stakeholders are adequately represented in the initial brainstorming. This doesn’t just mean the usual suspects, banks and retailers, but a much wider range of people with a variety of perspectives. Of course, I would be particularly keen to obtain perspectives from those who have already developed new ideas from the deployment of chip and pin as well as mobile and Internet payments, which means the police, regulators and members of the public.

With those requirements in place, I might suspect that a small number of guiding principles might be applied to help with the sketching of the solution space. Here are a couple that I’ll throw out to start the discussion.

First of all we need to decouple multiple concerns at the right levels. I have a particular view of this because I have long thought that the digital money and digital identity components of such a system should be both more distinct and more explicit, to allow for appropriate configurations of products. What I mean by this is that for some categories, for example cash replacement low-value purchases, the identity component might be set to anonymity whereas for other transactions it might be set to pseudonymity and for yet other transactions it might be set to full disclosure. In fact, I’d go a bit further and say that it seems to me that if the identity elements can be “solved” through the use of digital identity infrastructure provided by someone else (with the obvious someone else in Europe being national governments) then the payment elements actually become a lot simpler. As a customer wandering into a shop to buy a pair of shoes in 10 years time I think I might reasonably expect to use any one of a number of tokens to link to identity infrastructure and through that infrastructure connect with any one of a number of payment products. Once you’ve got identity out of the way, payments aren’t that complicated, are they?

Second, I’d want a much better certification process, so that lots of vendors could compete to build products and get them tested and certified in a fast and inexpensive way. Thus, any retailer (in fact, anyone, since my imaginary payments Linux wouldn’t distinguish) could accept payment from any approved device. If I wanted to download the Virgin Media payment application, that puts low-value payments on my bill, to my mobile phone then I ought to be able to just do it.

Third (and final point, for the time being), the infrastructure should be built on next generation technology because it takes a long time to roll out. If we posit last generation technology, playing to the conservative nature of large organisations, we end up with stuff that is way out of date. A big question about that infrastructure would be. once again, the basic “online or offline” choice. Looking back now, you might well argue that from a historical perspective that the existing infrastructure came about at precisely the wrong time. Advances in smart card technology and the state of the European telecommunications industry led the designers of EMV to optimise for an environment that was about to vanish. Just as everything went online, EMV was being built for offline. We don’t want to be caught out, so we need a much more sophisticated technology roadmap as a backdrop to the process, recognising that it takes years for this kind of infrastructure to come together. So do we optimise for offline payments with occasional online, or online payments with limited offline functionality, or what?

I’m keen to gather suggestions that we can pass on to the Commission at an appropriate time, so do let me know what you think!!

These opinions are my own (I think) and presented solely in my capacity as an interested member of the general public [posted with ecto]

2 comments

  1. Lots of interesting ideas in this post. I think the “next generation” payments infrastructure must encompass traditional account transfers as well as transactions initiated via card and digital devices. The (non-card) SEPA rules have done exactly what you said, and optimised for an environment (batch processing) that is about to vanish. A real-time payments infrastructure that allows convergence of card and non-card, low and high value payments, with a variety of authentication mechanisms appropriate to the channel and payment type is surely the nirvana.
    I assume that the “payments aren’t that complicated” comment is tongue in cheek. Especially in the current climate, close control of risk and liquidity is vital. There’s also the small matter of currency conversion – unless we want to exclude countries such as the UK and Switzerland. Many such aspects of payments are complicated, so the more we can encapsulate the complexities in the central infrastructure, and keep things simple for the users, the better.
    In the UK we have launched the Faster Payments service that already addresses a number of these requirements. We should look to build on that experience for any next generation payments infrastructure – but as one of the architects of that system I would say that, wouldn’t I !

  2. Faster Payments launched last year in UK – was in use in Turkey for years and i even can not think waiting
    3 days to see money in my account – yet this is a new! service.
    Probably when EFT was build, there were not many banks, not so many people “living fast”, and yet there
    was not real online tech available.
    Beside the tech issues i guess one of the main point -as you described above-is gathering every party involved in and listening the expectations-requirements.
    But not just the people who are in the business but also listening diffent sectors/users (especially young ones)
    Because i belive there is an irony here: we are thinking to build a brand new way of payment but we may not be so lucky to see it is really working and widely adopted thru Europe/world.
    Next generation will be the real users, so we should really do expectation management.
    Most of us have our own boundaries-we know “so much” about the limits of the current technologies,
    interoperability …etc. so most of us are thinking conservatively and can not free our mind to have a new approach about payments.
    If we can succeed to act differently, we may come up with an open platform to host new applications.
    and about vanishing EMV/offline :
    There are commitments of issuing truly european EMV-debit product from different countries.
    They may be questioning their decisions after your blog 🙂

Leave a Reply to Tom Hay Cancel reply


Subscribe to our newsletter

You have successfully subscribed to the newsletter

There was an error while trying to send your request. Please try again.

By accepting the Terms, you consent to Consult Hyperion communicating with you regarding our events, reports and services through our regular newsletter. You can unsubscribe anytime through our newsletters or by emailing us.
%d bloggers like this: