October 29, 2016
The EU (European Union) PSD2 (Payment Services Directive 2), which will apply from January 2018, aims in particular at ensuring that all payment services offered electronically are carried out in a secure manner, adopting technologies able to guarantee the safe authentication of the user and to reduce, to the maximum extent possible, the risk of fraud.
October 23, 2016 - Money2020, Las Vegas - HCE Service announces the launch of its PKI-based (Public Key Infrastructure) SWIM (software wireless identity module) platform which ensures the highest degree of security and safety in terms of authentication while enabling user-friendly, convenient one-click NFC/in-App/Web payments. SWIM already complies with the PSD2 Regulatory Technical Standards requirements of strong (two-factor) customer authentication (SCA).
With the open and insecure mobile Internet, higher levels of security, other than a simple password and ID presentation, have to be introduced to limit payment fraud. PSD2 mandates Regulatory Technical Standards (RTS) on authentication and communication (Article 98):
RTS specifies that strong customer authentication must use two of the three factors:
Article 97(1) of PSD2 requires that payment service providers apply strong customer authentication where the payer:
The launch of our SWIM solution leverages proven secure technologies to be PSD2 compliant no matter what the application, account to account faster payments, use of blockchain technology in payments, and of course HCE mobile payments which are growing rapidly, said Dr. Chandra Patni, CEO, Founder and Director of HCE Service Limited. He added, SWIM delivers HCE EMV mobile payments and other value-added services to banks and wallet providers, at the lowest possible costs.
The SWIM platform uses PKI security measures to protect the confidentiality and the integrity of the Payment Service Users’ (PSU) personalized security credentials as well as ensuring secure communication. Host Card Emulation (HCE) tokenized cards are securely delivered to mobile devices using public/private key pair digital identities. Hence, public key cryptography within secure software white boxes on mobile devices ensures user and tokenized card data integrity.
SWIM protects the confidentiality and integrity of users’ personalized security credentials:
SWIM security measures prevent unauthorized use of the personalized security credentials and of the authentication devices and software due to their loss, theft or copying. SWIM ensures:
About HCE Service: