
Innovative Secure Payment Solutions John QIAN Senior Manager March, 2014
Outline • Online and mobile security risks • PKI based USB token • Secure payment case studies
Online Security Risks • Man In the Middle Attacks • Trojan Horses Attacks • Real-time Transaction Manipulation • Social Engineering • Phishing sites Cybercrime and espionage could be costing the world between $70 billion (£46 billion) and $400 billion a year from a total global economy of $70 trillion, a new estimate by the Center for Stategic and International Studies (CSIS) has calculated. Source McAfee, July 2013
Mobile Security Risks • High Virus Susceptibility • Lost and Theft • Unsecured communication • Remote Access Tools (RAT) • JuniperResearch: Mobile Banking Users to Exceed 1 billion in 2017, Representing 15% of Global Mobile Subscribers • http://www.juniperresearch.com/viewpressrelease.php?pr=356 • Mobile Payment transactions is projected to reach $650 billion by 2014
PKI Based USB Tokens No display, No interactive elementAlways connected to host PC 1st Gen USB Token A switch to trigger transaction signing 1.5 Gen USB Token HIP: Sign what you see 2nd. Gen. USB Token
Sonic Encoding Communication SEC: Sonic Encoding Communication USB Token IC Card Reader
3rd Generation PKI USB Token • Cross-platform applications extensions • Any payment media, anyplace, anytime
Secure Payment Case Studies
Mobile Payment Case Studies E-commerce TV Shopping Bank Vending POS
Mobile Payment Case Studies E-commerce TV Shopping Bank Vending POS
Case Study 1: Online Payment • No external driver required • Compatible across browsers: IE, Chrome, Safari etc. • Security: HIP PKI • Usability: easy to use Bank Payment App
Case Study 2: Low Cost SME Payments • No POS terminal deployment cost • Volume or service fee based to save cost • Payment Info is cycled within completely safe computing env. POS Terminal Bank Payment App
Case Study 3: MultimediaPayments • Multimedia Vending Machines Bank Payment App TV Shopping
Case Study 4: Online to Offline (O2O) • Online generated receipts for offline payment POS Bank Payment App
Case Study 5: Receipt Based QR Code Payment • Receipt has QR code to feed payment app QR Receipt Bank Payment App
Case Study 6: Universal Payment App • Support IC Card devices • Universal payment App that can handle all payments All Sources Bank Payment App
Innovative Mobile Payment Demo System • Flexible sources: NFC & QR Code • Latest mobile technology: HIP, SEC & QR Code • Universal payment App • Different shopping experience
Conclusions • 2nd GEN PKI USB Token offers ultimate transaction protection • SEC technologies drives mobile payment solutions • QR Code authorizing system opens doors for all cross platform transactions and give rise to 3rd GEN PKI USB Token
Tendyron Corporation • A leader in online-banking security, PKI/OTP tokens, smartcards and mobile payment solutions. • The first to propose the concept of human-interface peripheral, pioneered the development of 2nd Generation PKI tokens • No.1 Banking Solution Supplier in China • Awards: Deloitte Technology Fast 500 Asia Pacific Company in 2011, 2012 Deloitte Technology Fast 50 China Company in 2011, 2012