Mobile POS Certification

60 %
40 %
Information about Mobile POS Certification
Education

Published on March 17, 2014

Author: bluesme

Source: slideshare.net

Description

• Company names mentioned herein are the property of, and may be trademarks of, their respective owners and are for educational purposes only.

©2014 MasterCard. Proprietary and Confidential A Introductory Guide Mobile POS Certification MasterCard Mobile POS January, 2014

©2014 MasterCard. Proprietary and Confidential This slide deck is intended as a high level overview of the certifications required to launch a mobile pos (MPOS) solution. For more detail and if in any doubt please do not hesitate to contact your MasterCard representative or email mobilepos@mastercard.com NOTE: for details on the types of solutions that can be deployed in various regions/markets please refer to MasterCard Rules and our website http://www.mastercard.com/corporate/mpos.html Purpose January, 2014 Page 2

©2014 MasterCard. Proprietary and Confidential  What is an MPOS?  Certification bodies, an overview  EMV  PCI  MasterCard  Applicable certifications Contents January, 2014 Page 3

©2014 MasterCard. Proprietary and Confidential Definition of the MPOS Landscape What is MPOS and what value does it deliver? Definition Card Reader • Mobile Point of Sale (MPOS) is a merchant payment acceptance solution that uses a consumer oriented, multi-purpose smart device (mobile phone or tablet) New Merchants Leading Retailers • Businesses previously unable to accept card payments now can use their own mobile phone to become a new MasterCard merchant • Transforming in-store retail experience by replacing traditional fixed POS and integrating value added applications ValueDelivered Onboarding Distribution Pricing • Mag stripe readers most common • Several low cost EMV chip solutions are available • Low cost PIN solutions are being introduced • Streamlined registration and boarding process • New, less intrusive approach to risk management • App store and retail distribution in addition to traditional acquiring and ISO distribution • Simplified package of fixed pricing and no commitments Features Existing Merchants • Attracted to ease of use, and simplified cost model vs. traditional acquiring offerings • Address 85% cash by extending acceptance to new merchants WhatisMPOS January, 2014 Page 4

©2014 MasterCard. Proprietary and Confidential Certifications Bodies, An Overview Interoperability of chip cards and chip terminals Security of card and transaction data Compliance with MasterCard Franchise rules January, 2014 Page 5

©2014 MasterCard. Proprietary and Confidential • EMV Compliance testing has two levels: – EMV Level 1, which covers physical, electrical and transport level interfaces, (i.e. the hardware) and – EMV Level 2, which covers payment application selection and credit financial transaction processing (i.e. the payment software) If the MPOS features a Chip Reader then both EMV Level 1 and Level 2 certifications must be in place EMV Certification  January, 2014 Page 6

©2014 MasterCard. Proprietary and Confidential • PCI Data Security Standard (PCI DSS) – the standard was created to increase controls around cardholder data to reduce card fraud via its exposure If card data is being handled, stored, routed then PCI DSS certifications must be in place • PCI PIN Transaction Security Standard (PCI PTS) – was specifically designed to protect consumer PIN data from theft. It is also intended to enforce hardware security of devices that accept consumer PINs and house secret encryption keys of the acquirer If the MPOS solution can accept consumer PINs, then PCI PTS certifications must be in place PCI Certification   January, 2014 Page 7

©2014 MasterCard. Proprietary and Confidential • PCI Point to Point Encryption Standard (P2PE) – Secure encryption of payment card data at the point-of-interaction (POI) Not currently a requirement of MasterCard Rules, however it is an MPOS Best Practice • PCI Payment Application Security Standard (PA-DSS) – Secure payment applications, when implemented into a PCI DSS- compliant environment, will help to minimize the potential for security breaches leading to compromises Payment Apps on the mobile device itself can not be adequately secured and therefore cannot be approved. However, Payment Apps on secure MPOS card reader accessories can be approved. PCI Certification continued BP NA BP = MasterCard MPOS Best Practice NA = Not Applicable January, 2014 Page 8

©2014 MasterCard. Proprietary and Confidential • MasterCard Terminal Integration Process (M-TIP) – Check that a Chip terminal meets MasterCard requirements If the MPOS features Chip then M-TIP must happen before a terminal can be deployed • MasterCard Terminal Quality Management (TQM) – while EMV L1 tests one or two readers this checks that the 200th, 200Kth and 2 millionth devices that are produced are the same as the first! If the MPOS features Chip then it must have a TQM certificate MasterCard Certification   January, 2014 Page 9

©2014 MasterCard. Proprietary and Confidential • There are two ways to implement contactless; 1. In the MPOS card reader accessory (solutions in development) 2. Utilizing the NFC capabilities within the Merchant mobile device (lots of complexities & challenges) • PayPass Vendor Product Approval – Check that a contactless terminal meets MasterCard brand requirements If the MPOS features contactless acceptance then it must have a PayPass Vendor Product Approval. MasterCard Contactless Certification  January, 2014 Page 10

Add a comment

Related presentations

Related pages

Mobile Point of Sale | MasterCard

Unlock New Business Opportunities with Mobile Point of Sale (POS) ... MasterCard Mobile POS Certification - A high level overview of the certifications ...
Read more

Mobile POS Certification - MasterCard - Global Leading ...

©2014 MasterCard. Proprietary and Confidential A Introductory Guide Mobile POS Certification MasterCard Mobile POS January, 2014
Read more

Handpoint receives PCI P2PE certification for mobile POS ...

Iceland-based provider of mobile payment services Handpoint has received PCI P2PE certification from the PCI Security Standards Council (PCI SSC) for its ...
Read more

What is mPOS (mobile point of sale)? - Definition from ...

An mPOS ( mobile point of sale) is a smartphone, tablet or dedicated wireless device that performs the functions of a cash register or electronic point of ...
Read more

iVend Mobile POS (MPOS) - Android and iOs POS, Mobile ...

iVend Mobile POS brings the experience of iVend Retail terminal point of sale experience to Mobile Devices. Retailers can now interact and transact with ...
Read more

19 Mobile Point-of-Sale (MPOS) Solutions Achieve ...

19 Mobile Point-of-Sale ... Solutions Achieve MasterCard Best Practices Certification. ... All Mobile POS solution providers currently not ...
Read more

Creditcall Secures EMV Certification from First Data for ...

Creditcall Secures EMV Certification from First Data for Mobile POS Solution | January 12, 2016. Creditcall, the EMV-ready omni-channel payment gateway and ...
Read more

Point of Sale Certification Promoted by Retail Solution ...

Point of Sale Certification Promoted by Retail Solution Providers ... of POS systems to complete their certification program in order to foster a high ...
Read more

SoftTouch Certified 3rd Party Solutions - Restaurant POS ...

SoftTouch Certified 3rd Party Solutions. Our certified hardware and software list features equipment and interfaces that may be used with SoftTouch POS.
Read more

EMVCo

Approvals & Certification. Terminal Type Approval EMVCo established the Terminal Type Approval process to create a mechanism to test compliance with the ...
Read more