Establishing Digital Trust: Don't Sacrifice Security for Convenience
LAS VEGAS. While EMV chip-based credit cards do provide more security than traditional magnetic stripe cards, there are still risks. Multiple presentations at the Black Hat USA conference here detailed risks, including one from Nir Valtman, head of Application Security for NCR Corporation, and Patrick Watson, Application Security architect at NCR.
In a press conference the two researchers provided media with a synopsis of their research, as well as a demonstration of how the attack works. At a high level the NCR researchers relied on using a man-in-the- middle attack that intercepted traffic to and from the PIN pad in order to exploit the system.
While the attack does have risks, Valtman noted that using proper tokenized encryption is the right solution to limit the attack surface.
Watch the full video below:https://o1.qnsr.com/log/p.gif?;n=203;c=204650394;s=9477;x=7936;f=201801171506010;u=j;z=TIMESTAMP;a=20392931;e=i
Sean Michael Kerner is a senior editor at eSecurityPlanet and InternetNews.com. Follow him on Twitter @TechJournalist