Embed Size (px)
Citation preview
Uvod
• Osnovne informacije o platnim karticama i svim učesnicima u kartičnom poslovanju
• Tehnika
• Pogled iz poslovne (business) perspektive
Sadržaj 1/4
• Šta znamo o platnim karticama– Da li koristimo platne kartice, debitne, kreditne, čip...– Definicija platnih kartica
• Zašto platne kartice menjaju keš?– Troškovi gotovine– Kredit
• Prednost platnih kartica u odnosu na druge vidove plaćanja• Istorija platnih kartica
– Kako su nastale– Ko ih je najviše promovisao kroz istoriju
• Platne kartice danas• Učesnici u poslovanu sa platnim karticama
– Kartičarske organizacije– Banke– Procesori– Trgovci– Proizvođači opreme– Korisnici
Sadržaj 2/4
• Kartičarke organizacije– VISA– MasterCard– Diners– Amex– DinaCard
• Pravila i mandati kartičarskih organizacija• Modeli poslovanja banaka sa kartičarskim organizacijama• Issuing• Acquiring• Tipovi licenci• Prava i obaveze• Procesori• Trgovci
– Tipovi trgovaca
Sadržaj 3/4
• Vendori• Najpoznatiji vendori• Korisnici• Tehnološka podela platnih kartica
– Standardne– Magnetne– Ship (EMV)– Contactless
• Dizajn platnih kartica• ISO standardi• EMV• PCI DSS
Sadržaj 4/4
• Terminalna oprema
– Bankomati
– POS terminali
• Pravilno korišćenje platne kartice na prodajnom mestu
• Opšti scenario ATM i POS transakcije
Platne kartice
• Payment cards• Plastic cards• Cards• Chip cards• EMV cards• Debit cards• Cash cards• ...
• DEFINICIJA: Platne kartice su instrument bezgotovinskog plaćanja kojikorisniku omogućava plaćanje robe i usluga i podizanje gotovog novca
Zašto nam treba zamena za keš?
• Cena gotovine
• Kredit
• Problem gubljenja gotovine
• Mogućnost plaćanja svuda u svetu (ograničenje valuta)
Prednost platnih kartica
• Za korisnike– Znatno sigurnije od korišćenja čekova– Smanjuje rizik od gubljenja gotovine– Sa karticom je dostupan sav novac sa računa... I JOŠ VIŠE ! ! !
• Za trgovce– Mnogo sigurnije od čekova– Očekivano veća potrošnja u odnosu na keš– Lakše upravljanje sredstvima
• Za banku– Smanjuje troškove poslovanja sa gotovinom– Najbolje sredstvo za cash kredite– Obezbeđuju zaradu od issuinga i acquiringa
Istorija platnih kartica
• Različiti “Izvori istorije”
• Prva bankarska kartica nazvana "Charg-It" uvedena je 1946 od strane John Biggins-a, bankara iz Brooklyn-a – Izvor Mastercard
• Prema Diners clubu, priča počinje 1949g kada je izvesni Frank McNamara shvatio da je zaboravio novčanik i nije mogao da plati poslovnu večeru. Tako je dobio ideju da napravi alternativu za novac pa jse več 1950g vratio u isti restoran i sa malom cardboard karticom. 1951g bilo je 20.000 korisnika Diners kartice. Vremenom, karton je zamenjen plastikom
• American Expres osnovan je 1850g kao konkurencija za U.S. Postal Service za money orders i travelers chacks. 1958g American Expres izdao je prvu karticu purple charge card. U prvih 5 godina Amex je izdao preko 85.000 kartica
Platne kartice danas
• Okviran broj platnih kartica u svetu– ???
• Broj bankomata– oko 1.800.000 (atmia)
• Broj EFT POS terminala– ???
• Broj platnih kartica u Srbiji– 6.000.000 izdatih– 4.800.000 debitnih– 2.000.000 aktivnih
• Broj bankomata u Srbiji– 2.700
• Broj EFT POS terminala– 57.000
Učesnici poslovanja sa karticama
• Kartičarske organizacije
• Banke
• Procesori
• Trgovci
• Proizvođači opreme
• Korisnici
Uloge
Kartičarske organizacije
• Najpoznatije kartičarske organizacije su:– VISA
– MasterCard (MC)
– Diners
– American Expres (Amex)
– Discovery
– JCB
– DINA (nasionalna platna kartica)
– ...
VISA
• Visa Inc. is a global payments technology company that connects consumers, businesses, financial institutions and governments in more than 200 countries and territories, enabling them to use digital currency instead of cash and checks.
• Founded 1970• The company facilitates the processing of transactions on behalf of
financial institutions and merchants through VisaNet, one of the world’s most advanced processing networks capable of handling more than 10,000 transactions per second.[3] In 2009, Visa’s global network processed 62 billion transactions with a total volume of $4.4 trillion.[4]
• Visa does not issue cards, extend credit or set rates and fees for consumers; rather, Visa provides financial institutions with Visa-branded payment products that they then use to offer credit, debit, prepaid and cash-access programs to their customers. In 2008, according to The NilsonReport, Visa held a 38.3% market share of the of the credit cardmarketplace and 60.7% of the debit card marketplace in the United States.[5]
• http://corporate.visa.com/index.shtml
MasterCard
• MasterCard Worldwide (NYSE: MA) is a multinational corporation with its headquarters in the MasterCard International Global Headquarters in Harrison, New York, United States.[1] Throughout the world, its principal business is to process payments between the banks of merchants and the banks of purchasers that use its "MasterCard" brand debit and credit cardsto make purchases. MasterCard Worldwide has been a publicly traded company since 2006. Prior to its initial public offering, MasterCard Worldwide was a membership organization owned by the 25,000+ financial institutions that issue its card.
• Founded 1966• MasterCard, originally known as MasterCharge, was created by several
California banks as a competitor to the BankAmericard issued by Bank of America, which later became the Visa credit card issued by Visa Inc.. The original banks behind MasterCharge were United California Bank (later First Interstate Bank and subsequently merged into Wells Fargo Bank), Wells Fargo, Crocker National Bank (also subsequently merged into Wells Fargo), and the Bank of California (subsequently merged into the Union Bank of California).
• http://www.mastercard.com/index.html
Diners
• Diners Club International osnovan je 1950. godine u Americi (SAD), kaoprva ustanova u svetu koja je počela da se bavi izdavanjem kreditnihkartica. Sve je počelo tako što je ugledni američki biznismen, gospodinMeknamara sasvim slučajno dobio ideju o bezgotovinskom načinuplaćanja. Zaboravivši novčanik, našao se u neprilici pred gostima koje je pozvao na ručak. Srećom, osoblje restorana, čije je usluge često koristio, dozvolilo mu je da na osnovu svojeručno potpisanog iznosa, račun platisutradan.
• Tokom godina, Diners kartica se menjala i napredovala i danas je izvanredno sredstvo bezgotovinskog plaćanja na preko 14 milionaprodajnih mesta u preko 200 zemalja širom sveta a koristi je oko 10 miliona zadovoljnih članova. Sa Diners Club karticom moguće je podićigotovinu na preko 650.000 bankomata i Cash Advance mesta, uživati u nekoj od preko 100 aerodromskih loža, kao i u čitavom nizu drugihpogodnosti.
American Expres
• American Express Company (NYSE: AXP), sometimes known as "AmEx" or "Amex", is a diversified global financial servicescompany that is headquartered in New York City. Founded in 1850, it is one of the 30 components of the Dow Jones Industrial Average. The company is best known for its credit card, charge card, and traveler's cheque businesses. Amex cards account for approximately 24% of the total dollar volume of credit card transactions in the US, the highest of any card issuer.[1][2]
• BusinessWeek and Interbrand ranked American Express as the 22nd most valuable brand in the world, estimating the brand to be worth US$14.97 billion.[3] Fortune listed Amex as one of the top 30 Most Admired Companies in the World.[4] The New York Times reports it has a 91% Satisfaction rank
DinaCard
• DinaCard platna kartica je nacionalna platna kartica.Osnovana 2003 godine u saradnji NBS i poslovnihbanaka. Do sada je izdato 2,4 miliona DinaCard kartica.Mogu se koristiti na najvećoj prihvatnoj mreži u zemlji,koja se sastoji od preko 57.000 POS terminala naprodajnim mestima i više od 2.700 bankomata. Nakonpet godina poslovanja, DinaCard sistem je uspeo dazauzme trećinu tržišta platnih kartica u zemlji, uzneprekidan rast broja izdatih kartica, broja transakcija iprometa. DinaCard sistem čini 31 banka, od kojih 26aktivno izdaje DinaCard karticu, i sedam procesorskihkuća. 23 banke, pored debitne, izdaju i kreditnuDinaCard karticu.
Spisak banaka i procesora u DinaCard sistemu
Agrobanka A.D. BeogradAIK banka A.D. NišALPHA BANK A.D. BeogradBanca Intesa A.D. BeogradČačanska banka A.D. ČačakCredit AgricoleCredy banka A.D. KragujevacErste bank A.D. Novi SadEurobank EFG štedionica A.D. Beograd JUBMES A.D. BeogradKBC banka A.D. BeogradKomercijalna banka A.D. Beograd Marfin bank A. D. BeogradMetals banka A.D. Novi SadMoskovska bankaNLB banka A.D. BeogradOTP banka Srbija a.d. Novi SadPiraeus banka A.D. BeogradPoštanska štedionica A.D. BeogradPrivredna banka A.D. Beograd Privredna banka A.D. Pančevo ProCredit Bank A.D. Beograd Srpska banka A.D. BeogradUniCredit Bank Srbija A.D. Beograd Univerzal banka A.D. BeogradVojvođanska banka A.D. Novi Sad
Certus D.O.O. BeogradChip Card D.O.O. BeogradE-funds CorporationEuroPlanet A.D. Beograd First Data InternationalMBU D.O.O. ZagrebMellon Transaction Solutions D.O.O.
Pravila i mandati kartičarskih organizacija
• Sve kartičarske organizacije propisuju određena pravila poslovanja koja moraju biti ispunjena od strane svih učesnika u kartičarskim transakcijama
• Skoro sva pravila usmerena su tako da zaštite krajnjeg korisnika platne kartice i obezbede svima u lancu sigurno poslovanje
• Pravila i mandati se redovno unapređuju kako bi pratili najnovije sigurnosne standarde, zapravo kartičarske organizacije pojedinačno ili ujedinjeno diktiraju uvođenje sigurnosnih standarda i najnovijih tehnologija
• Svi učesnici dužni su da se pridržavaju ovih pravila i često postoje veoma ozbiljne i skupe kazne za nepridržavanje propisanih pravila
• Primer je EMV liability shift tj dogovor između kartičnih organizacija i Banaka o izdavanju Chip kartica koje imaju veću sigurnost za krajnjeg korisnika...
Model poslovanja banaka sa nekim kartičnim organizacijama
• The typical credit card business model
• When a consumer makes a purchase using a credit or charge card, a small portion of the price is paid as a fee (known as the merchant discount), with the merchant keeping the remainder. There are typically three parties who split this fee amongst themselves:
• Acquiring bank: the bank which processes credit card transactions for a merchant, including crediting the merchant's account for the net value charged to a credit card.
• Issuing bank: the bank which issues the consumer's credit card. This is the bank a consumer is responsible for repaying after making a credit card purchase. The issuer's share of the merchant discount is known as the interchange fee.
• Network: the link between acquiring banks and issuing banks. These banks have relationships with a network, rather than with each other, for fulfilling card purchases. This allows a card issued by a community bank in Peru to be used at a shop in Sri Lanka, for instance, without requiring the banks to have a direct relationship with each other. The two largest networks in the world are Visa and MasterCard.
Issuing Banka (issuer)
• Da bi banka dobila licencu za izdavanje (issuing) i prihvatanje platnih kartica mora da ispuni određene uslove koje diktiraju kartične organizacije– Ima određeni broj korisnika (obično se traži da banka
zadovolji određeni procenat učešća na tržištu)– Izda određeni broj kartica u određenom vremenu– Obezbedi garanciju za plaćanje svih transakcija njenih
klijenata na prihvatnoj mreži (acquiring network) tj. EFT POS terminalima i bankomatima
– Instalira sopstvene bankomate– ...
Acquiring Banka (acquirer)
• Da bi banka dobila licencu za (acquiring) prihvatanje platnih kartica na Bankomatima i EFT POS terminalima mora da zadovolji još strožije uslove nego za izdavanje kartica– Da instalira određeni broj EFT POS terminala u određenom
vremenu– Da obezbedi kolateral (može da bude i nekoliko miliona
eur)
• Banka prihvatilac ima ugovore sa trgovcima o prihvatanju platnih kartica na trgovačkim mestima kako bi se korisnicima platnih kartica omogućilo plaćanje karticom umesto kešom ili čekovima
Tipovi licenci
• NPR. VISA razlikuje više tipova članstva (membera)– Acquirer– Associate– ATM Acquirer– Disbursing Member– Group Member– Issuer– Merchant Bank– Participant– Plus Program Participant– Principal– Visa Acquirer– Visa Electron Acquirer– Visa Electron Issuer– Visa Issuer
Prava i obaveze
• U zavisnosti od tipa licence koju poseduje, banka ima prava i obaveze– NPR. Principali VISA-e u Srbiji
• Banca Intesa Beograd• Komercijalna Banka Beograd• Alpha Bank• Vojvođanska Banka• OTP• Societe General• Credy Agicole• Poštanska Štedionica• ...
Banke
• Issuing bank (banka izdavalac)
– Banka koja ima licencu za izdavanje kartica (ugovor sa kartičnom organizacijom)
• Acquiring bank (banka prihvatilac)
– Banka koja ima licencu za prihvatanje kartica
– Licenca se može odnositi na ATM mrežu i/ili EFT POS mrežu
Acquiring banke u Srbiji
• DINA– Skoro sve
• VISA– Banca Intesa Beograd– Komercijalna banka– Vojvođanska banka– Alpha Bank– OTP banka– KBC (sub acquiring)– PBB (sub acquiring)
• MasterCard– Banca Intesa Beograd– Komercijalna Banka– OTP Banka
• Amex– Banca Intesa Beograd
• Diners– Diners Srbija
Procesori 1/2
• Kompanije koje obezbeđuju tehničke uslove za korišćenje i obradu platnih kartica
• Procesori omogućavaju vezu između banke i kartične organizacije– Svaka banka Acquirer sertifikuje svog procesora kod
kartične organizacije– Banka može imati samo jednog procesora za prihvat
kartica na Bankomatima ili EFT POS terminalima za jednu kartičnu organizaciju
– Banka može imati samo jednog procesora koji je registrovan za izdavanje kartica te banke za jednu kartičnu organizaciju
Procesori 2/2
• Svaki procesor mora biti registrovan kod kartičnih organizacija• Da bi se registrovao, procesor mora da prođe sertifikaciju sa barem
jednom principal bankom• Sertifikacija je proces u kome procesor radi niz testova sa kartičnom
organizacijom koji treba da pokažu da procesor poštuje sve protokole i procedure propisane od strane kartične organizacije za obavljanje procesinga za issuing i acquiring
• Poznati procesori u našem regionu– First Data Intenational– Euronet– Chip Card– MBU– Bankart– ...
Banka – Procesor
• Svaka Banka koja je principal ima mogućnost da sama obavlja posao procesinga
• Sertifikacija banke radi se na isti način kao sertifikacija procesora
• Primer banakaka koje rade tzv In house procesing:– Vojvođanska banka Novi Sad
– Raiffeisen banka Sarajevo
– Banka Koper
– Privredna Banka Zagreb
Trgovci
• Merchant, neko ko prodaje robu ili uslugu koju je proizveo neko drugi, termin koji koriste sve kartiče organizacije
• Trgovci potpisuju ugovore o prihvatu platnih kartica isključivo sa bankama, a banke su u obavezi pred kartičnim organizacijama da “garantuju” za svakog svog trgovca
• Banke obavezuju trgovce da poštuju pravila i procedure propisane od strane kartičnih organizacija
Tipovi trgovaca (merchanta)
• Kartične organizacije prepoznaju više tipova trgovaca– Airline– Car Rental Company– Cash Disbursement Merchant– Cruise Line– Electronic Commerce Merchant– High-Risk Telemarketing Merchant– Hotel– International Airline– In-Transit Service Gambling Merchant– In-Transit Service Merchant– Mail/Phone Order Merchant– Prepaid Card Merchant– Quasi-Cash Merchant– Recurring Services Merchant– Retail Merchant– Single Merchant– T&E Merchant– Timeshare Merchant– Wire Transfer Merchant
Vendori (proizvođači opreme i sw)
• Svi proizvođači opreme i softvera koja se koristi u poslovanju sa platnim karticama, najčešće se nazivaju Vendorima
• Svaki proizvod (bilo da se radi o HW ili SW) koji se koristi u poslovanju sa platnim karticama mora zadovoljiti niz propisanih pravila i standarda (naravno od strane kartičnih organizacija)
• Određeni proizvodi moraju biti zasebno sertifikovani (npr: Card Reader, EMV kernel, ATM model, EFT POS model...)
Najpoznatiji vendori
• ATM– NCR– Wincor Nixdorf– Diebold
• EFT POS– Ingenico– Hypercom– Verifone
• Host software– ACI (base 24)– Tieto Enator – Compass plus
• Kartice– Gemalto– Austria Card– Oberthur
• Security (HSM)– Thales e security
Korisnici
Tehnološka podela platnih kartica
• Standardne plastične kartice
• Sa magnetnom trakom
• EMV (sa magnetnom trakom i čipom)
• Contactless
Standardne
• Standardne plastične kartice su kartice koje suegzistirale samo u okviru lokalnih tržišta jer suih izdavale firme i to najčešće za potrebeplaćanja telefonskih razgovora...
Magnetne
• Kartice sa magnetnom trakom sadrže na sebitri staze: za identifikaciju emitenta kartice, broja računa i vlasnika računa (PIN - šifra), doksu upisani podaci podložni spoljnim uticajima, mogu biti promenjeni, izbrisani ili oštećeni
Chip (EMV)
• Smart kartica (Smard Card) je plastična kartica, koja je po izgledu slična običnim kreditnim ilidebitnim karticama, ali za razliku od njihposeduje jedan novi detalj – integrisano koloili čip na kome se nalazi procesor (pomoćukoga se omogućavaju razna izračunavanjadirektno na kartici) i memorija
Contactless
• Contactless kartice su u osnovi magnetne ili čip kartice koje imaju “antenu” koja im omogućava plaćanje na specijalizovanim terminalima bez kontakta
Dizajn platnih kartica 1/3
• Lice platne kartce
Dizajn platnih kartica 2/3
• Lice platne kartce
1 Banka2. Čip3 Hologram4.BIN (broj kartice)5 Brend izdavaoca6 Expiration date7 Ime korisnika kartice8 contactless chip
Dizajn platnih kartica 3/3
• Poleđina platne kartice
1 Magnetna pista2.Potpis korisnika3 Card Security Code
ISO/IEC 7810:2003ISO/IEC 7810:2003/Amd 1:2009
• ISO/IEC 7810:2003 is one of a series of standards describing the characteristics of
identification cards. It is the purpose of ISO/IEC 7810:2003 to provide criteria to which cards shall perform and to specify the requirements for such cards used for international interchange. It takes into consideration both human and machine aspects and states minimum requirements.
• ISO/IEC 7810:2003 specifies: four different sizes of identification cards with a nominal thickness of 0,76 mm and dimensions of:
Format Dimension Usage
ID-1 85.60 × 53.98 mm Most banking cards and ID cards
ID-2 105 × 74 mm German ID cards issued prior to Nov
2010
ID-3 125 × 88 mm Passports and Visas
ID-000 25 × 15 mm SIM cards
ID-1 fromat
• The ID-1 format specifies a size of 85.60 × 53.98 mm (3.370 × 2.125 in). It is commonly used for banking cards (ATM cards, credit cards, debit cards, etc.). Today it is also used for driving licences in many countries (including the United States, Brazil, Canada, Australia, New Zealand, Norway, and European Union countries). This format is also used as a personal identity card in some other countries like Belgium, Bulgaria, Chile, Croatia, Pakistan, Peru, Brazil, Poland or Switzerland, in retail loyalty cards, and it is one fairly common format for business cards. The United States passport card also uses the ID-1 format.
• ISO/IEC 7813 defines additional characteristics of ID-1 plastic banking cards, for example a thickness of 0.76 mm and corners rounded with a radius of 3.18 mm.
• ISO/IEC 7811 defines traditional techniques for recording data on ID-1 identification cards, namely embossed characters and several different magnetic recording formats.
• ISO/IEC 7816 defines ID-1 identification cards with an embedded chip (smartcard) and contact surfaces for power, clock, reset and serial-data signals.
ISO/IEC 7813
• ISO/IEC 7813 is a standard that defines properties of financial transaction cards [1], egATM or credit cards.
• The standard defines:
– physical characteristics, eg size, shape, location of magnetic stripe etc
– magnetic track data structures
ISO/IEC 7813Physical characteristics
• ISO/IEC 7813 specifies the following physical characteristics of the card, mostly be reference to other standards:– Embossed characters by reference to ISO/IEC 7811
– Embossing of expiration date the format, eg MM/YY or MM-YY
– Magnetic stripe by reference to ISO/IEC 7811
– Integrated circuit with contacts by reference to ISO/IEC 7816-1
– Integrated circuit without contacts by reference to ISO/IEC 10536-1, ISO/IEC 14443-1 or ISO/IEC 15693-1, as appropriate
ISO/IEC 7813Magnetic Strype 1/2
• Track 1The Track 1 structure is specified as:
– STX : Start sentinel "%" – FC : Format code "B" (The format described here. Format "A" is reserved for
proprietary use.) – PAN : Primary Account Number, up to 19 digits – FS : Separator "^" – NM : Name, 2 to 26 characters (including separators, where appropriate,
between surname, first name etc) – FS : Separator "^" (field separator, deli polja)– ED : Expiration data, 4 digits or "^" – SC : Service code, 3 digits or "^" (određuje za šta sve i na koji način karica
može biti korišćena)– DD : Discretionary data, balance of characters – ETX : End sentinel "?" – LRC : Longitudinal redundancy check, calculated according to ISO/IEC 7811-2
(ček sum)The maximum record length is 79 alphanumeric characters.
ISO/IEC 7813Magnetic Strype 2/2
• Track 2
The Track 2 structure is specified as:– STX : Start sentinel ";" – PAN : Primary Account Number, up to 19 digits, as defined in
ISO/IEC 7812-1 – FS : Separator "=" – ED : Expiration date, YYMM or "=" if not present – SC : Service code, 3 digits or "=" if not present – DD : Discretionary data, balance of available digits – ETX : End sentinel "?" – LRC : Longitudinal redundancy check, calculated according to
ISO/IEC 7811-2
The maximum record length is 40 numeric digits.
ISO/IEC 7816
• ISO/IEC 7816 is an international standard related to electronic identification cards with contacts, especially smart cards, managed jointly by the International Organization for Standardization (ISO) and the International ElectrotechnicalCommission (IEC).
• It is edited by the Joint technical committee (JTC) 1 / Sub-Committee (SC) 17, Cards and personal identification.
• The following describes the different parts of this standard.
EMV uvod 1/2Europay MasterCard VISA
• EMV is a standard for interoperation of IC cards ("Chip cards") and IC capable POS terminals and ATMs, for authenticating credit and debit card payments. The name EMV comes from the initial letters of Europay, MasterCard and VISA, the three companies that originally cooperated to develop the standard. Europay International SA was absorbed into Mastercard in 2002. JCB (formerly Japan Credit Bureau) joined the organization in December 2004, and American Express joined in February 2009. IC card systems based on EMV are being phased in across the world, under names such as "IC Credit" and "Chip and PIN".
• The EMV standard defines the interaction at the physical, electrical, data and application levels between IC cards and IC card processing devices for financial transactions. Portions of the standard are heavily based on the IC Chip card interface defined in ISO/IEC 7816.
• The system is not compatible with the original Carte Bancaire smart cards systematically deployed in France since 1992. However, the French Carte Bancaire now also uses the EMV standard.
• The most widely known implementations of EMV standard are:– VSDC - VISA – MChip - MasterCard – AEIPS - American Express – J Smart - JCB
• Visa and MasterCard have also developed standards for using EMV cards in devices to support card-not-present transactions over the telephone and Internet. MasterCard has the Chip Authentication Program (CAP) for secure e-commerce. Its implementation is known as EMV-CAP and supports a number of modes. Visa has the Dynamic Password Authentication (DPA) scheme, which is their implementation of CAP using different default values.
EMV uvod 2/2Europay MasterCard VISA
• The most widely known implementations of EMV standard are:– VSDC - VISA – MChip - MasterCard – AEIPS - American Express – J Smart - JCB
• Visa and MasterCard have also developed standards for using EMV cards in devices to support card-not-present transactions over the telephone and Internet. MasterCard has the Chip Authentication Program (CAP) for secure e-commerce. Its implementation is known as EMV-CAP and supports a number of modes. Visa has the Dynamic Password Authentication (DPA) scheme, which is their implementation of CAP using different default values.
PCI DSS
• Payment Card Industry Security Standards Council is an independent council originally formed by American Express, Discover Financial Services, JCB, MasterCard Worldwide and Visa International on Sept. 7, 2006, with the goal of managing the ongoing evolution of the Payment Card Industry
Data Security Standard.
Terminalna oprema
MI ZNAMO
sve o karticama
Bankomat
• Računar sa periferijama za:
– Izdavanje novca
– Štampanje računa
– Monitor, tastatura, komunikacija
– Oklopljeno kućište sa sefom
• Konstantno povezan na banku prihvatioca (procesora banke) putem iznajmljene linije, GPRS-a...
MI ZNAMO
sve o karticama
POS terminal
• Elektronski uređaju koji omogučavaju prihvat (plaćanje) platnih kartica na prodajnom mestu
• Operacije:
– Prikupljanje podatke sa kartice i iznosa transakcije
– Povezivanje (telefonski, GPRS, Ethernet) na banku prihvatioca
– Po dobijanju odobrenja štampanje računa transakcije
Korišćenje platnih kartica
• Primer pravilnog i nepravilnog korišćenja platnih kartica (film)
http://www.youtube.com/watch?v=EBlQDDkX0wg
MI ZNAMO
sve o karticama
Scenario transakcijeBanka izdavalac - issuer
Banka
prihvatilac -
acquirer
Sledeće predavanje
• Tehničke Komponente sistema (POS, ATM, Host, Front Office, Back office, CMS, Server banke, ....)
• Protokoli (NDC, DDC, ISO 8583, Hyperom ISO 8583...)
• Primeri transakcija POS & ATM
• Osnovne informacije o ATM i POS terminalima
Rezime(šta smo naučili)
