Are Contactless Payment Cards Tickets to Wholesale Fraud? - ' Are Contactless Payment Cards '
(
Page 2 of 2 )
Tickets to Wholesale Fraud?">
All that the waiter must do is to meander through the dining room, walking close to seated customers.
And given that a card is secretly read, the waiter can substitute that information in settling the check and simply pocket the cash from the customer.
Does this example sound too difficult? Or, might "contactless" payment not be permitted in full-service restaurants? OK, let's try another scenario.
Assume that we are in a retail store that we frequent to purchase gas and pick up a soda for the road.
What if the cashier simply moves the contactless card reader to the edge of the counter, where it is directly up against the customers that typically lean against the counter while purchasing their items.
Up to the counter walks a woman with several items. The cashier says "That will be $22.75, ma'am."
The customer sets her purse on the counter, digs into her wallet and hands the cashier $30, receives change and leaves .
Unbeknownst to the customer, however, the proximity reader has picked up data from the contactless card in her purse; she never realizes the cashier actually used the contactless card to process the order, while pocketing the cash.
Sound wild and unlikely?
In one pilot test to date, there has been at least one such unintentional/unexpected reading of a contactless card. It wasn't done with fraud in mind, but it certainly surprised both the cashier and the customer.
Thankfully, there are solutions to such issues. But can measures be implemented to thwart all such fraudulent activity? Or even to make contactless-payment fraud more difficult?
The simplest of all methods is to simply manufacture the contactless card with a touch sensitive activation dot on the card; essentially an "on/off" switch.
Press on the dot and the card will permit its data to be read. Don't press on the dot and the card will refuse to transmit any data via short distance radio wave.
Quite simply, the card cannot be read without the card-holder intending that it should be.
That method could be extended to incorporate fingerprint-based biometric security that will allow the card to recognize only the cardholder.
Certainly that would raise the cost of the card, but t would render a lost card useless to anyone other than the original owner.
Such contactless cards could have a fingerprint reader window in one corner of the card. Only the cardholder's finger would activate the card.
While such measures are not presently in place, I am confident that such are being actively discussed by Providers and that many more alternative solutions have been identified. I am also confident that some type of anti-fraud measures will be incorporated in future generations of contactless cards.
Until then, opportunity for fraud does indeed exist with contactless cards and the creativity, ingenuity and tenacity of the thief should never be underestimated.
Jeff Chasney is executive vice president, strategic planning and CIO of CKE Restaurants, Inc., which owns the Hardees, Carl's Jr., and La Salsa Fresh Mexican Grill restaurant chains.
test
Past Opinions 
