首頁 產業/市場分類 出版商一覽 Email 通知 GII媒體代理會議 公司簡介 聯絡我們
首頁 > 市場調查報告書 > 通訊 > 線上結算違法行為的防止
產業/市場分類
通訊 (11616)
企業概況 (774)
光纖網路 (265)
次世代無線通信 (543)
行動用戶 (129)
行動設備 (764)
軟體 (1034)
電子商務 (209)
網路 (677)
網路與進入設備 (268)
數位廣播 (305)
數據中心 (345)
寬頻 (392)
衛星遠程通信 (141)
線上廣告 (144)
整合 (177)
整合通訊 (305)
機上盒 (63)
聯繫中心 (135)
Contents (627)
IT安全性 (503)
IT委外 (323)
LBS (160)
NFC (152)
RFID (215)
Web服務 (554)
WLAN/WiMAX (568)
市場調查報告書

線上結算違法行為的防止

E-Payment Security and Online Fraud Prevention: Self Defense for the Merchants and Cardholders

出版商 Mercator Advisory Group, Inc.
出版日期 2004年04月 商品編碼 19040
內容資訊 英文  
價格
本報告書已不再販售

本報告已在2011年07月19日停止出版。

簡介

交易服務通常伴隨著交易詐欺。在信用卡方面這類的詐欺犯罪更是所在多有,對於這些犯罪行為也有與之對應的各種對策。

以信用卡為首,對於消費者付費技術進行專業調查的英國市調公司 Mercator Advisory Group, Inc. ,出版了線上結算防止對策報告書 “E-Payment Security and Online Fraud Prevention: Self Defense for the Merchants and Cardholders”

該報告書包含 20 個圖表,以 35 頁的篇幅,將線上結算犯罪的概要、主要犯罪行為及其防治法綜合評估,各章節綱要如下。

前言:信用卡犯罪

1. 攻擊

  • 理解犯罪者
  • 理解犯罪內容
    • 消費者資料盜用
    • 業者資料盜用
    • 入侵支付網路系統

2. 防禦

  • 問題:擷取訊息行為、對策:暗號化
    • SSL
  • 問題:消費者的詐欺行為、對策:消費者認證
    • 3D 保全
    • 卡片確認與地址確認服務
    • 密碼發行元件
    • EMV
    • 行動電話認證
    • 交易歷史分析
  • 問題:業者的詐欺行為、對策:業者認證與卡號認證
    • 業者的認證
    • 卡號保護
  • 對策彙整

3. 網際網路上的信用卡犯罪狀況

4. 總論

目錄

NEW RESEARCH REPORT BY MERCATOR ADVISORY GROUP

The fear of online card fraud has been the topic of much press coverage recently, with the horrors of identity theft and phishing attacks leaving the public in a state of anxiety.  This heightened fear can have a seriously detrimental effect on e-commerce.  Cardholders need reassurance that merchants aren't unscrupulous criminals, merchants need to know that the cardholders are legitimate and both parties need to know that the transaction cannot be intercepted.

The latest report by Mercator Advisory Group, titled, "E-Payment Security and Online Fraud Prevention: Self Defense for the Merchants and Cardholders", takes an in-depth look at the world of online card payments, the fraud loopholes that are open to criminals and the methods and systms that have been developed to prevent attacks from happening.

Nick Holland, Director of Emerging Technologies Research at Mercator Advisory Group and the author of the report sees a problem of fraud as an arms race between the criminals and the stakeholders in online card payments:

"As with the physical world, the key to fraud control is making the activity of fraud unfeasibly expensive for the fraudsters and still affordable for the stakeholders.  The gap between the two is a fine one..."

The report details a range of different initiatives including VbV (and SecureCode), single use card numbers, password generating tokens and others designed to secure the cardholder/merchant interaction and offers metrics addressing the question: just how bad is online fraud?

Holland sees a major component of the skepticism relating to online transactions to be a result of the fear of the unknown:

"Whatever fear there is of online card theft, the overwhelming opinion among cardholders seems to be 'it's not going to happen to me', But, there are clearly concerns that it might.  The $50 liabillity cap offered on most credit cards provides financial protection from fraud, but it is well known that an incident of identity theft results in not just financial losses, but substantial time and effort to undo the damage to a consumer's credit status.  Moreover, the enduring image of the Internet as a gaping black hole still exists.  At least in a real world incident of card theft or loss, you have some idea of where and when you lost the card, some feeling of control.  The Internet removes time and place and that scares people..."

Table of Contents

Introduction: Fraud - As Old as Money

1. Attack

1.1. Know the Criminal
1.2. Know the Crime
1.2.1. Stolen consumer identities
1.2.2. Stolen merchant identities
1.2.3. Access to payment networks

2. Defense

2.1. Vulnerability: Message Interception. Countermeasure: Encryption
2.1.1. Secure Socket Layer (SSL)
2.2. Vulnerability: Fraudulent Consumer Activity. Countermeasure: Consumer Authentication
2.2.1. 3D Secure
2.2.2. Card Verification Value and Address Verification Service
2.2.3. Password Generating Devices
2.2.4. Distributed EMV
2.2.5. Cellphone Authentication
2.2.6. Transaction History Analysis
2.3. Vulnerability: Fraudulent Merchant Activity. Countermeasures: Merchant Authentication & Card
Number Protection
2.3.1. Merchant Authentication
2.3.2. Card Number Protection
2.4. Defensive Measures Summary

3. How Bad is Online Card Fraud?

4. Conclusion

List of Exhibits

Exhibit 1: Physical World Card Transaction
Exhibit 2: Virtual World Card Transaction
Exhibit 3: The Three Opportunities for Online Payment Fraud
Exhibit 4: Portable Magnetic Stripe Reader (E-Bay Price: $220)
Exhibit 5: Securing the Message Pipeline
Exhibit 6: SSL Sequence
Exhibit 7: Authenticating the Cardholder
Exhibit 8: 3D Secure Transaction Sequence
Exhibit 9: SET Protocol Transaction Sequence
Exhibit 10: Uptake of 3D Secure by Association Members
Exhibit 11: Global VbV and SecureCode Cardholder Uptake (# of cardholders in millions, percentage)
Exhibit 12: Card Verification Value
Exhibit 13: Vasco eDigiPass' Token
Exhibit 14: Cellphone Authentication
Exhibit 15: Merchant Authentication
Exhibit 16: Sample E-Bay Vendor Comments Page
Exhibit 17: Card Number Protection
Exhibit 18: Summary of Defensive Tools
Exhibit 19: Complaints to Internet Fraud Complaint Center, 2003
Exhibit 20: US Holiday Season Online Spend, 2002 / 2003
Exhibit 21: Percentage of Fraudulent Card Transactions Online
Exhibit 22: Global Credit Card Financial Losses by Type
Back to Top