Visa Acknowledges EMV Rollout Pain (InfoRiskToday)

So why is Visa temporarily reducing the fraud chargeback burden on non-EMV-compliant U.S. merchants? Mark Nelsen, Visa’s senior vice president, says it boils down to this: The card brand wants to give retailers a break while it takes steps to streamline the cumbersome certification of new POS devices.

In an interview with Information Security Media Group, Nelsen acknowledges that many retailers have found it difficult to get their EMV-compliant POS devices certified. “We see that there are some bottlenecks that are some pain points,” he says. “So we’re just proactively trying to address some of these bottlenecks.”

Visa, MasterCard and American Express have agreed to streamline the EMV certification process for merchants, in some cases limiting the number of tests that have to be conducted on POS devices to have them certified, Nelsen points out. Plus, they’re simplifying the required functionality of the POS devices.

To give retailers a break while during the ongoing rollout of certified equipment, starting July 22, Visa is blocking all chargebacks to merchants for counterfeit card fraud on transactions totaling $25 or less. And beginning in mid-October, Visa will cap the number of chargebacks an issuer can charge back to a merchant to 10 per account. AmEx is making similar adjustments.


“With those changes in place, that will represent around 40 percent of the chargebacks from a transaction count that today the merchants are seeing,” Nelsen says.


Last October, liability for counterfeit card fraud on magnetic-stripe transactions shifted from issuers to merchants that have not yet deployed EMV.


Reviewing Chargeback Processes

Some retailers have complained that many of the chargebacks have been unfairly high, and in some cases even unwarranted. But Nelsen contends Visa is regularly reviewing issuers’ chargeback processes to ensure merchants are not being unfairly charged.

“We look at those current fraud rates that we’re seeing and how issuers are using different reason codes for chargebacks on fraud types,” he says. And we don’t see any noticeable change in the issuers’ behavior. … I think what is challenging for merchants is that they’ve never seen fraud at the point of sale before, because they’ve never had the liability. And so anytime they see a fraud that occurs on an account, and maybe there are multiple transactions that are fraudulent, they may wonder, ‘Why didn’t the issuers catch it? How could the let 10, 25 transactions go through on an account?’ And the answer is, issuers are not perfect in identifying fraud; it’s hard to capture fraud. They do a really good job, but some fraud goes through.”

During this interview (see audio link below photograph), Nelsen also discusses:

  • Statistics that show the U.S. is now the largest chip card market in the world;
  • How the card brands are working together to streamline EMV certifications; and
  • Why Visa has no plans to re-evaluate its deployment of chip-and-signature rather than chip-and-PIN in the U.S.


As Visa’s senior vice president of risk products and business intelligence, Nelsen manages the company’s global fraud detection solutions as well as its chip technology programs and integration. In 2015, ISMG recognized Nelson as one of the banking industry’s most influential information security leaders.

Source: SANS ISC SecNewsFeed @ June 30, 2016 at 05:54PM

0
Share