BayPay Event - Feb 23, 2011 - Is Mobile ready for Payments? - Mobile Device Security Threats and Solutions
Wednesday, February 23, 2011 from 6:00 PM to 9:00 PM (PST)
Menlo Park, CA
After a very lively BayPay Forum event on Jan 23rd about the "Impact of the new Federal Reserve's ruling on Interchange on Payment business models and Innovations", we are pleased to introduce a second event this year that will fit well with the series we plan on organizing specifically on Mobile Payments in 2011.
We should have at least 4-5 events on Mobile Payments to discuss different aspects of this emerging market. Each event will have its own topic and own speakers to explain what is coming. As the buzz around NFC is intensifying with the creation of ISIS, a joint venture between AT&T, Verizon and T-Mobile involving Discover and Barclays Bank or with the different pilots started by banks in the US and abroad, our first event will be focusing on the foundation of all this: How secure is the Mobile? with a panel of experts coming from the security, banking and telecom industry. Come to this event if you want to understand the challenges and what people are working on as well as, network with the payment and commerce professionnals.
This event is sponsored by Exponent.
Don't forget that, as a BayPay Member, you benefit from a 25% discount on the upcoming Mobile Payments/Contactless Alternative Payment Systems on March 29-30, 2011.
To register, go to http://baypayforum-mar29.eventbrite.com/
Is your cell phone more secure than your credit card? While introducing significant benefits, mobile payment also introduces some risks not known for traditional credit card payments. The threats include stealth RF attacks, but also various hardware attacks. A group of security experts discuss the technology behind mobile payments and show where things may go wrong while also discussing ways to enhance convenience and security.
7:00-8:30 Panelists Presentation and Discussion
7:00-7:05 Introduction of the BayPay Forum by Daniel Chatelain
7:05-7:15 Introduction of Exponent, Session Topic, and Panelists by Brad McGoran
7:15-8:00 Panelists Views on Mobile Device Security Threats and Solutions. (15-20 minutes each)
8:00-8:30 Questions to the Panel (Moderated by BMcGoran)
8:30-9:00 Networking and Departure.
Marc Witteman is the founder and CTO of Riscure, a security test lab with its head office in Europe. Since 2010 he is also the director of the US branch, Riscure Inc, in San Mateo, California.
Marc has a long track record in the security industry. He has been involved with a variety of security projects for over two decades and worked on applications in mobile communications, identification, and the payment industry. As a security analyst he developed several tools for testing software and hardware security. He has authored many articles on smart card and embedded device security issues, and was amongst the first to publish on security risks for Java Cards and ePassports. Current interests include secure programming and fault injection attacks on embedded devices.
Paul Kocher is the founder, President, and Chief Scientist of Cryptography Research Inc, headquartered in San Francisco, California. Mr. Kocher previously held positions at RSA Security and was a founding member of Valicert, Inc. (now Tumbleweed). He has gained an international reputation for his research and innovative designs in cryptography. An active contributor to major conferences and leading security initiatives, Paul has designed numerous cryptographic applications and protocols which are successfully deployed in real world systems. His accomplishments include discovering timing attacks and Differential Power Analysis (including techniques for preventing against these vulnerabilities), helping author the widely used SSL 3.0 standard, and leading the design of the record breaking DES Key Search machine. He has recently focused on developing anti-piracy technologies for securing digital content. Paul was elected to the National Academy of Engineering in 2009.
Mr. Bernabeu is the Technical Advisor for the Standardization and Technology Department at Gemalto. In this role, he supports Gemalto's marketing and product groups in the field of multiple application infrastructure. Mr. Bernabeu previously managed the issuance software 'road map' for Gemalto, which made him responsible for overseeing the internal and external issuance services strategy. Prior to this post, he was Senior Manager in Gemplus' Financial and Security Services Business Unit, where he was responsible for systems architecture and product development for the personalization and smart card management software product line. His earlier experiences at Gemplus were gained in engineering management and software development for the corporate personalization organization. He supervised the software development activities of 15 Gemplus personalization centers worldwide.
Mr. Bernabeu was elected as GlobalPlatform's Technical Director in 2005. His main role is to drive forward the development of GlobalPlatform's smart card specifications and related technical initiatives. Mr. Bernabeu also acts as GlobalPlatform's central technical liaison point, coordinating the efforts of the organization's three technical committees - Card, Device and Systems - and the GlobalPlatform Task Forces. He ensures that all elements of GlobalPlatform-based smart card solutions are interoperable and offer backwards compatibility with previous technology releases. Prior to becoming GlobalPlatform Technical Director, Gil served GlobalPlatform as the Chair of the Systems Committee for over two years.
Brad A. McGoran, P.E., CSCIP, CSCIP/G
Brad A. McGoran is the leader of Exponent’s identification consulting division. Founded in 1967, Exponent is one of the nation’s leading engineering consulting firms dedicated to analyzing system failures or problems and resolving product reliability issues. Mr. McGoran’s team has extensive experience in the testing and evaluation of contact and contactless smartcards, e-passports, mobile devices, and related equipment according to the ISO, ANSI, and Government-specific standards. His team investigates and analyzes the reasons for premature device failures, interoperability problems, and security vulnerabilities, and advises clients on methods and techniques to improve reliability. Mr. McGoran is a licensed and registered Professional Engineer and a certified smart card industry professional. He serves as the advisor to the U.S. Common Access Card and PIV card programs and sits on the ANSI standards writing committees for IC Cards with Contacts, Contactless IC Cards, and associated test methods.
In 2005, Mr. McGoran founded Exponent China, a Hangzhou, China-based subsidiary of Exponent. He served as Exponent China’s General Manager until returning to Exponent’s Menlo Park headquarters in 2008.
Mr. McGoran has given numerous presentations and lectures and served as keynote speaker on product failure analysis and reliability, failure prevention, and quality assurance at Universities, professional societies, conferences, and government facilities including the United States Pentagon.
When & Where
The BayPay Forum
If you are a member of the payment industry, you are invited to join BayPay, a networking group of the Silicon Valley focused on payments and composed exclusively of members in the payment community or investors in this area. If you are not yet a member and would like to join, reply to this email to get your free membership with a quick description on how you fit in the payment industry. Even after all these years, the payments industry is still expanding in both mature and emerging markets worldwide as the industry adapts to new market opportunities. New technologies including contactless cards, cell phone integration, biometrics, RFID and strong authentication are emerging and potentially creating new challenges for both financial institutions and their customers. Prepaid cards, gift cards, new forms of payment like PayPal, are all vivid demonstrations of the vibrancy of new thinking in the payments industry. With wireless ubiquity now essentially a reality, transaction aggregation and micro payments become a necessity. As the financial industry and merchants provide more and more services online, phishing emerges as a problem that requires more education and communication with consumers.
Objective BayPay's primary goal is to provide a face-to-face professional networking forum for the regular exchange of views on these issues among active professionals within the payments industry who are located in the San Francisco Bay Area. An online BayPay group on Yahoo! provides opportunities for members to interact among themselves between regular face-to-face meetings.
BayPay Is a joint initiative of Glenbrook, Edgar Dunn & Company and Daniel Chatelain from QSecure, Inc. that is open to other companies or individuals contributions.
Membership To ensure an appropriate level of professional participation, membership in BayPay group is by invitation only. BayPay members invite others to join based upon their own judgment as to who could best contribute to the group. To subscribe please go here.
Code of Conduct All information shared by BayPay members is considered their own personal opinion and does not represent the official position of any company. All member comments are not for attribution in any form whatsoever outside of the BayPay membership. While we would like any information exchanged in this forum or in our events remain private, members must understand that this is a semi-public group and there can be no assurance of confidentiality.