Go Back  FlyerTalk Forums > Miles&Points > Credit, Debit and Prepaid Card Programs > Credit Card Programs
Reload this Page >

USA EMV cards: Availability, Q&A (Chip & PIN -or- Chip & Signature) [2012-2015]

Old Sep 20, 2013, 11:40 am
FlyerTalk Forums Expert How-Tos and Guides
Last edit by: philemer
Posts from 1/1/16 onward can be found here: http://www.flyertalk.com/forum/credit-card-programs/1739359-2016-onward-usa-emv-cards-availability-q-chip-pin-signature.html

EMV wikipost volunteers: kebosabi

What is EMV?
EMV is a defacto global standard of technology where there is a visible microchip on the front of the card. It looks like this:

Who issues them?
See Google Docs spreadsheet in Post #1

SFOAMS also has created a list of excellent webpage that shows US EMV cards in a more interactive interface

Another site, which lets you narrow the search for an EMV card by various parameters, is http://www.spotterswiki.com/emv/index.php.

Several credit unions issue some form of Chip-and-PIN credit cards or prepaid cards. Prepaid EMV cards however are not recommended due to junk fees. USAA (currently restricted to members of military) used to offer Chip-and-PIN cards, but as late has backtracked to Chip-and-Signature priority.

Hey that's a cool Google Docs list! I know others that aren't on that list. How can I help by adding them to the list?
My bad for not putting this into the wiki sooner. Right now, the Google Docs is locked out of editing and only in "read-only" view because there were instances in the past where people would just delete the rows not thinking that it affects others viewing the list.

If you promise not to delete any rows and input all the pertinent info (annual fee, rewards, FTF, etc.), I can provide you with edit access. Just shoot me a PM to kebosabi with your gmail address and I'll provide you edit access.

Thanks for helping out!


As of October 2014, no USA-based card issuer offers Chip-and-PIN priority cards except for BMO Harris (Diners Club) and UN Federal Credit Union. Other major USA-based banks such as BofA, Chase, Citi, as well as others issue Chip-and-Signature cards which may work at many automated kiosks. However, bear in mind the word may is used above is a context where there is no absolute certainty of success for certain environments such as automated kiosks due to different natures of offline and online transactions. It is highly recommended to read Post #3 which lists real life FTer examples on how Chip-and-Signature worked and did not work at various transaction environments.

Can I upgrade it right now?
If it's listed on that Google Docs spreadsheet or SFOAMS' Silk page, wouldn't hurt to call/twitter them for a free upgrade. If you get the response you don't like, hang up, try again.

What is the difference between Chip-and-Signature and Chip-and-PIN?
You insert the chipped card into the slot. The physical contact terminal will read the EMV chip and the terminal will automatically read the preferred cardholder verification methods (called CVM) for that card.

Chip-and-Signature means that the terminal will printout a receipt for you to sign. This is the most prevalent authentication for most US issued EMV cards. Chip-and-Signature helps in a way that it will get through to face-to-face merchant transactions where you and the merchant do not speak the same language.

Chip-and-PIN means that the terminal will prompt you to input a PIN for authentication. Some credit union issued credit cards will have this CVM as secondary if Chip-and-Signature cannot be done. Chip-and-PIN is the more prevalent method of authentication used outside the US, especially in transaction environments where no human interaction is needed (i.e. automated gas pumps, toll roads, train kiosks, etc.).

The Google Docs spreadsheet will list which CVM are used in the EMV cards listed. Some cards can only do Chip-and-Signature. Other cards can do both Chip-and-Signature and Chip-and-PIN. And others might have a third option called No CVM (no authentication needed) which is reserved for low value transactions.

One chip can hold a lot more data, therefore it is capable of doing multiple verification methods. That's one of the great things about EMV over the mag-stripe which can hold very little data.

I want to know for sure what my EMV chip does. Is there anyway I can test out my own EMV card to see what the CVM list is?
alexmt has written up a nice step-by-step procedure on Post #3615.

If most of the EMV cards in the US is the Chip-and-Signature type, doesn't that mean it's still useless abroad?
Depends if you see it as glass half empty or glass half full. See Post #3 for further details on how Chip-and-Signature has worked both successfully and unsuccessfully depending on the merchant transaction environment and use your best judgment whether which one is right for you.

Are there any places in the US that are accepting transactions via the EMV chip?
tmiw has created a dedicated Google maps webpage to show where EMV has been proven to work here: http://emvacceptedhere.com/ Per his Post #4240, feel free to add any places with active EMV terminals if you come across one.

As of 2014/05, the EMV terminals in most Walmarts and Sam's Clubs are being turned on. Hence, the best place to try them out would be your local Walmart or Sam's Club. For other merchants, it's slowly being phased in.

I hope people will post them in the Post your receipt of your 1st EMV based transaction in the US thread. cvarming has shown us an EMV transaction receipt from Brooklyn, NY in Post #2380. I myself had my first EMV based (Chip-and-Signature) transaction in two stores in the Los Angeles area, as shown in detail in Post #2705 (courtesy of WhatWhatTech for pointing these two stores out)

I don't want a chip in my card. I heard horror stories all over the media saying hackers can steal my credit card info from a mile away.
There are two types of chips. One is contactless and the other is contact. Cards can be either one or the other, or both.

In the Google Docs spreadsheet, the cards that are capable of contactless payments are listed seperately under the "RFID or NFC contactless chip" column. If it says yes, then that means it has the ability to do contactless payments. If it says no, it doesn't have that feature.

The one that the media has overhyped about hackers "stealing your information wirelessly" was the contactless type like this:

You are worried about this happening, right?

You don't have to worry. EMV is a chip standard that can have both contact and contactless interfaces. With the traditional contact interface, this means you actually have to physically insert the chip into a POS terminal for it to be authorized, like this:

With the contact interface, nothing is wireless. No data is sent out in a stand-alone contact type EMV chip. With the EMV contactless interface, data is sent wirelessly.

Furthermore, contactless chip cards are required to show a symbol (looks like Wi-Fi symbol) somewhere on the card that to denote it's capability as a contactless card. For example, here's an example of a Discover Card with contactless capability (in which Discover calls "Discover ZIP") showing the contactless symbol on the back of the card:

Don't believe everything that the media says. Besides, millions of people all over the world from London to Singapore, uses contactless payments daily in extremely crowded subways and mass transit with nary any problems. There are multiple layers of encrypted securities and keys that are needed to break the code.

Frankly, giving your physical card to a waiter/waitress who takes the card out of your view is much more susceptible to fraud than contactless payments.

Why should I care?
If you are an international traveler, you will want this because majority of the world has or in the process of converting to this payment format.


In fact, in 2012, even North Korea moved to the EMV format, leaving the US as one of the countries in the world that hasn't done so.

In addition, VISA, MC, AMEX, and Discover have all agreed to incentivize the USA shifting to EMV payments by 2015 by shifting liability for fraudulent transactions to merchants if they do not have EMV equipment and the cardholder has an EMV card. So if you travel internationally or would like to get one before the others, you might be interested in getting one.


BS! I had no problems using my card in [insert whereever country], [insert whatever point in time]
If you stick to the tourist path where they have lots of visitors from the US, you should have no problems using your mag-stripe only card in hotels and restaurants, at least for now. But as things can change as things go forward.

However, consider that once you start taking the off-beaten path, go to non-touristy places where they are not familiar with mag-stripes, rent a car and use toll roads, fill up gas, or try to buy train tickets you might end up into a trouble of the machine not recognizing your card because it lacks the chip. Furthermore, a lot of toll roads, gas pumps, and automated ticket machines lack any human assistance to help you when you need it the most.

But [insert credit card company] told me all merchants that display their logo must accept them! All I have to do is report them for violating their agreements, right?
There are several factors against this.

1. You can only speak English. The merchant representative, most likely a part-time clerk earning minimum wage, speaks in a different language, let's say French. If you have no French language skills, how are you going to get your point across? Are you going to whip out your cell phone at exorbitant int'l roaming charges and hope the customer service is going to translate it for you on the spot? Or maybe you might actually know French. But how about Swahili, Farsi, Balinese, or the multiple languages in mainland China?

2. Just like US, the rest of the world's businesses uses part-time minimum wage workers as cashiers to cut down on labor costs. Most of their SOP training manuals are written by MBA types to not to do anything they are not familiar with. Do not expect them to understand the intricate details of credit card mumbo jumbo. You don't expect Taco Bell employees to understand the minute details of Discover-JCB-Union Pay agreements, right? Same thing the other way around: be respectful as a guest in their country, prepare in advance in their ways, avoid being an "ugly American" stereotype.

3. You are a guest in their country. You are a minority. If 99.9% of their country's people and other tourists from around the world uses EMV, do you really think they are going to accomodate the 0.1% of American tourists who only have mag-stripes credit cards?

4. Again, you are a guest in their country. How would you, as an American standing in line, react if a Chinese tourist was clogging up the lines at a local Taco Bell because the clerk doesn't understand the Discover-Union Pay agreement and has trouble communicating between Mandarin spoken by the tourist and English spoken by the Taco Bell clerk? Same way the other way around. You do not want to clog up the lines for everyone. The less hassle, the better.

5. VISA and MC make tons of money from merchants in that country. Say SNCF French Rail. It's a billion dollar company in France. Do you think VISA is going to pull the plug of their relationship with SNCF because SNCF refuses to do mag-stripe processing at their unmanned train station kiosk? Of course not. Be realistic.

6. And lastly, if you're up against an unstaffed toll kiosk, gas pump or train ticket machine, are you going to yell curses at the machine?

But I want my credit card to be able to be used in the US too!
No worries. They have not gotten rid of the mag-stripe on the back of the card for backward compatibility reasons, just like we still have embossed numbers on our cards for backwards compatibility to using those old carbon copy imprinters.

[insert own Hyatt card image front and back together with red arrows pointing to all the backward compatibility features]

You use the chip on the front of the card abroad (for now), and the mag-stripe just like any other card for the US. Basically, you're increasing your credit card's acceptance rate by getting a card that both via the chip and the mag-stripe. You're getting a better deal for free.

And when 2015 comes along and US switches to EMV, you'll be way ahead of everyone else too!


So why did the rest of the world and the US moved/moving toward EMV?
Primarily, due to fraud concerns. You see, the mag-stripe has been with us since the 1950s. It may have been the most high tech thing back in the day, but with the technology that is available today, any shmo can pick up a $100 USB magnetic card skimming device off of eBay and get your credit card info.

And unlike skimming off contactless cards which actually need the person to have l33t programming skills, skimming off a magnetic stripe has become so ubiquitous that nary a day goes about skimming fraud going on somewhere in America, from gas pumps, Michael's stores (2011), Target breaches (2013), restaurant waiters/waitresses, to even McDonald's drive thrus.

https://www.google.com/search?q=skimming+fraud

These type of fraud used to be prevalent in Europe. But once they started switching over to EMV starting over 2 decades ago, this type of fraud went elsewhere. It went over to Asia, Canada and Mexico, Latin America, etc. etc. until they too began implementing EMV to combat skimming fraud. The US is practically the only country left that hasn't done so, therefore all the fraud that used to take place elsewhere is now happening here.


But EMV is old and it's not fool proof. Shouldn't we just skip over it and do something new instead?
Yes, EMV is old. It was developed in the 1990s and its smart card payment predecessor was first introduced in France. But as of today, it has become the defacto global standard of payments.

But then, what else is there? There is no other de facto global standard of payments alternative. For example, if we decide to skip over it and do something new, hypothetically like DNA matching technology, it still means US int'l travelers will continue to have problems abroad with useless plastic acceptance because no other country is using this DNA matching technology except the US.

Besides, nothing is fool proof. You can say that the bank vault isn't fool proof because you can crack it open if enough C4 is used. But your average low-life scumbag isn't likely to get military grade C4 easily either. But the bank vault does make it harder to get the bank's money over say a petty cash box. That's the point here. EMV is akin to a security tight bank vault, the old mag-stripe is akin to a petty cash box lying around inside the drawer.


I'm a business owner and I don't think EMV is going to take off. I'm not going to spend extra hundreds of dollars to upgrade my credit card machine. Convince me other wise why I should.
I can understand the added extra cost to your business once this switchover takes place. But before even saying that, look at your existing POS terminal. Does it have a slot somewhere to insert a card?

Most likely, if you had replaced your POS terminal within the past five years, you already have an EMV capable terminal. EMV is basically just not turned on yet from the processor and acquirer side.

If you have an EMV capable terminal, then a best bet would be to contact your acquirer to have the EMV feature turned on. You did your end of the deal already by having an EMV capable terminal, it is now the acquirers' responsibility to turn it on in accordance to the EMV switchover mandate.

And if you don't, you are going to replace your POS terminal anyway from common wear and tear. It isn't a hard switch-over. You can continue to use your POS terminal until it dies out because EMV cardholders will still have the mag-stripe on the back. And by the time your non-EMV capable POS terminal is up for replacement the market will be full with these newer POS terminals that can accept the mag-stripe, EMV, as well as contactless payments.

In addition, you may also want to check with your acquirer or processor about EMV capable terminals. Some of them are willing to replace your terminal for free in preparation for the US EMV switchover. Call and ask for details.


But what's in it for me? I'm the one that has to pay for the upgrade.
All the major card networks have given incentives for merchants for the upcoming EMV switchover.

If 75% or more of your credit card transactions are done on an EMV contact and contactless terminal, they are going to waive your annual PCI-DSS fees, which usually costs you around $5.00-$19.95/month per terminal. The overall long term cost savings of those compliance fees will be larger than the cost of an one time upgrade for the terminal.

The downside is that once EMV switchover happens and if you do not have a POS terminal that is able to accept EMV, the fraud liability shifts over to the merchant.

I own several fast food franchises. If I upgrade my POS terminals at all of my restaurants, it's going to cost me thousands, if not millions. I don't think anyone is going to use a fake credit card to buy $5 burgers. And if they do, wouldn't it be cheaper for me to eat the fraud cost?
Remember also that fraud isn't just committed by dishonest customers using fraudulent cards. Fraud can also happen with dishonest employees skimming off credit card data from the mag-stripe as in the case of a teenage McDonald's drive thru employee skimming off $13,000 of customers' credit cards in Olympia, WA. Consider the public relations fall out that your business may have if this happens (i.e. the big Target breach of 2013, where someone used a mag stripe card to load malware INTO Target's system). Is it worth risking to take such a huge PR disaster?
Print Wikipost

USA EMV cards: Availability, Q&A (Chip & PIN -or- Chip & Signature) [2012-2015]

Old Dec 1, 2014, 5:46 pm
  #8371  
 
Join Date: Nov 2012
Posts: 3,537
Originally Posted by Points Scrounger
As opposed to a local merchant here who has decided to make signature mandatory for every Paywave/Paypass contactless transaction.
Yes "for your security" lol
AllieKat is offline  
Old Dec 1, 2014, 6:41 pm
  #8372  
FlyerTalk Evangelist
IHG Contributor BadgeMarriott Contributor Badge
 
Join Date: Aug 2001
Location: RSW
Programs: Delta - Silver; UA - Silver; HHonors - Diamond; IHG - Spire Ambassador; Marriott Bonvoy - Titanium
Posts: 14,184
Guess you'd call it "Tap + Sign"? (UGH!)
Points Scrounger is offline  
Old Dec 1, 2014, 6:58 pm
  #8373  
 
Join Date: Nov 2012
Posts: 3,537
Originally Posted by Points Scrounger
Guess you'd call it "Tap + Sign"? (UGH!)
It's super annoying. URM Stores (Rosauer's, Super 1 Foods) requires a signature even for 79 cents (a doughnut). It's silly. I asked a manager he said "it's for your security."

Odd, because on Small Business Saturday I split transactions among my four Amex cards and the cashier said "why do you bother signing, just draw a line"
AllieKat is offline  
Old Dec 1, 2014, 7:36 pm
  #8374  
Moderator: Manufactured Spending
 
Join Date: Jul 2011
Posts: 6,576
Originally Posted by Majuki
I didn't imply that the US was unique in this sense but rather there seems to be some concern that a switch to chip-and-PIN would place a high burden of proof on the cardholder that the transaction was not legitimate. We have read reports of banks refusing to remove fraudulent charges in chip-and-PIN countries. What would allow you to prove that you didn't make the transaction? In the case of your wallet getting stolen by a tag team of thieves who observe your PIN, would the bank say you didn't safeguard your PIN and therefore it's your fault? What about in the unlikely but possible scenarios presented by the Cambridge team? Signature transactions provide enough of a fudge factor and give the benefit of the doubt that a PIN transactions don't have.

It sounds like you're suggesting we should make card security as weak as possible, because the stronger it is, the harder it would be for you to get out of paying for a fraudulent transaction.
cbn42 is online now  
Old Dec 1, 2014, 8:07 pm
  #8375  
 
Join Date: Jul 2009
Location: SJC
Programs: AA, AS, Marriott
Posts: 6,027
Originally Posted by cbn42
It sounds like you're suggesting we should make card security as weak as possible, because the stronger it is, the harder it would be for you to get out of paying for a fraudulent transaction.
I'm definitely not intending to make that argument. As I said upthread I am a proponent of chip-and-PIN transactions. I think it would increase the accountability for everybody: issuers, merchants, and customers. Right now there is enough of a fudge factor to give all three parties the benefit of the doubt.
Majuki is online now  
Old Dec 1, 2014, 9:49 pm
  #8376  
FlyerTalk Evangelist
IHG Contributor BadgeMarriott Contributor Badge
 
Join Date: Aug 2001
Location: RSW
Programs: Delta - Silver; UA - Silver; HHonors - Diamond; IHG - Spire Ambassador; Marriott Bonvoy - Titanium
Posts: 14,184
Originally Posted by AllieKat
It's super annoying. URM Stores (Rosauer's, Super 1 Foods) requires a signature even for 79 cents (a doughnut). It's silly. I asked a manager he said "it's for your security."
I asked the manager at Bartell Drugs about it, and she said, "Yeah, it's (only) good for if the stripe on your card isn't working." I never thought of drawing a line, but I might as well at onscreen Sig terminals in future for all the resemblance the awful result bears to a "signature".
Points Scrounger is offline  
Old Dec 1, 2014, 10:46 pm
  #8377  
 
Join Date: Jul 2007
Posts: 1,762
I have asked this before. Is there anybody out there who thinks signature verification provides one iota of extra security for a credit card purchase? Are the 16 year old clerks commonly employed throughout the world going to raise a fuss about a signature? Especially for small purchases? I know it is common practice in the UK, for example, to always go though the pretense of checking the signature but does anybody think that will keep fraud from occurring Of course, I must admit we are very cavalier about this in the USA. Just yesterday, I was in a supermarket and the customer in front of me bought over $300 worth of groceries; swiped het card, put it back in her wallet and nobody checked the signature (this particular supermarket like most here doesn't even bother with signatures for amounts under $50). But I'm certainly not going to lose any sleep over it because as I've said once the emv issue is resolved here, the emphasis for credit card fraud will turn to online purchases just mark my words.
JEFFJAGUAR is offline  
Old Dec 2, 2014, 2:15 am
  #8378  
 
Join Date: Jul 2014
Location: United Kingdom
Posts: 93
Originally Posted by JEFFJAGUAR
I have asked this before. Is there anybody out there who thinks signature verification provides one iota of extra security for a credit card purchase? Are the 16 year old clerks commonly employed throughout the world going to raise a fuss about a signature? Especially for small purchases? I know it is common practice in the UK, for example, to always go though the pretense of checking the signature but does anybody think that will keep fraud from occurring Of course, I must admit we are very cavalier about this in the USA. Just yesterday, I was in a supermarket and the customer in front of me bought over $300 worth of groceries; swiped het card, put it back in her wallet and nobody checked the signature (this particular supermarket like most here doesn't even bother with signatures for amounts under $50). But I'm certainly not going to lose any sleep over it because as I've said once the emv issue is resolved here, the emphasis for credit card fraud will turn to online purchases just mark my words.
I think you completely miss the point of checking signatures.

Merchants in the UK think that:

1) Cards without chips are completely insecure and should not be trusted.

2) Anything other than PIN is insecure and should not be trusted.

To try and make up for that, they make use of ALL of the security features that cards have when there is no chip, no PIN or both. Yes, that means checking signatures - even if it isn't all that effective.

If they check the signature properly and retain receipts, then they should be covered if there is any fraud on a card without a Chip and/or PIN.

IMO the US has everything totally backwards - like in that example you give. The card has features like holograms and security codes on it that the store should be checking to see if they're genuine. By allowing the cardholder to swipe the card themselves they are totally bypassing all of those security features. It would be like letting customers put cash in the till themselves - without checking to see if it's counterfeit or if it's simply a piece of green paper with $10 written on it in crayon.
Daveoc64 is offline  
Old Dec 2, 2014, 2:39 am
  #8379  
 
Join Date: Nov 2012
Posts: 3,537
Originally Posted by Daveoc64
IMO the US has everything totally backwards - like in that example you give. The card has features like holograms and security codes on it that the store should be checking to see if they're genuine. By allowing the cardholder to swipe the card themselves they are totally bypassing all of those security features. It would be like letting customers put cash in the till themselves - without checking to see if it's counterfeit or if it's simply a piece of green paper with $10 written on it in crayon.
One of the points of the chip was to REPLACE the need for those features, not merely supplement it, so card-in-cardholder-hand was safe.
AllieKat is offline  
Old Dec 2, 2014, 2:42 am
  #8380  
FlyerTalk Evangelist
 
Join Date: Jan 2014
Location: San Diego, CA
Programs: GE, Marriott Platinum
Posts: 15,486
Originally Posted by Daveoc64
IMO the US has everything totally backwards - like in that example you give. The card has features like holograms and security codes on it that the store should be checking to see if they're genuine. By allowing the cardholder to swipe the card themselves they are totally bypassing all of those security features. It would be like letting customers put cash in the till themselves - without checking to see if it's counterfeit or if it's simply a piece of green paper with $10 written on it in crayon.
All well and good until someone decides to overwrite the magstripe on a valid card with some cloned data.
tmiw is offline  
Old Dec 2, 2014, 2:49 am
  #8381  
FlyerTalk Evangelist
 
Join Date: Jan 2014
Location: San Diego, CA
Programs: GE, Marriott Platinum
Posts: 15,486
So here's another tidbit from a Cambridge paper that I found amusing. Verified by Visa and MasterCard SecureCode: or, How Not to Design Authentication

The 3DS specification only covers the communication between the merchant, is- suer, acquirer and payment scheme, not how customer verification is performed. This is left to the issuer, and some have made extremely unwise choices. For instance, one bank asks for the cardholder’s ATM PIN. It’s bad enough that EMV has trained cardholders to enter ATM PINs at terminals in shops; training them to enter PINs at random e-commerce sites is just grossly negligent. (Phishermen are also asking for ATM PINs on bogus ADS forms.)
(bold mine)

BTW, after reading about how botched VbV/SecureCode are, I actually don't feel so bad about US banks no longer supporting it now.
tmiw is offline  
Old Dec 2, 2014, 3:28 am
  #8382  
 
Join Date: Nov 2012
Posts: 3,537
Originally Posted by tmiw
All well and good until someone decides to overwrite the magstripe on a valid card with some cloned data.
The embossed/printed number will then not match.

There's honestly plenty of security features on a magstripe card that it isn't strictly NECESSARY to have EMV to identify cloned/counterfeit cards. The issue is you need to have an interest and be pretty darn knowledgeable to spot them manually. EMV can spot them for you, with a much greater success rate.
AllieKat is offline  
Old Dec 2, 2014, 5:53 am
  #8383  
 
Join Date: Oct 2014
Programs: Skymiles
Posts: 3,249
Originally Posted by reclusive46
Good news for any chip and signature or magstripe users that go to the UK, some retailers are now turning off signature support on their self service machines and processing any signature transaction as No cardholder verification. I used an Amex gift card (That is swipe and sign) that I got for my birthday today and I didn't have to sign at Waitrose, Sainsburys, Tesco or Boots self service machines, they all processed as NO CVM. This has changed recently as a few months ago I had a temporary swipe and sign card and had to sign at atleast two of those locations.

I wonder if the Boots, Waitrose and Tesco change is because they all just started taking Discover/Diners Club and 99% of them are swipe cards.
Question about UK self checkouts, I've noticed that they're the same NCR self checkout machines most retailers use here in the United States- with the exception of the PIN pad.

On UK self checkouts there is a magnetic stripe reader both on the PIN pad and on the side of the screen itself. Which MSR are you supposed to use when using a magnetic stripe card? Here in the US, the only MSR, is the one on the PIN pad.

Why would there be two MSRs to begin with? One would think even gift and loyalty would go through the PIN pad MSR, like they do here in the US. In the US, you enter your loyalty information on the credit card terminal, even if you were paying cash. Is it different in the UK?

On a side note, why are card machines so ugly in other countries while in the U.S., they seem to have beautiful color LCDs with a number of flashing lights? Is this because our equipment is newer as we are just getting EMV? Take even Walmart in the US, and Asda-Walmart in UK, here in the US, there's generally either an MX860, or MX915 that look like small iPads, while in the UK, a wimpy two line monochrome LCD on an old Ingenico.

Last edited by RedLight2015; Dec 2, 2014 at 6:40 am
RedLight2015 is offline  
Old Dec 2, 2014, 6:36 am
  #8384  
 
Join Date: Jul 2007
Posts: 1,762
In some respects, and this is not meant to offend anybody, it is cultural. Americans treasure efficiency, perhaps not as much as some other cultures but more so than our cousins across the pond. Self service has not caught on there in the same manner as it has here (it is coming but slowly). As I've said, I want to get in and out as quickly as possible. I start muttering when on the checkout line (queue) when the person in front of me starts fumbling for cash to pay the bills sorting through all sorts of bank notes and then hunting in his or her pocket for the coins needed, finding he or she cannot make exact change, re-takes out his wallet for an additional bank note. Ouch. My turn. Cashier ring up purchases, swipe my card; if under $50 done...if more than $50 sign the signatuej pad. Every so often, a clerk asks to see the card to check the signature but rarely. Mutter under my breath when I have to go back into my wallet and pull out the card for the clerk to check the signature especially for small amounts. And really get upset when I am illegally asked for further ID to complete the transaction (we have discussed this here before; in the USA visa/mc regs do not prohibit merchants from requesting ID but prohibit them from failing to complete the transaction due to failure to produce said ID. I carry a coup of the visa regs in my wallet. While not meaning to open up the older discussion, providing ID does slightly increase the possibility of identity theft; credit card fraud does not annoy me. Identity theft dos and should but we went through that). As I understand it, this prohibition against refusing to complete a visa or mc transaction for failure to produce ID does not apply in other countries like Spain where passports are requested for non pin transactions. I still give cleks in the UK a had time when they request ID even though I may be on shaky ground but at least I can ague with them in a language similar to theirs but again we've been through that here and I don't wish to open old wounds. Chip and pin is supposed to alleviate that concern.
JEFFJAGUAR is offline  
Old Dec 2, 2014, 7:45 am
  #8385  
FlyerTalk Evangelist
 
Join Date: Dec 2009
Location: HaMerkaz/Exit 145
Programs: UA, LY, BA, AA
Posts: 13,167
Originally Posted by Majuki
The issuer would make the following assumptions:
Assumption 1: EMV cards can't be cloned, so a card present transaction is using the real card.
Assumption 2: A PIN-based transaction can't be spoofed. (The Cambridge team pointed out that this is not the case, but let's say the bank assumes a PIN is infallible compared to signature.)

The inference is that there was some degree of negligence on the part of the cardholder either by: 1) choosing a weak PIN or 2) disclosing the PIN to someone else.

Regardless of the legal protections, try explaining the situation to a customer service rep at your bank who won't remove a charge even when the evidence is compelling that you didn't make the transaction.
PINs can easily be compromised - no different than skimmers being set up, people have set up mini cameras to catch the PIN.

Originally Posted by Majuki
No cardholder verification also avoids DCC? (How can you consent to DCC without signing or entering a PIN.)
Would seem like you can easily dispute it at least
joshwex90 is offline  

Thread Tools
Search this Thread

Contact Us - Manage Preferences - Archive - Advertising - Cookie Policy - Privacy Statement - Terms of Service -

This site is owned, operated, and maintained by MH Sub I, LLC dba Internet Brands. Copyright © 2024 MH Sub I, LLC dba Internet Brands. All rights reserved. Designated trademarks are the property of their respective owners.