Platne kartice

Uvodno predavanje

Autor
Nenad Suboti
Nenad.subotic@asseco-see.rs

Uvod
Osnovne informacije o platnim karticama i
svim uesnicima u kartinom poslovanju
Tehnika
Pogled iz poslovne (business) perspektive

Sadraj 1/4

ta znamo o platnim karticama

Da li koristimo platne kartice, debitne, kreditne, ip...
Definicija platnih kartica

Zato platne kartice menjaju ke?

Trokovi gotovine
Kredit

Prednost platnih kartica u odnosu na druge vidove plaanja

Istorija platnih kartica
Kako su nastale
Ko ih je najvie promovisao kroz istoriju

Platne kartice danas

Uesnici u poslovanu sa platnim karticama

Kartiarske organizacije
Banke
Procesori
Trgovci
Proizvoai opreme
Korisnici

Sadraj 2/4

Kartiarke organizacije

VISA
MasterCard
Diners
Amex
DinaCard

Pravila i mandati kartiarskih organizacija

Modeli poslovanja banaka sa kartiarskim organizacijama
Issuing
Acquiring
Tipovi licenci
Prava i obaveze
Procesori
Trgovci
Tipovi trgovaca

Sadraj 3/4

Vendori
Najpoznatiji vendori
Korisnici
Tehnoloka podela platnih kartica

Standardne
Magnetne
Ship (EMV)
Contactless

Dizajn platnih kartica

ISO standardi
EMV
PCI DSS

Sadraj 4/4
Terminalna oprema
Bankomati
POS terminali
Pravilno korienje platne kartice na prodajnom mestu
Opti scenario ATM i POS transakcije

Platne kartice

Payment cards
Plastic cards
Cards
Chip cards
EMV cards
Debit cards
Cash cards
...

DEFINICIJA: Platne kartice su instrument bezgotovinskog plaanja koji

korisniku omoguava plaanje robe i usluga i podizanje gotovog novca

Zato nam treba zamena za ke?

Cena gotovine
Kredit
Problem gubljenja gotovine
Mogunost plaanja svuda u svetu
(ogranienje valuta)

Prednost platnih kartica

Za korisnike
Znatno sigurnije od korienja ekova
Smanjuje rizik od gubljenja gotovine
Sa karticom je dostupan sav novac sa rauna... I JO VIE ! ! !

Za trgovce
Mnogo sigurnije od ekova
Oekivano vea potronja u odnosu na ke
Lake upravljanje sredstvima

Za banku
Smanjuje trokove poslovanja sa gotovinom
Najbolje sredstvo za cash kredite
Obezbeuju zaradu od issuinga i acquiringa

Istorija platnih kartica

Razliiti Izvori istorije

Prva bankarska kartica nazvana "Charg-It" uvedena je 1946 od strane John
Biggins-a, bankara iz Brooklyn-a Izvor Mastercard
Prema Diners clubu, pria poinje 1949g kada je izvesni Frank McNamara
shvatio da je zaboravio novanik i nije mogao da plati poslovnu veeru.
Tako je dobio ideju da napravi alternativu za novac pa jse ve 1950g vratio
u isti restoran i sa malom cardboard karticom. 1951g bilo je 20.000
korisnika Diners kartice. Vremenom, karton je zamenjen plastikom
American Expres osnovan je 1850g kao konkurencija za U.S. Postal Service
za money orders i travelers chacks. 1958g American Expres izdao je prvu
karticu purple charge card. U prvih 5 godina Amex je izdao preko 85.000
kartica

Platne kartice danas

Okviran broj platnih kartica u svetu
???

Broj bankomata
oko 1.800.000 (atmia)

Broj EFT POS terminala

???

Broj platnih kartica u Srbiji

6.000.000 izdatih
4.800.000 debitnih
2.000.000 aktivnih

Broj bankomata u Srbiji

2.700

Broj EFT POS terminala

57.000

Uesnici poslovanja sa karticama

Kartiarske organizacije
Banke
Procesori
Trgovci
Proizvoai opreme
Korisnici

Uloge

Kartiarske organizacije
Najpoznatije kartiarske organizacije su:
VISA
MasterCard (MC)
Diners
American Expres (Amex)
Discovery
JCB
DINA (nasionalna platna kartica)
...

VISA

Visa Inc. is a global payments technology company that connects

consumers, businesses, financial institutions and governments in more
than 200 countries and territories, enabling them to use digital currency
instead of cash and checks.
Founded 1970
The company facilitates the processing of transactions on behalf of
financial institutions and merchants through VisaNet, one of the worlds
most advanced processing networks capable of handling more than
10,000 transactions per second.[3] In 2009, Visas global network
processed 62 billion transactions with a total volume of $4.4 trillion.[4]
Visa does not issue cards, extend credit or set rates and fees for
consumers; rather, Visa provides financial institutions with Visa-branded
payment products that they then use to offer credit, debit, prepaid and
cash-access programs to their customers. In 2008, according to The Nilson
Report, Visa held a 38.3% market share of the of the credit card
marketplace and 60.7% of the debit card marketplace in the United
States.[5]
http://corporate.visa.com/index.shtml

MasterCard

MasterCard Worldwide (NYSE: MA) is a multinational corporation with its

headquarters in the MasterCard International Global Headquarters in
Harrison, New York, United States.[1] Throughout the world, its principal
business is to process payments between the banks of merchants and the
banks of purchasers that use its "MasterCard" brand debit and credit cards
to make purchases. MasterCard Worldwide has been a publicly traded
company since 2006. Prior to its initial public offering, MasterCard
Worldwide was a membership organization owned by the 25,000+
financial institutions that issue its card.
Founded 1966
MasterCard, originally known as MasterCharge, was created by several
California banks as a competitor to the BankAmericard issued by Bank of
America, which later became the Visa credit card issued by Visa Inc.. The
original banks behind MasterCharge were United California Bank (later
First Interstate Bank and subsequently merged into Wells Fargo Bank),
Wells Fargo, Crocker National Bank (also subsequently merged into Wells
Fargo), and the Bank of California (subsequently merged into the Union
Bank of California).
http://www.mastercard.com/index.html

Diners

Diners Club International osnovan je 1950. godine u Americi (SAD), kao

prva ustanova u svetu koja je poela da se bavi izdavanjem kreditnih
kartica. Sve je poelo tako to je ugledni ameriki biznismen, gospodin
Meknamara sasvim sluajno dobio ideju o bezgotovinskom nainu
plaanja. Zaboravivi novanik, naao se u neprilici pred gostima koje je
pozvao na ruak. Sreom, osoblje restorana, ije je usluge esto koristio,
dozvolilo mu je da na osnovu svojeruno potpisanog iznosa, raun plati
sutradan.
Tokom godina, Diners kartica se menjala i napredovala i danas je
izvanredno sredstvo bezgotovinskog plaanja na preko 14 miliona
prodajnih mesta u preko 200 zemalja irom sveta a koristi je oko 10
miliona zadovoljnih lanova. Sa Diners Club karticom mogue je podii
gotovinu na preko 650.000 bankomata i Cash Advance mesta, uivati u
nekoj od preko 100 aerodromskih loa, kao i u itavom nizu drugih
pogodnosti.

American Expres
American Express Company (NYSE: AXP), sometimes known as
"AmEx" or "Amex", is a diversified global financial services
company that is headquartered in New York City. Founded in 1850,
it is one of the 30 components of the Dow Jones Industrial Average.
The company is best known for its credit card, charge card, and
traveler's cheque businesses. Amex cards account for approximately
24% of the total dollar volume of credit card transactions in the US,
the highest of any card issuer.[1][2]
BusinessWeek and Interbrand ranked American Express as the 22nd
most valuable brand in the world, estimating the brand to be worth
US$14.97 billion.[3] Fortune listed Amex as one of the top 30 Most
Admired Companies in the World.[4] The New York Times reports it
has a 91% Satisfaction rank

DinaCard
DinaCard platna kartica je nacionalna platna kartica.
Osnovana 2003 godine u saradnji NBS i poslovnih
banaka. Do sada je izdato 2,4 miliona DinaCard kartica.
Mogu se koristiti na najveoj prihvatnoj mrei u zemlji,
koja se sastoji od preko 57.000 POS terminala na
prodajnim mestima i vie od 2.700 bankomata. Nakon
pet godina poslovanja, DinaCard sistem je uspeo da
zauzme treinu trita platnih kartica u zemlji, uz
neprekidan rast broja izdatih kartica, broja transakcija i
prometa. DinaCard sistem ini 31 banka, od kojih 26
aktivno izdaje DinaCard karticu, i sedam procesorskih
kua. 23 banke, pored debitne, izdaju i kreditnu
DinaCard karticu.

Spisak banaka i procesora u DinaCard

sistemu
Agrobanka A.D. Beograd
AIK banka A.D. Ni
ALPHA BANK A.D. Beograd
Banca Intesa A.D. Beograd
aanska banka A.D. aak
Credit Agricole
Credy banka A.D. Kragujevac
Erste bank A.D. Novi Sad
Eurobank EFG tedionica A.D. Beograd
JUBMES A.D. Beograd
KBC banka A.D. Beograd
Komercijalna banka A.D. Beograd
Marfin bank A. D. Beograd
Metals banka A.D. Novi Sad
Moskovska banka
NLB banka A.D. Beograd
OTP banka Srbija a.d. Novi Sad
Piraeus banka A.D. Beograd
Potanska tedionica A.D. Beograd
Privredna banka A.D. Beograd
Privredna banka A.D. Panevo
ProCredit Bank A.D. Beograd
Srpska banka A.D. Beograd
UniCredit Bank Srbija A.D. Beograd
Univerzal banka A.D. Beograd
Vojvoanska banka A.D. Novi Sad

Certus D.O.O. Beograd

Chip Card D.O.O. Beograd
E-funds Corporation
EuroPlanet A.D. Beograd
First Data International
MBU D.O.O. Zagreb
Mellon Transaction Solutions D.O.O.

Pravila i mandati kartiarskih

organizacija
Sve kartiarske organizacije propisuju odreena pravila poslovanja
koja moraju biti ispunjena od strane svih uesnika u kartiarskim
transakcijama
Skoro sva pravila usmerena su tako da zatite krajnjeg korisnika
platne kartice i obezbede svima u lancu sigurno poslovanje
Pravila i mandati se redovno unapreuju kako bi pratili najnovije
sigurnosne standarde, zapravo kartiarske organizacije pojedinano
ili ujedinjeno diktiraju uvoenje sigurnosnih standarda i najnovijih
tehnologija
Svi uesnici duni su da se pridravaju ovih pravila i esto postoje
veoma ozbiljne i skupe kazne za nepridravanje propisanih pravila
Primer je EMV liability shift tj dogovor izmeu kartinih organizacija
i Banaka o izdavanju Chip kartica koje imaju veu sigurnost za
krajnjeg korisnika...

Model poslovanja banaka sa nekim

kartinim organizacijama

The typical credit card business model

When a consumer makes a purchase using a credit or charge card, a small portion
of the price is paid as a fee (known as the merchant discount), with the merchant
keeping the remainder. There are typically three parties who split this fee amongst
themselves:
Acquiring bank: the bank which processes credit card transactions for a merchant,
including crediting the merchant's account for the net value charged to a credit
card.
Issuing bank: the bank which issues the consumer's credit card. This is the bank a
consumer is responsible for repaying after making a credit card purchase. The
issuer's share of the merchant discount is known as the interchange fee.
Network: the link between acquiring banks and issuing banks. These banks have
relationships with a network, rather than with each other, for fulfilling card
purchases. This allows a card issued by a community bank in Peru to be used at a
shop in Sri Lanka, for instance, without requiring the banks to have a direct
relationship with each other. The two largest networks in the world are Visa and
MasterCard.

Issuing Banka (issuer)

Da bi banka dobila licencu za izdavanje (issuing) i
prihvatanje platnih kartica mora da ispuni
odreene uslove koje diktiraju kartine
organizacije
Ima odreeni broj korisnika (obino se trai da banka
zadovolji odreeni procenat uea na tritu)
Izda odreeni broj kartica u odreenom vremenu
Obezbedi garanciju za plaanje svih transakcija njenih
klijenata na prihvatnoj mrei (acquiring network) tj.
EFT POS terminalima i bankomatima
Instalira sopstvene bankomate
...

Acquiring Banka (acquirer)

Da bi banka dobila licencu za (acquiring) prihvatanje
platnih kartica na Bankomatima i EFT POS terminalima
mora da zadovolji jo stroije uslove nego za izdavanje
kartica
Da instalira odreeni broj EFT POS terminala u odreenom
vremenu
Da obezbedi kolateral (moe da bude i nekoliko miliona
eur)

Banka prihvatilac ima ugovore sa trgovcima o

prihvatanju platnih kartica na trgovakim mestima kako
bi se korisnicima platnih kartica omoguilo plaanje
karticom umesto keom ili ekovima

Tipovi licenci
NPR. VISA razlikuje vie tipova lanstva (membera)

Acquirer
Associate
ATM Acquirer
Disbursing Member
Group Member
Issuer
Merchant Bank
Participant
Plus Program Participant
Principal
Visa Acquirer
Visa Electron Acquirer
Visa Electron Issuer
Visa Issuer

Prava i obaveze
U zavisnosti od tipa licence koju poseduje, banka
ima prava i obaveze
NPR. Principali VISA-e u Srbiji

Banca Intesa Beograd

Komercijalna Banka Beograd
Alpha Bank
Vojvoanska Banka
OTP
Societe General
Credy Agicole
Potanska tedionica
...

Banke
Issuing bank (banka izdavalac)
Banka koja ima licencu za izdavanje kartica
(ugovor sa kartinom organizacijom)

Acquiring bank (banka prihvatilac)

Banka koja ima licencu za prihvatanje kartica
Licenca se moe odnositi na ATM mreu i/ili EFT
POS mreu

Acquiring banke u Srbiji

DINA
Skoro sve

VISA

Banca Intesa Beograd

Komercijalna banka
Vojvoanska banka
Alpha Bank
OTP banka
KBC (sub acquiring)
PBB (sub acquiring)

MasterCard
Banca Intesa Beograd
Komercijalna Banka
OTP Banka

Amex
Banca Intesa Beograd

Diners
Diners Srbija

Procesori 1/2
Kompanije koje obezbeuju tehnike uslove za
korienje i obradu platnih kartica
Procesori omoguavaju vezu izmeu banke i
kartine organizacije
Svaka banka Acquirer sertifikuje svog procesora kod
kartine organizacije
Banka moe imati samo jednog procesora za prihvat
kartica na Bankomatima ili EFT POS terminalima za
jednu kartinu organizaciju
Banka moe imati samo jednog procesora koji je
registrovan za izdavanje kartica te banke za jednu
kartinu organizaciju

Procesori 2/2
Svaki procesor mora biti registrovan kod kartinih organizacija
Da bi se registrovao, procesor mora da proe sertifikaciju sa barem
jednom principal bankom
Sertifikacija je proces u kome procesor radi niz testova sa kartinom
organizacijom koji treba da pokau da procesor potuje sve
protokole i procedure propisane od strane kartine organizacije za
obavljanje procesinga za issuing i acquiring
Poznati procesori u naem regionu

First Data Intenational

Euronet
Chip Card
MBU
Bankart
...

Banka Procesor
Svaka Banka koja je principal ima mogunost da
sama obavlja posao procesinga
Sertifikacija banke radi se na isti nain kao
sertifikacija procesora
Primer banakaka koje rade tzv In house
procesing:

Vojvoanska banka Novi Sad

Raiffeisen banka Sarajevo
Banka Koper
Privredna Banka Zagreb

Trgovci
Merchant, neko ko prodaje robu ili uslugu koju je
proizveo neko drugi, termin koji koriste sve
kartie organizacije
Trgovci potpisuju ugovore o prihvatu platnih
kartica iskljuivo sa bankama, a banke su u
obavezi pred kartinim organizacijama da
garantuju za svakog svog trgovca
Banke obavezuju trgovce da potuju pravila i
procedure propisane od strane kartinih
organizacija

Tipovi trgovaca (merchanta)

Kartine organizacije prepoznaju vie tipova trgovaca

Airline
Car Rental Company
Cash Disbursement Merchant
Cruise Line
Electronic Commerce Merchant
High-Risk Telemarketing Merchant
Hotel
International Airline
In-Transit Service Gambling Merchant
In-Transit Service Merchant
Mail/Phone Order Merchant
Prepaid Card Merchant
Quasi-Cash Merchant
Recurring Services Merchant
Retail Merchant
Single Merchant
T&E Merchant
Timeshare Merchant
Wire Transfer Merchant

Vendori (proizvoai opreme i sw)

Svi proizvoai opreme i softvera koja se koristi u
poslovanju sa platnim karticama, najee se
nazivaju Vendorima
Svaki proizvod (bilo da se radi o HW ili SW) koji se
koristi u poslovanju sa platnim karticama mora
zadovoljiti niz propisanih pravila i standarda
(naravno od strane kartinih organizacija)
Odreeni proizvodi moraju biti zasebno
sertifikovani (npr: Card Reader, EMV kernel, ATM
model, EFT POS model...)

Najpoznatiji vendori

ATM
NCR
Wincor Nixdorf
Diebold

EFT POS
Ingenico
Hypercom
Verifone

Host software
ACI (base 24)
Tieto Enator
Compass plus

Kartice
Gemalto
Austria Card
Oberthur

Security (HSM)
Thales e security

Korisnici

Tehnoloka podela platnih kartica

Standardne plastine kartice

Sa magnetnom trakom
EMV (sa magnetnom trakom i ipom)
Contactless

Standardne
Standardne plastine kartice su kartice koje su
egzistirale samo u okviru lokalnih trita jer su
ih izdavale firme i to najee za potrebe
plaanja telefonskih razgovora...

Magnetne
Kartice sa magnetnom trakom sadre na sebi
tri staze: za identifikaciju emitenta kartice,
broja rauna i vlasnika rauna (PIN - ifra), dok
su upisani podaci podloni spoljnim uticajima,
mogu biti promenjeni, izbrisani ili oteeni

Chip (EMV)
Smart kartica (Smard Card) je plastina kartica,
koja je po izgledu slina obinim kreditnim ili
debitnim karticama, ali za razliku od njih
poseduje jedan novi detalj integrisano kolo
ili ip na kome se nalazi procesor (pomou
koga se omoguavaju razna izraunavanja
direktno na kartici) i memorija

Contactless
Contactless kartice su u osnovi magnetne ili
ip kartice koje imaju antenu koja im
omoguava plaanje na specijalizovanim
terminalima bez kontakta

Dizajn platnih kartica 1/3

Lice platne kartce

Dizajn platnih kartica 2/3

Lice platne kartce
1 Banka
2. ip
3 Hologram
4.BIN (broj kartice)
5 Brend izdavaoca
6 Expiration date
7 Ime korisnika kartice
8 contactless chip

Dizajn platnih kartica 3/3

Poleina platne kartice
1 Magnetna pista
2.Potpis korisnika
3 Card Security Code

ISO/IEC 7810:2003
ISO/IEC 7810:2003/Amd 1:2009

ISO/IEC 7810:2003 is one of a series of standards describing the characteristics of

identification cards. It is the purpose of ISO/IEC 7810:2003 to provide criteria to
which cards shall perform and to specify the requirements for such cards used for
international interchange. It takes into consideration both human and machine
aspects and states minimum requirements.
ISO/IEC 7810:2003 specifies: four different sizes of identification cards with a
nominal thickness of 0,76 mm and dimensions of:
Format Dimension

Usage

ID-1

85.60 53.98 mm Most banking cards and ID cards

ID-2

105 74 mm

German ID cards issued prior to Nov

2010

ID-3

125 88 mm

Passports and Visas

ID-000 25 15 mm

SIM cards

ID-1 fromat

The ID-1 format specifies a size of 85.60 53.98 mm (3.370 2.125 in). It
is commonly used for banking cards (ATM cards, credit cards, debit cards,
etc.). Today it is also used for driving licences in many countries (including
the United States, Brazil, Canada, Australia, New Zealand, Norway, and
European Union countries). This format is also used as a personal identity
card in some other countries like Belgium, Bulgaria, Chile, Croatia,
Pakistan, Peru, Brazil, Poland or Switzerland, in retail loyalty cards, and it is
one fairly common format for business cards. The United States passport
card also uses the ID-1 format.
ISO/IEC 7813 defines additional characteristics of ID-1 plastic banking
cards, for example a thickness of 0.76 mm and corners rounded with a
radius of 3.18 mm.
ISO/IEC 7811 defines traditional techniques for recording data on ID-1
identification cards, namely embossed characters and several different
magnetic recording formats.
ISO/IEC 7816 defines ID-1 identification cards with an embedded chip
(smartcard) and contact surfaces for power, clock, reset and serial-data
signals.

ISO/IEC 7813
ISO/IEC 7813 is a standard that defines
properties of financial transaction cards [1], eg
ATM or credit cards.
The standard defines:
physical characteristics, eg size, shape, location of
magnetic stripe etc
magnetic track data structures

ISO/IEC 7813
Physical characteristics

ISO/IEC 7813 specifies the following physical

characteristics of the card, mostly be
reference to other standards:

Embossed characters by reference to ISO/IEC 7811

Embossing of expiration date the format, eg MM/YY or MM-YY
Magnetic stripe by reference to ISO/IEC 7811
Integrated circuit with contacts by reference to ISO/IEC 7816-1
Integrated circuit without contacts by reference to ISO/IEC 10536-1,
ISO/IEC 14443-1 or ISO/IEC 15693-1, as appropriate

ISO/IEC 7813
Magnetic Strype 1/2

Track 1

The Track 1 structure is specified as:

STX : Start sentinel "%"
FC : Format code "B" (The format described here. Format "A" is reserved for
proprietary use.)
PAN : Primary Account Number, up to 19 digits
FS : Separator "^"
NM : Name, 2 to 26 characters (including separators, where appropriate,
between surname, first name etc)
FS : Separator "^" (field separator, deli polja)
ED : Expiration data, 4 digits or "^"
SC : Service code, 3 digits or "^" (odreuje za ta sve i na koji nain karica
moe biti koriena)
DD : Discretionary data, balance of characters
ETX : End sentinel "?"
LRC : Longitudinal redundancy check, calculated according to ISO/IEC 7811-2
(ek sum)
The maximum record length is 79 alphanumeric characters.

ISO/IEC 7813
Magnetic Strype 2/2

Track 2
The Track 2 structure is specified as:
STX : Start sentinel ";"
PAN : Primary Account Number, up to 19 digits, as defined in
ISO/IEC 7812-1
FS : Separator "="
ED : Expiration date, YYMM or "=" if not present
SC : Service code, 3 digits or "=" if not present
DD : Discretionary data, balance of available digits
ETX : End sentinel "?"
LRC : Longitudinal redundancy check, calculated according to
ISO/IEC 7811-2

The maximum record length is 40 numeric digits.

ISO/IEC 7816
ISO/IEC 7816 is an international standard related
to electronic identification cards with contacts,
especially smart cards, managed jointly by the
International Organization for Standardization
(ISO) and the International Electrotechnical
Commission (IEC).
It is edited by the Joint technical committee (JTC)
1 / Sub-Committee (SC) 17, Cards and personal
identification.
The following describes the different parts of this
standard.

EMV uvod 1/2

Europay MasterCard VISA

EMV is a standard for interoperation of IC cards ("Chip cards") and IC capable POS terminals and
ATMs, for authenticating credit and debit card payments. The name EMV comes from the initial
letters of Europay, MasterCard and VISA, the three companies that originally cooperated to develop
the standard. Europay International SA was absorbed into Mastercard in 2002. JCB (formerly Japan
Credit Bureau) joined the organization in December 2004, and American Express joined in February
2009. IC card systems based on EMV are being phased in across the world, under names such as "IC
Credit" and "Chip and PIN".
The EMV standard defines the interaction at the physical, electrical, data and application levels
between IC cards and IC card processing devices for financial transactions. Portions of the standard
are heavily based on the IC Chip card interface defined in ISO/IEC 7816.
The system is not compatible with the original Carte Bancaire smart cards systematically deployed
in France since 1992. However, the French Carte Bancaire now also uses the EMV standard.
The most widely known implementations of EMV standard are:

VSDC - VISA
MChip - MasterCard
AEIPS - American Express
J Smart - JCB

Visa and MasterCard have also developed standards for using EMV cards in devices to support cardnot-present transactions over the telephone and Internet. MasterCard has the Chip Authentication
Program (CAP) for secure e-commerce. Its implementation is known as EMV-CAP and supports a
number of modes. Visa has the Dynamic Password Authentication (DPA) scheme, which is their
implementation of CAP using different default values.

EMV uvod 2/2

Europay MasterCard VISA
The most widely known implementations of EMV standard are:

VSDC - VISA
MChip - MasterCard
AEIPS - American Express
J Smart - JCB

Visa and MasterCard have also developed standards for using EMV
cards in devices to support card-not-present transactions over the
telephone and Internet. MasterCard has the Chip Authentication
Program (CAP) for secure e-commerce. Its implementation is known
as EMV-CAP and supports a number of modes. Visa has the
Dynamic Password Authentication (DPA) scheme, which is their
implementation of CAP using different default values.

PCI DSS

Payment Card Industry Security Standards Council is an independent

council originally formed by American Express, Discover Financial Services,
JCB, MasterCard Worldwide and Visa International on Sept. 7, 2006, with
the goal of managing the ongoing evolution of the Payment Card Industry
Data Security Standard.

Terminalna oprema

Bankomat
Raunar sa periferijama za:
Izdavanje novca
tampanje rauna
Monitor, tastatura, komunikacija
Oklopljeno kuite sa sefom

Konstantno povezan na banku prihvatioca

(procesora banke) putem iznajmljene linije,
GPRS-a...
MI ZNAMO
sve o karticama

POS terminal
Elektronski ureaju koji omoguavaju prihvat
(plaanje) platnih kartica na prodajnom mestu
Operacije:
Prikupljanje podatke sa kartice i iznosa transakcije
Povezivanje (telefonski, GPRS, Ethernet) na banku
prihvatioca
Po dobijanju odobrenja tampanje rauna
transakcije
MI ZNAMO
sve o karticama

Korienje platnih kartica

Primer pravilnog i nepravilnog korienja
platnih kartica (film)
http://www.youtube.com/watch?v=EBlQDDkX0wg

Scenario transakcije
Banka izdavalac - issuer

Banka
prihvatilac acquirer

MI ZNAMO
sve o karticama

Sledee predavanje
Tehnike Komponente sistema (POS, ATM,
Host, Front Office, Back office, CMS, Server
banke, ....)
Protokoli (NDC, DDC, ISO 8583, Hyperom ISO
8583...)
Primeri transakcija POS & ATM
Osnovne informacije o ATM i POS terminalima

Rezime
(ta smo nauili)