Information Security Policy in the U.S. Retail Payments Industry
نویسنده
چکیده
The United States retail payments industry is in the middle of a transition in regards to information security. A substantial number of data breaches have occurred over the last five years, despite substantial compliance with the industry standard, the Payment Card Industry Data Security Standard. There will need to be a move to a higher level of security, and the major challenge is institutional. How can the industry organize itself to move collectively toward this goal? Without recommending any particular technical solution, this paper proposes one way to do meet this institutional challenge. Drawing on the experience of Europe and the United Kingdom in moving to a chip and PIN environment, I recommend a public-private partnership where industry, government and civil society jointly work through the technical, economic and public policy issues that need to be solved if we are to have improved information security in the industry.
منابع مشابه
The United States National Security Strategy under Bush and Obama: Continuity and Change
The foreign policy of states determines the way they behave in the international arena. Accurate analysis of official foreign policy documents of a country is helpful in that it shows what the international priorities of a country are at specific periods. This article reviews the U.S. National Security Strategy documents published in 2002, 2006, 2010 and 2015 from the perspective of the percept...
متن کاملThe Changing Nature of US Card Payment Fraud: Issues for Industry and Public Policy
The rapid transition to card payments has sparked a search for effective countermeasures to those who exploit card payment security vulnerabilities to commit payment fraud. A review of these vulnerabilities finds that they are tied together by an information-intensive payment approval system. Especially damaging are large data breaches, which are often the result of criminals gathering informat...
متن کاملSunshine Policies and Murky Shadows in Europe: Disclosure of Pharmaceutical Industry Payments to Health Professionals in Nine European Countries
Relationships between health professionals and pharmaceutical manufacturers can unduly influence clinical practice. These relationships are the focus of global transparency efforts, including in Europe. We conducted a descriptive content analysis of the transparency provisions implemented by February 2017 in nine European Union (EU) countries concerning payments to health professionals, with du...
متن کاملTowards Patient-Centered Conflicts of Interest Policy
Financial conflicts of interest exist between industry and physicians, and these relationships have the power to influence physicians’ medical practice. Transparency about conflicts matters for ensuring adequate informed consent, controlling healthcare expenditure, and encouraging physicians’ reflection on professionalism. The US Centers for Medicare & Medicaid Services (CMS) launched the Open ...
متن کاملRisk Management and Nonbank Participation in the U.S. Retail Payments System
The retail payments system in the United States has changed significantly in recent years. Advances in technology have caused a greater reliance on electronic payment networks. And the industrial structure of the payment services industry has evolved, as more and more nonbanks deliver payment products to end users and supply back-end processing. In general, these changes have made the payments ...
متن کامل