This post was written in the early days after ApplePay’s announcement, when most of us didn\u2019t have access to enough information on its inner workings. Even with such limited information, many parts of the post turned out to be correct, but some turned out to be wrong too. Consequently, I have taken a second attempt at demystifying ApplePay in this other post<\/a><\/strong> based on what we know at this time. The rest of this post is not modified.<\/p>\n When Apple announced ApplePay<\/a> as a service on September 9th, 2014 and subsequently in their press release<\/a>, they mentioned a few key terms like Secure Element<\/a>, Tokens, One time unique number, Device account number, dynamic security code and such. Take a look at the 4th paragraph in their press release<\/a> to see what I\u00a0mean. For the layman, this could mean that apple has used\u00a0some complex\u00a0security technology to make ApplePay secure; but for some people in the field of mobile payments and security, it was not very clear what Apple was trying to say. So, let\u2019s try and dissect that, shall we?<\/p>\n For simplicity, we are only going to discuss about ApplePay in the context of a payment made at a physical POS<\/a>\u00a0and not the mCommerce version of the service. This is only an educated attempt to understand the underlying implementation while the reality could well, be different.<\/p>\n Let\u2019s start with the Secure Element<\/a> (SE). ApplePay stores the payment credentials inside the SE<\/a>. It does not store them in the cloud and it does not store them within the host operating system. This means that none of the iOS apps will have access to the payment information stored within the SE<\/a>.<\/p>\n When, you as a customer add a credit card to your Passbook (Mobile Wallet<\/a>), the simplest thing for the wallet to do would be to store the real payment credentials like the Primary\u00a0Account Number (PAN) into the SE<\/a>. But that is a naive implementation and Apple does not do that. ApplePay instead stores something called a token and some associated data inside the Secure Element<\/a>.<\/p>\n Token is like a fake credit card number that looks and feels like a credit card number for most intents and purposes, but it is not the real deal. During transaction authorization the token would be Now that we know that a Token is stored in the SE<\/a>, the next step is to find out how it gets provisioned there in the first place.\u00a0There are many ways in which this could have been implemented and we will not know for sure until Apple announces its implementation. But, here is an educated guess I would go with…<\/p>\n When a customer adds a credit card to their wallet, the PAN<\/a>\u00a0details are submitted to ApplePay servers. ApplePay sends the information over to the corresponding Issuer<\/a> bank asking for a Token in return. The Issuer<\/a> bank calls a Token Service Provider (TSP) and requests for a token. As far as I know, the payment network<\/a> themselves play the role of TSP at present.<\/p>\n The TSP<\/a>\u00a0vaults the PAN<\/a>, maps it to a token and returns the token and a token-key. This token-key will later be used to generate a dynamic When a customer taps or waves their iPhone in front of a point of sale terminal, a payment transaction is initiated. ApplePay uses EMVCo\u2019s Contactless<\/a> suite of specifications to communicate with the contactless reader terminal. When it is time for the Secure Element to send information to the terminal, it does two things. First, it generates a dynamic cryptogram<\/strong> using a combination of\u00a0the token, token-key, transaction amount, transaction counter etc. Second, it generates a dynamic CVV<\/strong> value using the cvv-key. Finally, it passes the token, the dynamic cryptogram, the dynamic CVV and other payment and chip data elements to the terminal using the EMV specification.<\/p>\n Let\u2019s stop for a moment here and review what just happened and compare that to Apple\u2019s press release<\/a>\u00a0as quoted below.<\/p>\n “Each transaction is authorized with a one-time unique number<\/strong> using your Device Account Number<\/strong> and instead of using the security code from the back of your card, Apple Pay creates a dynamic security code<\/strong> to securely validate each transaction.\u201d- From the press release<\/p><\/blockquote>\n From the quote above, the The contactless terminal receives the token, dynamic cryptogram, dynamic CVV and other data elements according to the contactless EMV<\/a> specification (or contactless MSD for backwards compatibility) and\u00a0sends\u00a0them over to the Acquirer<\/a>. The Acquirer doesn’t know or care if the incoming PAN is a token PAN or the real PAN. They just identifiy the payment network based on the BIN and send it over the corresponding payment network.<\/p>\n The payment network<\/a> identifies that it is a tokenized PAN and not a real PAN based on BIN<\/a>\u00a0tables. Consequently, they send a request out to the TSP<\/a>\u00a0to de-tokenize passing in the Token\u00a0and the dynamic cryptogram. The TSP, among other things, validates the cryptogram using the token-key that it shared earlier during the provisioning process. If the cryptogram is valid, the TSP de-tokenizes and returns the real PAN back to the payment network. The payment network attaches the real PAN to the authorization request and sends it over to the Issuer for authorization.<\/p>\n The Issuer validates the dynamic CVV based on the cvv-key it shared earlier during the provisioning process. Then it\u00a0authorizes the transaction depending on the customer’s account status. The authorization status\u00a0flows back from the Issuer to the Payment network, back to the Acquirer and back to the Merchant where your receipt gets printed.<\/p>\n In conclusion, we saw how ApplePay\u00a0does provisioning and how a payment transaction is processed.\u00a0For some of us this is good enough information to\u00a0understand the security strategy used by ApplePay. But some others may have more questions.\u00a0What happens when the\u00a0Card is lost?\u00a0What\u00a0happens when the phone is lost?\u00a0What happens when the merchant is compromised? How does ApplePay handle these challenges? These are all very good questions, but this post has\u00a0already become too big. So, I will address those follow-up questions in my next post. Stay tuned!<\/p>\n Reprinted from my own article here<\/a><\/small><\/p>\n <\/p>\n","protected":false},"excerpt":{"rendered":" Update as of Jan 3, 2015 This post was written in the early days after ApplePay’s announcement, when most of us didn\u2019t have access to enough information on its inner workings. Even with such limited information, many parts of the post turned out to be correct, but some turned out to be wrong too. Consequently, I have taken a second attempt at demystifying ApplePay in this other post based on what we know at this time. The rest of this post is not modified. When Apple announced ApplePay as a service on September 9th, 2014 and subsequently in their press... What exactly is stored in the SE?<\/h4>\n
What is a token?<\/h4>\n
de-tokenized<\/code> into the real PAN before passing\u00a0on to the Issuer for authorization. The entity that places a request to de-tokenize<\/code> differs depending on the tokenization standard used. In proprietary tokenization technologies, an Acquirer<\/a> would be responsible for tokenization<\/code> and de-tokenization<\/code>. But,\u00a0ApplePay uses the latest in tokenization standard<\/a> created by EMVCo<\/a>. In this case, the payment network<\/a> performs de-tokenization<\/code>.<\/p>\nHow is a token provisioned to the SE?<\/h4>\n
cryptogram<\/code> at the SE<\/a>. The Issuer<\/a> receives a token and token-key, and adds a cvv-key to the mix. The cvv-key will be later used to generate a dynamic security code at the SE. The Issuer returns the token, token-key and cvv-key back to ApplePay. ApplePay, acting as its own Trusted Service Manager (TSM) provisions the token, token-key,\u00a0cvv-key and maybe other data into the Secure Element. It is the Token that Apple calls as “Device Account Number” in its press release<\/a>.<\/p>\nWhat happens when a\u00a0payment transaction is initiated?<\/h4>\n
Device Account Number<\/code> represents the Token<\/code>, the One-time Unique Number<\/code> represents the dynamic cryptogram<\/code> and the Dynamic Security Code<\/code> represents the dynamic CVV<\/code>.<\/p>\nWhat happens during a payment transaction?<\/h4>\n
Related Reading:<\/h4>\n
\n
Continue reading...<\/a>","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[55,48,50,49,53],"tags":[],"class_list":["post-1128","post","type-post","status-publish","format-standard","hentry","category-apple-pay","category-mobile-payments","category-mobile-wallet","category-nfc","category-secure-element"],"aioseo_notices":[],"_links":{"self":[{"href":"https:\/\/www.gmarwaha.com\/blog\/wp-json\/wp\/v2\/posts\/1128","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.gmarwaha.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.gmarwaha.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.gmarwaha.com\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.gmarwaha.com\/blog\/wp-json\/wp\/v2\/comments?post=1128"}],"version-history":[{"count":19,"href":"https:\/\/www.gmarwaha.com\/blog\/wp-json\/wp\/v2\/posts\/1128\/revisions"}],"predecessor-version":[{"id":1333,"href":"https:\/\/www.gmarwaha.com\/blog\/wp-json\/wp\/v2\/posts\/1128\/revisions\/1333"}],"wp:attachment":[{"href":"https:\/\/www.gmarwaha.com\/blog\/wp-json\/wp\/v2\/media?parent=1128"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.gmarwaha.com\/blog\/wp-json\/wp\/v2\/categories?post=1128"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.gmarwaha.com\/blog\/wp-json\/wp\/v2\/tags?post=1128"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}