08 July 2013

EPC and Cards Stakeholders Group launch public consultation on security requirements for remote payments

EPC together with the CSG issued a document on security requirements for remote payments for public consultation. All interested parties are invited to provide feedback by 4 August, 2013.

On 3 June 2013, the European Payments Council (EPC) together with the Cards Stakeholders Group (CSG) published version 6.5 of the Single Euro Payments Area (SEPA) Cards Standardisation Volume for a six-week public consultation. This document defines a standard set of requirements to ensure an interoperable and scalable card and terminal infrastructure across SEPA, based on open international card standards. For detailed information on the consultation with regard to version 6.5 of the SEPA Cards Standardisation Volume, refer to the ‘related links’ below.

In addition, on 8 July 2013 the EPC together with the CSG issued a document on security requirements for remote payments for a separate public consultation. All interested parties are invited to provide feedback by 4 August, 2013.

The document setting out security requirements for remote payments responds to the increasing use of remote card payments. These requirements mark both the move towards alignment with global standards and the expansion of the security requirements definition beyond that of the point of interaction to include security requirements for other components involved in the remote card payment. They also take into account the ‘Recommendations for the security of internet payments’ released by the European Central Bank on 31 January, 2013. The proposed requirements are designed to identify and protect against security threats and, consequently, help to establish an environment which allows both consumers and merchants to fully reap the benefits of exchanging goods and services online.

The SEPA Cards Standardisation Volume version 6.5 consists of a series of separate books. The proposed security requirements for remote payments submitted for public consultation are detailed in the annex to Book 4 ‘Security’ of the SEPA Cards Standardisation Volume.

A summary of the responses received with this public consultation will be included with version 7.0 of the SEPA Cards Standardisation Volume to be published in early 2014 ready for market implementation.

With version 7.0 of the SEPA Cards Standardisation Volume, the annex to Book 4 setting out the proposed security requirements for remote payments will be included in Book 4 ‘Security’, i.e. this annex will not be maintained as a separate document going forward.

Full information

© EPC