How can SCA still work with IoT payments
December 11, 2020
How people make payments have evolved greatly over the years. From cash, we have moved to paper cheques, to credit cards, to the current world of purely digital payment methods on the Internet. Where do we go from there?
Many people think that the next step is automatic payments through Internet-of-Things (IoT) devices, where payments are autonomous, and happen automatically in the background, almost without human interaction. An interesting paper by the French Association du Paiement, «Adapting payment to the Internet of Things» explores what this means, and made me think about how payments fit with IoT devices, and what the key issues are to make the IoT dream happen.
First, how do most IoT payments work today? In practice IoT payments are not that different from other types of payments: You register your payment details on a website or through an app, then when an event occurs, i.e. you pass a toll in your car, the payment happens. Read the full article on okaythis.com >>At Okay we have been working on a proof of concept for how SCA can be used to securely delegate payment instruments to devices, including how to securely do dynamic linking of screen-less devices as part of the process. But it has become clear to us that there is a need for more innovation, in both the security and regulatory domains before this type of payment will become prevalent. What do you think? If you’re interested in the security around this type of payment, please let us know.