A Logo

Feel free to include my content in your page via my
RSS feed

Help Irongeek.com pay for
bandwidth and research equipment:

Subscribestar or Patreon

Search Irongeek.com:

Affiliates:
Irongeek Button
Social-engineer-training Button

Help Irongeek.com pay for bandwidth and research equipment:

paypalpixle


Funny Money: What Payment Systems Teach us about Security - Drew Sutter BSides Detroit 2015 (Hacking Illustrated Series InfoSec Tutorial Videos)

Funny Money: What Payment Systems Teach us about Security
Drew Sutter
DrewSutter

Emerging payment systems means new opportunities to make old mistakes. Apple Pay and Google Wallet has taken us cardless and wireless. Starbucks invented its own espresso-driven gift cards. Bluetooth payment beacons are taking us cashierless. Yet amid the encryption and tokenization and PCI DSS compliance, somehow, criminals still manage to eke out a living defrauding consumers. (And by eke, we mean the estimated $3 trillion dollar cybercrime industry.) This talk will review several emerging payment systems and describe the fraud and the flaws. With that as a framework, we will propose first principles for securely designing new systems and sidestepping the same old mistakes.

Drew Sutter recently graduated from Eastern Michigan University with a Bachelor’s of Science degree in Information Assurance. A select number of schools in the country are designated by the NSA as Centers of Academic Excellence in Information Assurance. EMU meets the NSA standards and is lucky to be one of these schools. After graduation Drew started working for Creative Breakthroughs Inc. (CBI), an IT risk management firm based in Ferndale Michigan. At CBI, Drew is part of a program called the CBI Academy. As part of the CBI Academy, he is employed as a Security Apprentice and gets to work hands on with many different technologies. Drew’s areas of interest are forensics, malware analysis, and penetration testing. In his free time, he enjoys hiking, biking, and other outdoor activities. Drew consider himself a technical person. He likes to solve problems and figure out how things work, but also enjoys research and writing. This is Drew’s second year at Converge / B-Sides Detroit.

Back to BSides Detroit 2015 video list

Printable version of this article

15 most recent posts on Irongeek.com:


If you would like to republish one of the articles from this site on your webpage or print journal please contact IronGeek.

Copyright 2020, IronGeek
Louisville / Kentuckiana Information Security Enthusiast