Avivah Litan

A member of the Gartner Blog Network

Archives for March, 2011


MasterCard’s moves point to redefined mission in mobile NFC payments era

by Avivah Litan  |  March 31, 2011  |  4 Comments

MasterCard made two very interesting announcements in recent days, which point to a redefined misssion for the card payment brands (i.e. MasterCard, Visa, American Express, etc.) in our mobile payments future. First, it announced an agreement with Google and Citibank to pilot NFC-enabled Android phones as payment instruments, and secondly it announced that it certified [...]

4 Comments »

Category: Uncategorized     Tags:

RSA SecurID incident should serve as a wake up call on strong OTP user authentication

by Avivah Litan  |  March 19, 2011  |  2 Comments

The recent cyberattack against RSA’s SecurID system has evoked a very strong reaction from the market, leaving companies and users flustered and worried about what to do next, now that their supposedly strong authentication system has been admittedly weakened. While it’s too early to know what the effect of this compromise will be on SecurID [...]

2 Comments »

Category: Uncategorized     Tags:

PCI standards for Mobile?

by Avivah Litan  |  March 10, 2011  |  4 Comments

The most interesting thing I learned today relative to the Verifone/Square security squabble is that the PCI Security Standard stopped issuing PA-DSS certification for mobile payment applications and removed previously-certified PA DSS mobile applications from their ‘approved payments applications’ list. I’m still not 100% sure this is true, but I was informed that they simply [...]

4 Comments »

Category: Uncategorized     Tags:

Is Secure Browsing around the corner?

by Avivah Litan  |  March 4, 2011  |  3 Comments

Many banks, ecommerce and other firms who have web-accessible information and accounts to protect are waiting for the day when they don’t have to worry about attacks against their customers’ browsers and end points. Man-in-the-browser attacks (e.g. Zeus/SpyEye) are very much alive and well, and causing all kinds of problems amongst many of the companies [...]

3 Comments »

Category: Uncategorized     Tags:

Email Service disruptions – maybe we really can’t trust cloud service reliability

by Avivah Litan  |  March 2, 2011  |  2 Comments

I try to keep my personal life out of my blog and my research but I must admit I well up with outrage when I hear from my daughter that her cloud-services email account (provided by a mega Internet Services Provider and white labeled by her university) is still dysfunctional. That’s over three and a [...]

2 Comments »

Category: Uncategorized     Tags: