Gartner Blog Network

Avivah Litan
VP Distinguished Analyst
12 years at Gartner
30 years IT industry

Avivah Litan is a Vice President and Distinguished Analyst in Gartner Research. Her area of expertise includes financial fraud, authentication, access management, identity proofing, identity theft, fraud detection and prevention applications…Read Full Bio

The Hidden problems with Payment Card Security Technologies and PCI

by Avivah Litan  |  January 13, 2015

Ever since the high profile payment card data breaches, we have been getting lots of client inquiries around payment card security technologies — point-to-point encryption, tokenization and EMV. The first two technologies are being widely adopted by many U.S. companies, especially since nothing else seems to be working at keeping the bad guys out. For […]

Read more »

Who is the Government of North Korea?

by Avivah Litan  |  December 19, 2014

There is so much talk and skepticism about the perpetrators of the Sony attack – are they representing the North Korean government or are they a small band of crazy hackers? The discussion makes me recall a dinner I had about a year ago with a respectable Chinese Factory owner when I asked him if […]

Read more »

Where does North Korea get its cyber-hacking skills from?

by Avivah Litan  |  December 5, 2014

Many months before the alleged North Korean attack on Sony Pictures took place, a widely known fact in intel circles is that the Chinese and Russians are training North Koreans how to hack. Apparently, North Koreans are holed up inside a cement building inside China, learning these hacking skills, and after they are trained, these […]

Read more »

Retailers Brace for the Holiday Breach Season

by Avivah Litan  |  November 19, 2014

Holiday shopping season is upon us and is the busiest season of the year for hackers and shoppers alike. 2014 will be no exception and we should brace ourselves for more high profile cyber-attacks although this time, they are likely to gain much less public attention. Consumers have rightfully learned that they suffer little harm […]

Read more »

Token Collision and Point to Point Encryption Confusion ala ApplePay

by Avivah Litan  |  November 7, 2014

With all the excitement about ApplePay, big systemic problems are starting to surface on the retailer side. Here they are: a) Point to Point encryption confusion – Some vendors who certified their payment card applications for point to point encryption left out certification of the contactless payments since there was very little volume in the […]

Read more »

Apple Pay vs. CurrentC; will Merchants lose out again to Visa and MasterCard?

by Avivah Litan  |  November 3, 2014

The recent ruckus in the media about Wal-Mart, CVS and RiteAid and other national retailers refusing ApplePay has created bad PR for the fragmented retail sector. News commentators have been ranting on about how these merchants need to give consumers free choice and turn back on ApplePay acceptance. These comments reflect the great job Visa […]

Read more »

Can Credit Report Monitoring become more useful?

by Avivah Litan  |  November 3, 2014

For years companies whose troves of credit cards have been data breached have been offering potential fraud victims’ credit report monitoring as relief. I always cringe when I hear about this because I view this largely as a PR move on behalf of the breached entity that does virtually nothing to protect a cardholder from […]

Read more »

2014: The year of the worst data breaches and highest profits at U.S. credit card issuers

by Avivah Litan  |  October 14, 2014

It looks like the credit card companies keep winning and the retailers keep losing when it comes to making money on credit cards. R.K. Hammer, a consulting firm in Thousand Oaks, Calif., estimates that U.S. card issuers will generate $158.6 billion in 2014 revenue, a 9% jump over the $146 billion they earned in 2013. […]

Read more »

Lessons from the Israeli CyberFront

by Avivah Litan  |  September 22, 2014

I just returned from a week in Israel, which always seems to me to be Ground Zero for CyberSecurity. Here are some of the takeaways I came back with from my visit: a) Life goes on – and the security community continues to innovate I attended and spoke at one of the major Israel cyber-tech […]

Read more »

Will Apple Pay Save Merchants from Data Breaches?

by Avivah Litan  |  September 9, 2014

Apple has finally gotten into the payments business with its Apple Pay announcement. While details on Apple Pay security features are still scarce, it sounds like they are working with Visa, MasterCard, the other card brands and the major issuing banks behind them to use a payment card tokenization scheme that these financial services companies […]

Read more »