Even today, where QR code payment is popular, smart POS is still favored by many merchants for its security. However, the recent incident of intelligent pos being cracked has caused the market to question its security, and it has also triggered a discussion on the future prospects of smart POS. At present, the industry has a big divergence in the future of smart POS. One party believes that the payment of QR code is developing rapidly, and the living space of smart POS is squeezed. Another point of view is that the intelligentization of the terminal can provide comprehensive data collection. Therefore, there is still a possibility of a comeback.
The incident was cracked
Recently, the Bank Card Testing Center issued an announcement in response to the crack of the smart POS. It is understood that in an international security geek competition held in late October, a team took advantage of the vulnerability of a smart POS terminal in just 25 minutes, secretly implanting a back door in the smart POS to replace key application software. Then get all the card information on the pos machine, including the payment password.
In response, the Bank Card Testing Center stated in the response that the technicians have organized a comparison analysis of the actual POS and the POS that is being sampled, indicating that the firmware versions of the two terminals are indeed inconsistent, and the message tamper-proof mechanism Not sound, there are security holes. At the same time, it calls on all parties in the industry to further strengthen the security management of payment acceptance terminals, ensure the consistency of the deployment terminals and qualified samples, and timely repair the risk loopholes. The smart POS vendor also stated that it has arranged a system version upgrade to complete the vulnerability, and will fully compensate if it loses funds during normal use.
In fact, the incident awakened the alarm to the smart POS industry. Analyst Wang Pengbo of Analysys Financial said that all the smart terminals of Android system are the same and need to be upgraded in time. The incident was a wake-up call to the industry.
Compared to traditional POS, smart POS is popular with its smart operating system, platform openness and Internet access. However, there are hidden risks in the smart operating system. According to statistics, in the first half of 2016, Android added mobile phone payment virus package up to 323,300, an increase of 986.14% compared with 2015. The number of infected users reached 16.73 million, an increase of 45.82%. Since smart POS uses the same Android system, most of these viruses will work for smart POS. According to a smart POS technician, most of the smart POS operating systems are Android operating systems. All source code of the Android operating system is open source. As a result, its vulnerability is more likely to be discovered and more vulnerable to attack.
Security risk
With the development of the Internet and mobile payment, mobile payment landing also requires hardware support. For traditional POS, the demand for upgrading has increased, and smart POS has become another direction.
According to data released by the central bank earlier this year, traditional POS experienced negative growth in the fourth quarter of 2016. According to the data released by China UnionPay, with the development of smart terminals and mPOS certification projects, the number of terminal authentication applications has increased year by year. Among them, the proportion of smart terminals that have been certified in recent years has increased significantly. In 2016, the shipments of smart terminals have exceeded 1 million units, an increase of nearly 10 times compared with 2015. It is estimated that the shipment of smart terminals will exceed 2 million units in 2017, and the replacement of traditional terminals by smart terminals in the future will become a development trend.
The industry believes that under the premise of shrinking POS market, smart POS is regarded as a new direction of market development. But in recent years, smart POS has also been hit by two-dimensional code payment. More importantly, in the era of mobile payment, all aspects of payment and payment technology need to stand the test. If the security problem cannot be solved, the future of mobile payment is a crisis.
With the development of China's payment industry, the increasing number of payment service providers, and the continuous deployment of POS machines, it is easier for merchants to apply for POS, but the risk of POS being moved, tampered, and attacked is increasing. high. In this attack, the attacker completed the attack on the POS in only 1-2 minutes to achieve the goal.
The above-mentioned personnel said that the central bank and UnionPay have clear safety management requirements for the use of POS equipment. The acquiring institutions and merchants should strictly abide by the POS safety regulations, and must not illegally modify and attack POS equipment. At the same time, the equipment used for procurement should be subject to safety review and maintenance. . POS terminal manufacturers should timely upgrade management and security maintenance of the sold POS, and timely upgrade and repair the vulnerabilities in accordance with industry standards, strictly in accordance with industry certification management requirements for production and sales, to ensure the safety of the majority of users.
Unclear prospects
Although the replacement of traditional POS by smart POS has become a trend, smart POS still faces the threat of payment from two-dimensional code, and some people are optimistic about the development prospect of smart POS.
Internet research institute Analysys think tank released "China Intelligent POS Industry Special Analysis 2017". The report pointed out that with the development of Internet and mobile payment, mobile payment landing also needs hardware support. For traditional POS, the demand for upgrading is increasing. Smart POS has become a demand, and it is called the new blue ocean with great potential.
However, Li Hong, a financial co-creation center in Hubei, is not optimistic about the development of POS. He said that in the context of the development of mobile payment, POS may be replaced by QR code and near-field payment in the future. Both traditional POS and smart POS will be eliminated by the retail industry in the future.
One offline merchant also bluntly said that the role played by POS is an offline verification process. If the QR code is used directly, the security problem will still be tested. However, with the continuous development of technology, if there is a more convenient and low-cost verification method, POS will not be used any more.
It is understood that the current two-dimensional code payment scheme, POS hardware carrier is no longer needed, the only need is a scanner. This convenient payment method is gradually overturning the huge offline offline acquiring market, so many insiders worry that POS may die.
The above-mentioned technicians pointed out that the two-dimensional code pure software solution + scanner has its ease of deployment and convenience, as well as its security risks and limitations. As a hardware integrated solution receiving terminal, POS ensures security by the bank card testing center and PCI labs, and supports full payment methods such as QR code, “cloud flash payment†and bank card, and because the terminal is intelligent. Provide a full range of data collection, therefore, smart terminals will not die in a certain period of time, and even reach an unprecedented climax.
Cabinet Bumpers,Cabinet Door Bumpers,Cabinet Door Stops,Kitchen Cabinet Bumpers
Wenzhou Zhaoxia Hardware Co.,Ltd , https://www.zhaoxiahardware.com