Skip to main content

tv   Key Capitol Hill Hearings  CSPAN  August 11, 2015 12:00pm-2:01pm EDT

12:00 pm
greenhouse gases caused up there in the atmosphere in the first place, the people who started the industrial revolution and who are still pushing it. it brought us a great deal of success. it separated us from these people who are suffering under 154 degrees. and is there a moral issue here? is there a justice issue here? do we as richest nations of the world have to lead the way and share some of our riches and some of our time to try to get the world back under control, to hit what the united nations would like to hit which is a target of two centigrades, no more than that? that's going to be very difficult. and so that's another part of the box that the pope would like to have you think about. ..
12:01 pm
a what happens then? who is listening to them? i have an acronym for a name. the island nations, there are quite a few of them. lobby every year and have gotten upset of people to listen to them at the united nations anymore. they're going to pose not only basic justice problems but also
12:02 pm
a huge immigration problem. who's going to take them? where are they going to go? >> do we care? should we? that too many politicians i don't think they're going to raise this issue. it's not local. it's not really national and it's not something people really want to hear, but among those were out there that this man is by going to raise while he is here. >> that's a long laundry list but they are correct. in covering his visit, there's so much to do for reporters and publications. this pope seems becoming the entire waterfront of issues, dovetails of what's going on capitol hill and what's going on on the presidential campaign trail. like all good politicians, popes are polled, and this pope comes
12:03 pm
to the united states are welcome to the united states at a time when his poll numbers have actually dropped. gallup had him dropping in a survey last month from 76% to about 59%, which was where he was the time he was elected pope. still popular but just taking a little bit of a hit. ironically that it, most of it comes from conservatives. he dropped from 72% i believe to 45%. one could argue that this decline is probably based on his encyclical and the bit about his message about poverty. so it will be interesting to see how his message place out of my presidential candidates and how plays out among some members of congress. there were some members of congress who were not pleased about the pope's role as a
12:04 pm
facilitator in the discussions with cuba. a good number of our members of our florida delegation members including senator and presidential candidate marco rubio were not thrilled about the pope's role in fact, and made that known. that said, he will be warmly greeted by these members of congress. they are looking forward to having it up on capitol hill. as i mentioned earlier, there will be fights to see who sits closest to the al to shake the popepope's hand when it comes dn the aisle. at this intersection of his message and what's going on in washington on the presidential campaign trail can't be underestimated speed is live now to capitol hill for discussion about the security of credit cards. >> i'd like to welcome you to our program and thank you for being here to take part in this discussion today regarding an important consumer issue.
12:05 pm
protect my data is a consumer education campaign on credit card security. we are joined today by our distinguished white house guest speaker, followed by a panel of leading industry and consumer issue experts to discuss this issue. after a brief opening remarks and our discussion will open this up to answer any questions you all may have. we are here today to explore the steps retailers and financial institutions are taking to secure credit and debit card transactions. the differences between chip and p.i.n. technologies compared to chip equipped cards -- thank you -- chip cards with the signature requirements and to provide a brief overview of what the white house is doing to protect american consumers from credit card fraud and identity theft.
12:06 pm
after what seems like an unthinking occurrence of cyberattacks at government agencies, financial institutions, retailers, health care companies and even in the entertainment industry in recent years, hundreds and the american consumers have had their personal and financial data stolen and their confidence shaken. given these recent data breaches, it's no surprise that data security is at the forefront of many consumers minds. congress is trying to work in a bipartisan manner on efforts to improve public and private cybersecurity measures but less attention has been paid the issue of improving payment security measures. and while we certainly need more robust cybersecurity measures to protect sensitive financial data, we also need frontline measures that will stop criminals who try to use stolen
12:07 pm
banking and credit card information. the most common credit cards like the ones you have and happily been using date back to the 1970s. they use a magnetic strip on the back of the card which houses our financial information along with a signature for authentication. but as we all know, thieves have all but mastered the ability to exploit the weaknesses of existing credit cards. what's more, they can just stolen financial information to exploit the weaknesses of existing credit cards. what's more, the use that financial data to create counterfeit cards to run of fraudulent transactions and still come consumers accounts. to help combat fraud, and many card issuers and financial institutions in the united states have begun deploying new
12:08 pm
microchip equipped cards, also known as emv cards that are encrypted. some of you already have started to receive these new chip cards. however, most of these cards still rely on a signature as a secondary form of verification. feature that unfortunately can still be easily forged. instead, chip enabled cards could offer greater protection for consumers by coupling them with the requirement that consumers enter a personal identification number, a p.i.n., to profit authorized the transaction instead of a signature. the p.i.n. requirement at the distinct layer of security to each transaction that has been proven to reduce fraud. our panel of experts here today will discuss these issues in more detail. the evidence of chip and p.i.n. benefits and hide and seek to protect were highlighted in president obama's executive order issued last october, and
12:09 pm
it's with great pleasure that i welcome our first guest speaker today, to tell us more about the administrations actions. doctor marisa porges is the senior policy adviser at the national economic council and is the lead for the president's secure initiative. she has a very impressive background in international terrorist and also served our country as a flight officer in the u.s. navy. so please join me in welcoming our first speaker to present today, dr. porges. [applause] >> thank you, debra. thanks everyone for being here today. i'm really excited to get a chance to talk to the group and join my fellow panelists for a conversation about consumer
12:10 pm
financial protection and looking at it through the cybersecurity live. i'm particularly et cetera to see some faces i've worked with the names i've worked with in the past but also new people coming to the table for this conversation. because as i will describe and as i think our conversation will demonstrate, this isn't about hope of government approach, not even about all of industry. is really about the whole event the approach, including folks here who are representing their members of congress including our consumers in the conversation, and the fact to help demonstrate why this is really about including everyone in the conversation is looking back at our data reports rather than report the data breaches. if we think back to the 2007-2011 timeframe, we often mostly thought of the business sector as being the target. and, in fact, for the period of over 34% of the data breaches reported were targeting businesses, retail entity, the payment processors. if you look just at this year,
12:11 pm
even until the end of july we've seen the medical health care industry coming under one report of data breaches. second time in the course into the government and the military. we've seen this year will likely surpass that last year which in of itself was to set an unfortunate standard for how many data breach instances that american consumers were facing. so with the answer to understand that it's really about everyone playing a part i'm going to talk about consumer financial protection through the lens of the white house and look at it in three main areas. first and foremost what we are doing from the perspective of the federal government to ensure the federal government is better protecting american consumers. second, how we are making sure the private sector is positioned for success on this front. and last but not least, to talk briefly from a strategic perspective how we think of consumer financial protection within a broader landscape of
12:12 pm
cybersecurity and how we should sort think of things and not just in the next day, the next over the next decade with questions, concerns should we consider? i won't dive right in to looking at it through the government lands, what we're doing to enhance american consumer financial protection. out the back to what debra mentioned moments ago, the executive order signed by president obama in october of last year which launched the by secure initiative. by secure has become a keystone in the federal effort to lead the way to protecting american consumer transactions. and during that announcement and nurses would working to transition federal agencies to ensure that we're using enhanced security payment technology with all our retail payments. what does this mean? it means the two lead agencies who work with card issuers to issue cards on behalf of the u.s. government, the general
12:13 pm
services administration, gsa, and treasury, have begun actively aggressively issuing cards that have the chip, that haven't emv technology that are chip and p.i.n. enable. and i'm excited to report that we got there respecting yesterday for the month of july and it means that gsa working with the pain in his has issued over 1 million new emv chip and p.i.n. enabled cards, to federal government workers so they can use them when they travel, making payments. this is an effort to drive and lead the way for a work pashtun we are protecting our transaction. treasury have started issuing 10,000 new cars at that is part of a phased approach to introduce emv technology recipients of federal benefits to have a direct express debit card to we are really looking at all sight of the system on the phone but also even though the past emv how we're using other secure enhanced payment features.
12:14 pm
things like online payment, paypal, card not present. so you may have seen in february treasury announced that if you pay, paying bills to permit agencies online, things like the court fees, things like payments to your sba loans coming of multiple payment options to include paypal and douala. we're looking at all-payer system to how we can secure our payment transaction. of course her to think of it on the receiving end and you may have, you may have noticed their payment terminals have been upgraded to include enhanced security features, the ability to use chip in and get something we are doing across the agencies and we've seen 19 federal agencies currently upgrading their terminal. it's not just what we put out the pi. it's how we're receiving the american customer consumer for any federal payment transaction. and i can talk more about this number of other things in terms
12:15 pm
of tools were giving feedback and consumer but it gives you a taste for what buy secure isn't the commission how we can better protect american consumers and financial transactions. i will turn briefly to that we we're looking to help the private sector because again it's not just a whole of government approach. it's a whole of government, industry, consumer, congressman, everyone approach. this is a challenge that industry and government must tackle together. suffice it to say our computer networks and systems that consumers do with every single day are mostly held by the private sector. on the other hand, government oftentimes has the latest and greatest intelligence and information to help the private sector market threats and respond most effectively and quickly. it's only by marrying those two groups up in making sure the partner and work collaboratively together that weekend ensure consumers are better protected. what does this mean? it happens on a multiple front.
12:16 pm
again first and foremost it's about positioning the private sector to lead and effectively lead on this issue. hopefully a number of you saw or heard about hopefully attended systems in california in mid-february the cybersecurity and consumer financial protection summit held in september, rather held in stanford in mid-february and it was an exciting event, not just because of the good weather and not just because of the 24 plus senior leaders, ceos and other executives from the tech industry from consumer advocacy groups, retail, health care, others. but it was about what happened that day and, of course, commitment that those companies made coming out of the summit. that day we had over two dozen companies make a major commitment to improve their cybersecurity efforts, to be more to give consumers a tool that they could use to protect their identity, he managed to
12:17 pm
risks better, and it is more enhanced security payment features. so did and what does this look like? this looks like announcement by qvc, walgreens, u.s. bank, pacific gas and electric, and others to start using cybersecurity, to better protect information that failed on behalf of the american consumer. it looks like visa announcing a more aggressive timeline for tokenization, mastercard announcing millions to introduce new safety procedures and features. american express introducing enhanced security technology in the form of mobile factor authentication. and entities like nation star who are now offering free credit scores on a regular basis to the consumer. again, tools we can all be using the mark of identity theft and quick response in the incidence of a malicious attack or incident. but what else are we doing? the other menacing thing that came out of the summit is how we are collaborating more ever since.
12:18 pm
one thing that came out of the dialogue was that oftentimes individuals are actor inspect sector specific engagement is most effective. that looks like efforts like specific agencies addressing the sectors they work with to simulate cyber incidents, talk to the responses and identified key challenge is moving forward so they can better were effectively respond in the future. specific of one good example for the group is a treasury. treasury has run multiple tabletop exercises public and private exercises that they can simulate what happens a malicious attack, a cyber incident and determine how best to respond so that we in government can help the private sector most quickly and effectively protect the american consumer. and again a key part of that as always is information sharing. now, a as a third lane to stupid
12:19 pm
to consider consider how this all fits into broader cybersecurity efforts, cybersecurity, consumer financial protection board often two sides of the same coin. we've seen the cybersecurity thread continued to evolve over the past few years. and like was our response continue to evolve. so, too, are consumer financial protection responses must continue and -- what does this look like? this looks like conversations about legislation, conversations about including stakeholders in the conversation, conversations about how consumers and the american public to consider their identity moving forward in the next decade and what identity management looks like. to dive into a few of those a little more, on the legislation front. i would be remiss not to mention it, specifically since 2014 was such a really good year for us when you look at congress
12:20 pm
passing cybersecurity rated legislation, specific legislation that addresses, that improves have a federal government protects its own networks and positions the federal government to engage in cyprus could emissions moving forward. but we are all well aware that there is still new legislation proposed after which will address specific consumer protection issues. and i'm referencing legislation proposed by the white house earlier this year that addresses a few key issues including information sharing and data breach notification. and provides additional safeguards to ensure the american public has its privacy and civil liberties protected. and provides for increased information sharing, government entities, between government and private sector. so we are really hoping that the momentum we had in 2014 will carry forward through the fall of 2015 and we can have progress on this front. because it will set a for
12:21 pm
increased success moving forward. last but certainly not least was talk about other stakeholders, i probably will say last twice but i do more and think about. one, we talked about the federal government but is also state and local entities. we were really excited at the national economic council to participate in a with governor mccallum at an event with the state of virginia announced to be the first state to mandate the state agencies would begin accepting chip and p.i.n. during the retail transactions. like the buy secure initiative is to actually aggressively issuing emv enabled cards moving for. again thinking about them all others of our system at a retail transactions at all those layers can be more secure moving forward. we just put out late last week actually a best practices
12:22 pm
ibook of sorts that the gsa put together to guide state and local entities for how they can more aggressively actively do what other states are doing an issue be in the enabled chip and p.i.n. protected cards. i encourage all to go online and go to gsa's website and see if they suggest other entities followed suit and also address the retail transactions more secure. so to close, and i said i would address one or state, and to do it in my closing comment and i will close by saying, i think we are at a strategic point. i think we are positioned for success moving forward with all the people we have in the room, with a people on the panel, with a good efforts on the private sector and by various government agencies and other entities on this asia over the past year. but there's a lot of work that needs to be done. nothing i mentioned is a silver bullet but they are all pieces of the puzzle we need moving
12:23 pm
forward. the last piece of course is the american consumer. i would just encourage in our dialogue moving for to consider how we include the consumer in the conversation. matches but how they should start using a chip on the card but really what identity threat management looks like moving forward. y. multifactor authentication is key, and what the future of identity protection looks like for us all. so i look forward to questions and look forward to talking with the panel on this. thank you, debra. [applause] >> thank you so much. those remarks were right on target, fabulous, and it's so exciting to hear about everything the administration has been doing to move us forward for consumers for credit card security. this is great. we have an outstanding panel before you here today, and i'm
12:24 pm
really excited about introducing them all to you right now. i'm going to introduce them all, and they are not necessary going to speak in the order that you see light up so i'll ask them each a tedious sort of nod or raised her hand as i introduce them. and then we will get started. first up will be liz garner who is vice president of merchant advisory group. and then we'll hear from bill boger who is senior vice president and chief legislative counsel for the american bankers association. and then we'll hear from our wonderful consumer issue team of john breyault who is with the national consumers league. he is vice president of public policy, telecommunications and fraud. and steve pociask who is president of the american consumer institute. and i've had the pleasure of working for many years with both
12:25 pm
john and steve on the whole post of consumer issues, so it's wonderful to have both of them here today to join me. so first off i'd like to call on liz to talk to us and explained what retailers are doing to better protect consumers. >> thanks to prepare and thanks for having us here today. a lot of them their faces in the crowd. let's start over like to engage the audience. how many people know how many visa credit cards have been compromised in the past two years? no, you people know how many faster cards have been compromised in the past two years? how many people can in a big retailer or big bank who's been compromised in the past two years? i think that says it of the that's why on the panel it's our members and our brand who are at stake when it comes to payment card security and it's a relationship with a customer. so protecting customer data and
12:26 pm
payment in particular are paramount to the merchant community and it's something all of our folks take very strictly. series leader at my organization our direct members of the finance and treasury professionals but i'm not even talking about the technology people within the company. and i can take the payment card security is an important issue for our folks. that's how important is because of the brand damage and the customer service issues that a retail merchant or another business like a bank or someone else faces, it's in the wake of the data breach. here's a couple of things we're doing, some of the technologies that are at market that we are very focused on. we will talk a lot about emv today but i'll get to that last. two of the other important ones are tokenization and encryption. so from a very basic point what tokenization does is it replaces it with a different value. takes the data out of scope if installed and makes it virtually unusable to manage access data encryption is going to protect
12:27 pm
data and transmit a transaction is a complicated flow between multiple different partners. when i go swipe one of my cards at my neighborhood grocery store, that goes out for authorization from the merchant acquiring. agosta the payment card brand and it goes to the issuing bank and then it goes back all the way to the merchant point-of-sale. that's a given talk to some of the new transactions that are out there i'm transacting with this method i've got mobile carriers. i've got potential to apple on my phone o or android if a monir to vote or samsung or someone else who will touch the data and protect at all the way through the transaction is critical. that's something i merchant are very focused on, deploying tokenization and encryption solutions together. when i say tokenization i should clarify. i'm not talking about and off the shelf payment card version of tokenization to talk about actually our own tokenization technology but several of my members have been utilizing for years that a more unpleasant,
12:28 pm
all the products we have not just credit and debit cards. it goes beyond that to our retail gift card. it's much more expensive. same thing with some of the solution whereby for more merchant acquires. solution to the security technologies we are focused on applying for the next couple of years. emv is the one at who is focused on because we've got this october 1 liability should they. what is emv? its smartcard technology that essentially as a computer chip on a card that helps prevent against counterfeit fraud on this card, meaning it makes more difficult for me as a fee to retrieve his first of the old cards we have families to utilize today. the important thing here is that this prevents card not present, or card present, card -- counterfeit fraud. that's what i get at with the point of emv an attorney. with the last country and industrial is world to go the.
12:29 pm
we've got this date october 1st, 2015 is a simple thought, a lot of nuances of what happens and who bears liability once this shift doesn't affect the distance but it the parties was done the least to enable emv would be the most responsible for fraud and a card present an arbiter i think we look at some of the global deployment numbers it's interesting. worldwide emv card issuance, the adoption it on issue aside is up 40-50% were on the merchant side merchant terminal is asian, so i've set up and means to accept the the come close to 80, 90%. we are likely to the same trends we have merchants installing the capacity to accept these cards that they think is going to reduce their front profile and the risk to their brand. i think a pew research poll came out this week to sit on one in 10 cards right to have a chip on it that isn't an american
12:30 pm
consumer's wallet. we'rwe are pretty close to octo1 i think people are asking what does this mean for businesses? what does this mean for consumers when we have this october 1 big? i think it means a few things. i think some businesses up and be ready to accept emv, and for those of this type of card in their wallet, they will be able to use it. there are some other businesses who may not. i want to go into a few reasons why. it's not for lack of trying, i i talk with one of my large members yesterday who is an equipment provider hasn't certified that they can accept these cards yet. he can't roll out in the acceptance and is stored until the equipment provider certifies his part and field test it. one reason you're lagging behind this this is a global specification. like i said before, europay, mastercard and visa and there are a few other global card brands who covered specifications about card acceptance. one of the things we saw was a technology delay whereby in the
12:31 pm
u.s. we have domestic debit card networks so the previous the other side of atm machine, those groups who would not have access to transactions on these cards, if we didn't deploy a solution that was very specific to the product. .. and so that i think we have to
12:32 pm
take a look at what is the return on investment for deploying emv. like i said before there is a huge benefit to merchants if they better protect their brand from data security. we're thrilled that the white house's initiative to move towards chip and pin cards. a million cards marisa said, that is fantastic to already be there. that is really ahead of game to get card out in the market. post office and others dealt with to get their terminals ready as well. zoo i think it is great that the government's making such great headway there. i can tell you i have a friend who works at the state department who has chip and pin credit cards so excited to get it in the mail, travels to eastern europe all the time. has trouble using government cards for the past years and now she has one that works and is secure. one. challenges with emv in the u.s.
12:33 pm
we're not adopting fully the chip and punish tiff the government supported, and not fully operable with what is best practice out there internationally. there is a few reasons we're not going to pin. one my view, network driven initiative from the state. we have road maps from major card brands and there is very more concentrated networks, market share in the signature environment versus pin. it is market share issue there. on issuer side, as a business i'm very sensitive to the argument that putting a password on one of these cards, putting a pin on this, might make it a little bit more, might include a little bit more friction as i pull the card out as a consumer. as a business i am going to be very worried that would make me put this card at bottom of the wallet and take out one of my other credit cards. on the flip side i question how big is that risk?
12:34 pm
a very important point here, that is business driven decision, that is not a security driven decision. security experts will tell you two factor authentication is really way to go to increase security for cardholders, for consumers and thin i also question somebody who had my swimmed out front of the card, not ever password-protected i will never password protect it again. apple sets my phone up that i have to enter a password to access this by not, on issuing side putting pins or passwords on these products we're doing a disservice to the american consumer. i mentioned before, the last industrialized country to really move towards chip and pin, to emv cards. i think one of the benefits of that, we have more technology capabilities here in the u.s. that even than others had who rolled this out sooner. one of which is the ability to sent pins online. that is great feature commercially available several of my members deployed.
12:35 pm
if there are pins on these cards that will help reduce internet e-commerce fraud. that is a huge concern for us right now. e-commerce, internet transactions are some of the fastest growing transactions in the united states. and they are transactions typically do have a lot of fraud and on the merchant side we're bearing somewhere between 70 and 100% of all that fraud. for us protecting those internet e-commerce transactions, even these mobile transactions is paramount. so we would like to see pins on these to take it even further. last thing i will say about pins you have a chart on your seats there from the data pulse issuer study that came out last week. look at the fraud loss line. that alone shows you why we prefer pin in the merchant community. it is not about cost. it is about security. security of consumers. it is seven to eight times more secure if you have a pin-protected transaction.
12:36 pm
those numbers on the line speak volumes. if anybody says it is merchant who want to pay less interchange, look at regulated issuers. the interchange line at very top, a penny higher on pin. i would push back significantly that there is any other rationale behind merchants wanting pins other than it is a more secure type of transaction. to conclude i think, you know, we need to be pin protecting, password protecting products so that we have two layers of authentication. so that we can better protect businesses and consumers from fraud losses in the united states. i will point to one international example that is more recent. australia launched a pinwise campaign run by all the major global card brands, to essentially move to pins on credit cards which is what we should be doing here. they did it in very thoughtful way. they did it based off the risk on the transaction too. so there is a very big difference between my stopping
12:37 pm
at mcdonald's or wendy's at noon on friday than it is at midnight on a friday. if i'm buying $50 worth of food, i might not need to ask for a pin on that or $35, whatever the threshold will be for that noon transaction but the midnight or 1:00 a.m. i may want to ask for that card holder authentication to be certain that the person is who they say they are. if there is not a pin on that product i can't do that. ultimately that leads to more fraud in the system. that is bad for consumers and for business. so from our point of view we really need to take emv, which is the next big technology coming to the u.s. and one step further and pin protect it. >> thank you, liz. thank you so much. we'll move to bill boger, who will talk about the financial services industry from the american bankers association. talk about your perspective.
12:38 pm
how you're protecting consumers. thank you, bill. are you on there? >> thank you for inviting me, debbie. this is impressive turnout. i don't know if this is august recess or congratulations being in the audience. thanks for being there. i have to tell you your opening remarks were terrific. marisa, yours were magnificent. you all set the stage for this talk and i have to it will you, information-sharing is a huge thing for us. we appreciate all the work that the white house has done on it. the house passed information-sharing bills you guys have been heavily involved in. we're trying to get it through the senate and you guys have been very constructive and we do believe information-sharing is another side of the coin we're talking about here but perhaps the most important part is sharing threat information. liz, all your comments laying out the background for emv, your arguments were terrific.
12:39 pm
i have to tell you, talking about the analogy to late-night transaction, if any transaction after 10:00 involves me it is inherently a suspicious transaction because i'm in bed by 10:00. so i would really appreciate getting a call from my credit card company to tell me about that. in fact, i had a recent experience where didn't involve a pin card at all. just involved a regular card of a major brand that's headquartered in virginia if you're listening. i had a nice little lunch. took my son out who is intern at the american bankers association. had just a quiet lunch at a local restaurant. not a very big ticket item. and, in excess of just, enjoyment of having a conversation with my son, if you know teenagers doesn't happen very often, just having a talk with him i left an excessive tip which was over 20%. well the next thing that happened was, my institution
12:40 pm
sent me an email asking me whether in fact that was me doing the transaction, looking at the fact it was in excess of 20%. so, i guess my point overall, i could go into my prepared remarks and we can have at it, i think that talk about pin is part of a multifactor protective, you know environment that we all share that we want to protect consumers but it is not be-all-end-all. there is other technology using in our phones, biometrics that authenticate a transaction in place and evolving are quite frankly better than static technology such as pins. when you get a call from your institution, almost immediately, after a transaction takes place, asking if it is a fraudulent transaction or not, that is pretty darn good work. we want to encourage that. we don't want to sit back and
12:41 pm
just say okay, if we put in place a four-digit number that will solve all the problems. we know it doesn't. we know it doesn't deal with online transactions. we all have to work together to try to solve these problems. we want to work with the administration. we want to work with you guys. we want to work with consumers. we want to make emv a success. we want to continue to evolve our technology to deal with evolving threats but y'all have to realize that our market, our credit market is one of the most complicated and extensive markets in the world. a couple of factoids. 1.1 billion credit and debit cards are in circulation right now, 1.1 billion. the government you noted made good progress with chip and pins. that is a million cards versus 1.1 billion cards. the government is a huge operation but it is not like the private sector. the value of card purchases was
12:42 pm
nearly $5.4 trillion in 2014. the number of card transactions was over 100 billion in 2014. folks, this is a big aircraft carrier. it takes time to get this stuff put in place. they start with the emv transition, probably three years ago. as liz mentioned, there is an inflection point we're dealing with which is the shift in liability. i've heard various reports about the how many chips have been put in place by the merchants. i will tell you from our perspective, from the banks, by the end of this year, there will be 600 million, maybe even more of these cards that have been issued. i think if we're looking as long as we work with partners in the merchant community and folks in the sector we may be able to cover most of the cards out there by end of 2017. it will take a lot of work, a lot of cooperation. i feel if we continue to have these kind of conversations we can work towards that goal.
12:43 pm
so, i don't think i really need to go into a lot of details of the migration. i will tell you there has been a lot of work behind the scenes. a lot of cooperation among networks trying to put in place a uniform date for when this shift in liability occurs but it is not a deadline. it's a position point where that shift occurs. doesn't mean everybody has to go out to put it in. doesn't mean every bank has got to issue that kind of a card, but does encourage them and incent them to do it. that is the key here. we want to incent people to do the right thing. we want to incent people to protect data. we want to work together. we don't want to mandate a single piece of, frankly outdated technology to make that occur, somehow walk away thinking the problem has been involved. it hasn't been involved. we need to work together, continue to work together to solve the problem. thanks, debbie. >> thank you very much, bill.
12:44 pm
so we're going to move now from the industry perspective to the consumer perspective. and, john brio, national consumer league, tell us some of your thoughts about the consumer advocates perspective. >> sure, can everybody hear me okay? great. so just a quick baseline for you, mcl is oldest consumer advocacy organization. we've been around since 1899, almost as long as mag stripe has been around. the thing we're seeing here as we shift away from the old mag stripe technology to emv, i don't think there is any question in our point of view it is more technology. is chip and emv as secure with chip and pin? no. at least not in our view. that is because of the way you authenticate a card holder.
12:45 pm
but that said it's a very significant improvement in card security versus traditional mag stripe only. essentially chip and pin from our point of view tends to be a way to protect consumers against lost card fraud this is when you actually lose your physical card, somebody takes the card into a retailer to try to use it. in a chip and pin world that would be practically impossible although there certainly are, we just saw it this morning, brian krebs who writes extensively about fraud, talking about new skimming technology coming out of mexico that may make chip cards more vulnerable than we previously suspected. we're keeping an eye on that. that said we're moving to emv. there is any question that is happening. as we just heard there are millions of these cards being provided to consumers. and so this is, something that
12:46 pm
consumers will get used to having in their wallet. that said it will not be the silver bullet against fraud. we've seen in other countries such as u.k., that when they made the shift from mag stripe to chip based cards, much of the fraud that was associated previously with card duplication or card counter fitting instead to online card fraud. that is an area consumers will have to maintain vigilance about. unfortunately we'll continue to have to recommend to consumers they pay close tanks to the credit card statements, flag any any suspicious charges. so that is certainly one area that we expect to see based on international experience. you know, on the, on the legislative side i'm glad you raised this earlier in your remarks because, this is an area we think despite the technology
12:47 pm
advances that we are seeing in the industry there remains very strong need for baseline security legislation from the u.s. congress. ncl has support ad bill introduced by senator leahy in the senate side, i believe there is a house version will soon, if hasn't already been will be introduced for that bill. we think that is a bill not only provides baseline security protections, that would require all businesses to adhere to certain level of data security protection but provides a data breach notification standard raises all boats as opposed to looking to least common denominator approach that would reduce consumer protechses passed in many states that would breach consumer notifications protections. we're sporting a new bill in illinois that strengthens their existing data security
12:48 pm
legislation. certainly we look to states like illinois and massachusetts as templates for good data security protections that could be considered as a national template. you know, one thing we're also concerned about with regard to getting back to the pin issue, is this long tail of small businesses. so i think if you read the press you will see that many of the largest retailers are going to be implementing chip-enabled terminals, if they haven't already implemented, you see them getting into the checkout lines. we'll see more places where they are already in, turning on that, that functionality, the chip functionality. however, as was mentioned earlier, this is going to take a while. consumers shouldn't expect by october 1, suddenly their cards will be secure when they go to their local retailer but they should look for retailers who have chip turned on. and so that is going to take a
12:49 pm
little bit of consumer education, to make consumers understand why chip is a different way to pay. the advanced security benefits that it brings but they're also going to continue to use mag stripe. for example, we have october 1 liability shift for many retailers, atm machines and fast stations, for example, they, their terminals will not be subject to liability shift until the end of 2017. that, in addition to that you will have many, many small businesses who simply are going to make the decision that their liability for fraud is not enough to outweigh the not insubstantial cost of acquiring a new payment terminal. so consumers will continue to see small mom-and-pops, smaller stores continue to take mag stripe into the foreseeable future from our point of view. so, you know, while just in closing i think we are glad to
12:50 pm
see emv rolling out. we do think it is more secure. it is not the silver bullet. we're very grad to see the president's buy secure initiative. i think the federal government can lead by example in adopting more secure payment technology but that doesn't exclude the need for federal legislation to lift all boats. we're happy to be here, debbie. thanks for invitings ncl to speak on this very important issue. if you don't mind this one quick plug, if you're interested in data security issues we just launched today a new publication call our data insecurity digest that will provide important analysis and links to important media articles about data breach and consumer data security issues. you can find all the information about that, how to subscribe at our website, thanks. >> thank you, john. steve, your thoughts. >> thank you, debbie, thanks for
12:51 pm
inviting me. i'm president of the american consume institute. we're a 501(c) educational research institute. it's a pleasure to be here. we've heard quite a good baseline for the discussion and i want to emphasize a few points and add in a few new ones here so i will be pretty brief. there is a lot of statistics out there used how bad things have been last year and year before that. some of the statistics like 1/3 of americans had their information compromised and data breaches. there was another one twine 40 and 45% of companies had data breaches in the last year. i mean, the importance of this issue can't be, you know, overlooked. i mean we're talking about the need for better security along all steps of this, for better protection against data breaches. reducing fraud. and here with the signature still in play, we're talking about reducing forgery, if we
12:52 pm
can move towards a pin system. i think it is so important that we think about building confidence between consumers and merchants and the credit card companies and i think we're just a little bit out of sync here when we're taking an incremental step towards adding the pin but still leaving the signature in place when after all, we could have in that -- when you asking merchants to change out point of sale terminals just made the change. we're talking about a technology, chip and pin, a technology that has been in use for over 10 years, you know, all the major economyies in europe, parts of south america and other places use the technology. they have used the technology. there are studies that show reduction in the fraud that resulted from that, but still we're relying on signature. we're relying on this 1970s
12:53 pm
technology. it is kind of like, why are we doing that? if we're just going to make incremental step, why don't we put in what works today? yes, we have, we vision shoes still with online. we're going to make sure we have a multifactor authentication. there are other issues but right now we're taking the step to having merchants put something in place that's already out of date. to me that is the why. why are we doing this? and you know, i'm a little bit of at a loss but some explanation i'm hearing is that the major merchants in the u.s., which will soon be put at risk come october, so they're potentially facing higher costs. we have consumers potentially at risk because of these data breaches with their personal information being identified. but to me the credit card companies themselves are not
12:54 pm
taking as much of the risk. what we see here is, the fact is that the signature system allows them to take a higher transaction fee than the pin system does. so if you look over in europe where they're able to do this, there is more competition for these systems. the end result is a lower transaction fee. if you look at the difference between the signature fee transaction fever sus the pin fee, that should represent to you a measure of market power. that is what it represents. so, i mean, let's look back at what happened with some of the major breaches. i mean had pins been in place on the current magnetic stripe systems we have, they would have hindered the ability of these thieves to have monetized these stolen cards. and that in effect would have end up making those cards less valuable. now we're talking about breaches such as happened in target. it is simple economics.
12:55 pm
so what you're trying to do here, if you think about a thief running their own business, what you want to do is you want to raise your marginal cost. the way you do that, you shift that curve to the left. you make it less valuable. you raise their costs. end result of that, like economics you get less fraud. it is as simple as that but we're not moving towards that and i think what we have here today is market failure because when you look at difference between what the, transaction fee for the signature versus what would happen if the chip and pin, if you look at that that in itself represents, as i said before market power and that market failure, just speaks towards the need for a remedy to address this. yet thieves will be smarter in the future. we'll never going to catch up with this we'll always need somebody new in place. right now we have something better. we're not taking that step. we're still sticking around with a 1970s technology, the
12:56 pm
signature. that is just a shame because it is going to require the merchant to go out to get another terminal down the road. and couple years later, another terminal. most of these firms, i mean 80% of them have one employee or less. they're essentially, many of these are proprietors. what we're doing adding costs, instead of trying to impose costs on thieves, we're adding costs on merchants and consumers. and that i think is something that needs to change and i will stop right there, thank you. >> thank you, steve. thank you to all the panelists. we teed up a couple of great issues here. there is one that i want to get back to that three of our panelists raised. the issue of online transactions. so i heard both jon and steve bring it up. and, liz, before you mentioned that chip and pin could be used for online transactions. so, liz, i was wondering if you could just expand on that a bit.
12:57 pm
you even mentioned mobile transactions as well, so could you talk a little bit about that. >> sure. well, i think it comes back to the point of we are such late adopters of emv. there is so much more we can do as far as technology in the states and why aren't we taking incremental steps? there are commercially viable solutions online to accept pins over internet. that is one important consumer protection we could put in. as jon pointed out, we saw up tick in the u.k. without emv. some large merchants are able to solve for that. because their business is inherent solving for that, if they have over 90% e-commerce transactions. they're putting their own r&d to come up with their own transaction fraud monitoring system. small businesses could be really disadvantaged here if we don't have the wherewithal to find their own means to protect data
12:58 pm
better. there is off the shelf solution they could buy to pin protect internet transactions today. it comes back to what steve was saying about issuing emv without pins. it doesn't make sense in the u.s. i want to point out one thing, merchant terminals, chip and pin is international standard, all have that chip slot but they have pin pads for us. most merchants deploying terminals, could accept chip and pin tomorrow if they were able to program for it and if there were pins on the card. so the additional investment on our end would be programing issue more so than a hardware issue which is not difficult to do. you have to get in the technology queue. there are resource costs that go with it, time, employee costs that go with changing that software programing but it is very doable. the challenge that we're facing here is, you know, we're saying
12:59 pm
there, fraud will be going to be reduced by so much with emv. are we creating a false sense of consumer confidence is one of the bigger issues. >> so there is another consumer argument that i've heard and i want to throw to the panelists. and that is that consumers would have a tough time remembering a four-digit pin. i was wondering, we all have, we all have our money atm cards with four digit pin numbers. i'm wondering if anyone wants to talk about that? yeah, steve. >> yeah. just one thing. there was a study a few years ago that said that consumers on average you know, you know, remember eight pin numbers. so it is hard for me to understand why that would be an obstacle to be able to function. people do it today. i go in through a garage door,
1:00 pm
put my number in every time. otherwise i don't get in my house. this is a two-factor, you know, step that i think is, it's crucial. i don't think consumers are stupid enough that they can't remember that number. so i don't see that as a roadblock. >> i will weigh in real quickly too. i want to come back to couple things that bill said. i think it important to work together. particularly consumers are bearing some fraud losses in the system but it is predominantly borne by merchants and issuers. fed data shows combined we do 90 plus percent of all the fraud losses out there. i think information sharing has been key. we made great strides working with the financial services industry, retail has to further that information-sharing capacity and federal government's doing great things as well as marisa noted. . .
1:01 pm
i think that is one of them. you can easily lift a fingerprint and it's more difficult than grabbing the number off of the card on the code. we need to see how biometrics are going to pan out. i can let that also something attached to my fingerprints. there is some security there but it's not finite. i want to sound reasonable here and ask, if issuers think
1:02 pm
there's a better technology to authenticate the cardholder and you're ready to deploy that atms, we would love to work with you on figuring out the technology on the point of sale as well. >> there's a lot here. a lot of questions and stuff that went on for the other panelists. i've got a step back for a minute. we agree with you on the need for data protection legislation. i don't know all the specifics but i don't have strong data protection standard. when the financial industry are very much supportive of that sort of thing. that is why we've quite frankly been strong supporters of the nuke of our carny bill and the carp were blonde ale in the senate which has strong data protection standard and tens to
1:03 pm
raise people up to relatively the same level of protection of data. if we got together on legislation would all be better off and i can pledge to your industry is willing to work with you on that and hopefully the merchant and tumors on legislation across the finish line that deals with that. the other thing is it's really interesting and back to the card. they are trying to really get out most of the fraud is going on today is about which is counterfeit cards. the pain would deal with a certain segment and declining area of fraud. what we are facing and we talked about the major retailer breaches have nothing to do with head. it was because they didn't protect systems or the back door. it had nothing to do with a pin
1:04 pm
transaction. it was their system for protecting data and how they store data that was the problem. to analogize the pain would have somehow prevented those or alleviated the impact is simply a misunderstanding of the situation. i understand something data was compromised and when somebody has your opinion, they've got the keys to the kingdom. when i say static technology, that's what they mean. if somebody opens your mind and pfizer patent, you are in a world of trouble. we are trying to do with the majority of fraud. you mention the online stuff is great. love to see those products come forward, but it's all part of an overall gain. i am not here to promote any specific technology at silver bullet. i am here to say to you that we've all got to work together
1:05 pm
upon the multifactor, all kinds of evolving technologies. encryption, tokenization. we are looking at a tree. we are not looking at the forest. we are looking at a pin as a single tree. the forest is all the other things going on out there. that's what we need to work together on. i've worked with you on other issues and i'd like us to work more closely on this issue. >> everybody heard it here first. tokenization encryption is a three-pronged stool. >> john wants to jump in here. >> i appreciate you talking about the other bills that have been proposed. i think when we talk about data security while this panelists focused on current security, we also have two wonders and
1:06 pm
steve's point earlier about the economics of fraud. fraudsters tend to look for low-hanging fruit and byte emc will raise their marginal cost. no doubt about that. we are d.c. front stairs starting to look at other types of information that they can sell medical information, for example, one with those credentials go for far more on the online dark markets than the credit card information because fraudsters understand the credit card credentials are protected by layer upon layer of banking retailer protection than actually turning those card credentials into merchandise they can resell is becoming harder. things like medical information, information necessary to commit tax i.d. fraud is all
1:07 pm
information forefront stairs. my point in mentioning that is i don't want to debate over em the insect card security and we need to hold up data security legislation that addresses in an important way all of the vulnerabilities that businesses and the government to the u.s. house. a good first step is a comprehensive law from congress that says you need to have reasonable data security. that is the baseline we can all agree on. we need to have strong enforcement of the federal trade commission which is done an amazing job with more tools. unfortunately we tend to get hung up and has prevented very necessary reforms.
1:08 pm
harper, blunt if of our bill. >> strong enforcement will take care of that. >> a national standard -- let's have a meaningful national standard rather than reduced consumer protections to a lowest common denominator. >> we want high standard. >> exactly. we are in agreement on.s. consumer advocates of the banking industry coming together. i just can't resist a consumer education will play a huge role in all of days. the administration and the
1:09 pm
federal trade commission have done a great job on this but more resources put into this if folks haven't visited, it is a great resource for consumers to do that ms and 90 consumer advocate i have to caution you about flashing your credit card credentials on things like that. >> covering the numbers. >> can i provide a quick personal note on flashing your credit card number. again, i guess i will jump in anyway. my wife took our car to the local car repair shop and my famous to be undisclosed virginia headquarter card was used in the transaction and it was a trusted merchant. really love these guys. they do a great job, inspector cars every year and pass us which is even more. one glitch. my card unbeknownst to me comes
1:10 pm
somebody at the register wasn't even on the card reader. somebody took a picture of my card, put it online and within four hours, my information was being used to try to buy a tv in boca raton, florida. my card company called me almost immediately. they stop the transaction. they knew that i lived in virginia and i wasn't in boca raton and they stop the transaction. that's how sophisticated people are. he takes the stuff right off the card. that is the stuff we are dealing with and that is really dangerous stuff and we need to work together to work on that stuff and stop it. that is why technologies you talk about needs to be put in place. i admit there is some increment holiday to some of this stuff but we've got to be incremental to get there together at the end
1:11 pm
and it's never been a change, never can stop and we've got to keep working together. >> thank you for the interaction and discussion. just before we move in a moment to author questions before we do know if i think it is great would have agreements for cooperative working together among many panelists here. i want to sum things up in what i've heard is most of our panelists have agreed that it's a better layer of protection for credit card security while it is not going to guarantee that there will be no fraud moving forward pork simmers. it's a better layer. >> i did not say that. >> is anybody less than clear. i spent most of our panel is.
1:12 pm
it's a better layer of protection for consumers with the exception of bill. with that said, we will move now to questions from all of you for our panelists. [inaudible] >> i'm going to push back on the signature issue because it seems to me you're comparing apples to oranges because pincer checks and authenticated when you put a pin in a device at point of sale. the signature is added in my lifetime 99.9% of the time a signature is not checked. at a point of sale with the human being. they don't check your signature. how can you even compare if they check the signature, would it
1:13 pm
really be that much more authentication because now you are the human being standing in front of them rather than someone who might as: the pain. that's my question. >> why don't they check your license number while you stand there? [inaudible] >> i would agree, signatures are a worthless form and are very easy the counterfeited. there is a reason we collect them and that is because we get chargeback transactions for issuers on a cardholder calling the bank and say we think this is a fraudulent transaction and we have to show record which we can't do at a fuel pump which is how we bear a lot of fraud.
1:14 pm
we maintain records of the signature for that process. again, signatures are easy to counterfeit. it is not a good forum says something only the cardholder knows is much, much better. also there are card network rules in the past that i is the merchant should not decline the sale tickets are no match. if i do i can be penalized for that for my ability to accept their card or in. that is another rationale that we have historically had challenges. >> to add onto that, speaking as a consumer advocate, i don't think the signature has been authenticated at all. as was mentioned, it is simply my signature agreeing to pay my bank back for what ipod from a
1:15 pm
retailer. i don't think the signature is an adequate authentication method. i will add onto that for many issuers, there is a very significant percentage of purchases they never require a signature at all. if you've ever purchased a hamburger from the donald's with your credit card, they don't require you to sign if it is below a certain dollar amount. there is a huge percentage of purchases just because of cardmember roles they don't require authentication whatsoever. >> the thing we should be asking ourselves is that they paint a somewhat better than the signature, why doesn't the industry have any incentive to innovate. it seemed like it would use simple thing to incorporate and of course we always hear the way the feeds are getting smarter
1:16 pm
from year-to-year, once we figure this out though, put another way will have to be careful and coming up with it. the issue there is why don't we get the best thing now in place that went down the road we have to change it again to keep up with what is going on. instead what i'm hearing is is legislated eventually get there which demands dragging our feet and pushing the cost to someone else. >> let me say for our members, we basically provide the reliability for consumers. we bear the cost of unauthorized transactions and liz mentioned the fact they require a signature in order to protect them selves. our members are actually paying for all of this and hold consumers harmless. when we get involved in data breaches to read the normal run-of-the-mill fraudulent transactions, we are highly
1:17 pm
motivated to protect and make consumers whole. we don't spare any expense and effort to protect rumors because honestly it's our lifeblood and also in our interests. to me we work on variety of different areas and it's sort of like that is the solution. it's just not the solution. >> liability shifts in the dover. >> which will provide incentive for people to upgrade security standards. incrementally as you said we believe that will address most of the fraud out there right now. >> i direct you back to the chart are regulated at nonregulated. the fraud losses much less an unregulated. we are talking one to 23 i think it is i'm not. >> question right here from
1:18 pm
jason. >> is very much. congratulations on a great forum today. great speakers and great information. i'm from the electronic transaction association. i just wanted to play credit card industry historian for a moment and for the benefit of the audience, just mention something helpful to understanding why chip in and are talked about in the same sentence. steve alluded to this endeavor were also the world ,-com,-com ma especially in europe and the chip was introduced 20 years ago as he correctly noted this is a 20-year-old technology it came with a pin. i think an obvious question is why chip and pin implemented in europe. anyone who sat in a café in rome and had a credit card product to them does it is just how it done
1:19 pm
overseas and not that way in the u.s. the reason is a telecom reason which steve and john and debbie and i will appreciate telecom geeks. when emp was deployed 21 years ago in europe, it was the first implementation of electronic authentication of credit card transactions where as in the u.s. the implementation of authorization of credit card transactions credit card transactions was with a magnetic stripe. the technology is that tapes we are familiar with. europe doesn't have a telecom infrastructure we have in the u.s. said the authorization of transactions doesn't take this online. it takes place on the device. here in the u.s. when you start your card, that transmission goes to the network for authorization is done online. there's a real-time authorization that takes place.
1:20 pm
in europe they don't have the answers are up sure we have here so have here said they couldn't authorize the city needed to develop a technology to allow the transaction to be authorized on the device, on the handheld merchant located terminal. the pain is authorized by the credit terminal in europe which says yes or no on behalf of the issuer because they can't get the real-time message. chip and pin her deployed elsewhere because that's the only way to authorize transactions. in the u.s. we did it without because it's authorized online. again, not an answer to the question of whether it is great or kind of grade. panelists have gone into that in great detail. history is important because it explains why we can deploy and still authorize transactions
1:21 pm
online. >> that's a great point. i would like to make one clarification on that. are you going to hinder microphone that before i do? [inaudible] >> i was absolutely the case in france when it rolled out in the early 90s and there was almost early emb chip and pins. in the u.k. wrote it out, dated the transaction we do in the u.s. it wasn't entirely the communication with the terminal. more of an online-based transaction. there is historical reference for the technology we talk about here because it had been built up and i dare challenge you, but you are right historically that is why it was rolled out that way. other people who've adopted prior to that two-day transaction online but we do here in the united states.
1:22 pm
there's an international presence for that as well. >> this'll be the final note on this. >> that also meant merchants in the u.k. and france route europe deployed terminals that had pin pads because they were having not as part of the transaction. in the u.s. one of the complications is there are millions of merchants they didn't need them when the terminals were deployed. that's obviously very different. we are accustomed to giving our card and make a while back. we don't have a device presented the way they do in europe. >> thanks, jason. right here question. if you could identify yourself.
1:23 pm
>> policy director for congresswoman sheila jackson. i do question about smartphone enabled credit transactions. they provide the same protection are the transactions protect it by existing law and dubious transactions apply? >> excellent question. which one of our panelists would like to take that on? >> i apologize. i am in this year and i didn't hear the first part of your question. could you repeat it? >> way for the mic again. >> i want to know smartphone enabled credit transactions are covered under rules by the $50 limit if there is some compromises to the system. the second part of the question are these transactions protected
1:24 pm
by current law and if so which law. and the last part, due transactions meet the october 1st deadline? >> bz answer is yeah. if they are under current law whatever current law applies to the online world applies to these and it's a variety of laws. we can talk offline but there's a whole bunch of laws. and so it is basically different methods of doing it but all the laws would apply to transactions. the liability shift is a private sector negotiation and people have different views on them. that is really at network world do you work out in the private sector. that is not a mandated federal hall. >> i would just weigh in. it depends on what laws regulate transaction under which the smartphone transaction is taking place. one thing that i will point out
1:25 pm
his merchants are encouraged to accept transactions as part of the emp liability shift. basically the roadmap has vast merchant to deploy specifications except any cards loaded onto the phone. >> i would just add whether consumers are using a mobile contactless payment solutions are the card of, if you detect fraud in the same advice applies. they are so protect the for credit and debit transaction that you notice i'm not. i would say even if you just loaded up half a dozen credit cards on mac, that does not mean you shouldn't be checking your credit card statement and disputing potentially fraudulent
1:26 pm
charges that may pop into the system. >> right here in front. >> hi, dave kerr from "politico." given the fact that pin only protects against loss and stolen card fraud, where is the study comparing the cost of pin implementation through the entire retailer processing is done against the fraud that would offset and in the lack of that study how can you be so certain of their advocacy? >> well, you know, i think in my opening remarks i mentioned that chip enabled cards are a step forward for consumers. they are a step forward in it does address much of the fraud
1:27 pm
that occurs in counterfeiting today. >> what about you specifically. >> do you have that data, lives or steve? >> i would look at the federal reserve study on debit. this is mostly large issuers covered by regulation and particular and it shows basis points of fraud are significantly lower than basis points of fraud overall. something like 11 to three total. one of the challenges and why we need to work together more if that is poor and predominantly issuers and depend on the type of fraud. it is more borne by the issuer side. the signature debit card fraud, which is shared is about 64 d.
1:28 pm
give or take issuer merchant and present fraud is anywhere between 70 and 100% for us. overall fraud share is that out 64 d. total. when you have to look in drill down into that number, the fraud loss total are so much lower. looking back at the charts they are, it is very telling as far as how little fraud loss there are pin data. i don't think i've gone far enough for you. >> i don't think you have. how can you still -- where is it to say it is actually worth the money that it will cost the economy? >> because it takes money to
1:29 pm
implement terminals, processing, backend systems. none of these things are free. >> most merchants have programmed. i started out working for the grocery industry were 40% of transactions are pin transactions already in the cost of upgrading software to reduce fraud losses as much as you can on the transaction is absolutely there. a lower risk transaction area may be slower adopters. quick service restaurants have not been high adopters because there's a basis point of fraud and not environment and it's very low if fraud moves into the category, they will have to look at other ways to authenticate cardholders. today, several merchants have been lucky not other
1:30 pm
technologies. people sat in the audience that pins are part of solving the problem but tokenization and encryption are two important technologies protecting ecosystem overall. when i look at payment deployment and acceptance strategy you look at factors that how can i make the best sense possible and how can i accept the most secure transaction in my environment. right now the environment of a tag. >> i'm sorry. we actually do have data we would like to share with you talking about the cost-benefit analysis on this whole thing. you've got to remember the stolen cards to as the declining part of the problem. >> i will jump in here for a second. i've been trying to stay out of the battle on this one for a number of reasons.
1:31 pm
we have part of the initiative made a specific preference for paying enabled card. it goes back to what one of the panelists just sad that at the moment but will most secure the individual transaction. that said, we are also looking for an transactions and working with industry and researchers to see what is the next generation of enhanced security features and what should we be doing now recognizing we are behind the game. everyone else has adopted ahead of us. we need to do more and tokenization, encryption and other forms but could have biometric of iris scans other things out there. we are excited when mastercard announced they were going to do
1:32 pm
biometrics. medusa said they were going to tokenization and amex said multifactor authentication. i know chip and pin is the focus -- everyone but october 1 on the horizon. take a step back and think that is october 1. we don't want to catch up with where the europeans are at 20 years ago. we want to make sure we continue to be american innovators that take that in the next step and it goes to something i mentioned in my opening remarks about how we include the consumer and understanding identity theft and management. it's about how we conceive of identity protection. but the biometrics, multifactor. i just want to again get the group to take a moment to step back. i think it means i got the last word that i don't know. >> wonderful last word to end
1:33 pm
on. it is all about the consumer. thank you so much for being here today. thank you to our panelists. [applause] [inaudible conversations] [inaudible conversations]
1:34 pm
1:35 pm
>> who are isis? why are they so violent? all those questions are important but what is more important in some ways because we can do something about it is what is the u.s. policy? why is it working? can we go to war against terrorism? are we doing more wrong or is it wrong to say there should be a war against terrorism at all. those are the questions that are the most important and will be the most useful.
1:36 pm
>> the national urban league held its annual conference recently where attendees are from education secretary arne duncan, chair of the fcc mignon clyburn and a panel of young professionals to talk about education, jobs and justice in fort lauderdale, florida. >> this is that i welcome you to the opening plenary at the 2015 national urban league conference. it is my honor to preside over this session but it seemed to be of great importance to identify the core of the next generation of leaders. we always have to be prepared to pass the torch, but who in our ranks as the ability, fortitude, intelligence and commitment to move the platform and agendais most important to our communities to the next level. is that a conversation worth having? do you agree? we will start this discussion at
1:37 pm
today's opening plenary, but it won't end today. leaders in the fight for just as, education and jobs, economic equality, political parody or not a dime a dozen. it takes a certain strength too late. it takes integrity and the ability to keep fighting requires one to eat kobe and shaq. despite fears that requires you to have guts and determination, to not give up. when it's stacked against you it takes courage and compassion and it takes a love of people and that love is like the love that god has for all of us. it is not a role for the weak of heart and the speakers and panelists in attendance today but which address some aspect of the subject starting with their first speaker today, robert w. runcie.
1:38 pm
superintendent of the broward county schools and superintendent of the nation's sixth largest school district. robert runcie is committed to educating today's students to succeed in tomorrow's world. ladies and gentlemen, urban makers, please welcome, robert runcie. ♪ [applause] >> good morning, everyone. how are you doing? thank you, president marc morial. i'm honored to serve on the urban lake of broward county and i want to take a second to give a special shout out to our local leader and president jermaine smith. she demonstrates the kind of tenacity and determination we will need to save our cities,
1:39 pm
save our country. we have all heard of the traveling and seemingly attract the ball statistics about the achievement gaps in our nation's education system were black and brown children, poor children, ways to vent than others on standardized assessment, graduation rates and college and career readiness. the gap becomes intensified by the school to prison pipelines were black males are disproportionately represented in the more than 3 million student suspensions that occur each year in this country. that is one for almost every teacher and classroom in america. make no mistake the achievement gap is linked to the opportunity gap. we see increasing numbers of students showing up the classrooms each year, each day, struggling to overcome challenges of poverty, violence
1:40 pm
and homelessness. the future of our nation will be determined by how we treat our most vulnerable people. now is the time for this generation to do what it takes to break the cycle of poverty for the next generation. i am here to tell you broward county public's goals come in the sixth largest school district in the country with over 265,000 students have the determination and tenacity to become the national leader in closing the achievement gap and we would get this done. [applause] we will get this done by doing several things. keeping our kids in our classrooms and not sending them to court rooms. [applause] we've implemented intervention programs to support kids having behavioral behavioral challenges than mussina 63% reduction in suspensions of broward county
1:41 pm
the last couple years. secondly, we will be redoubling efforts on early learning and literacy to ensure students are successfully making a transition from learning to read to reading to learn an advanced level by third grade. third, we will build and continue to work on developing great relationships with community partners such as the urban lake and many other agencies we must work with collaboratively to ensure the success of all children. finally, we must provide children with hope. we may show them every day that we love them and believe in none. educating our kids is not a spectator sport. let's all get in the game. may god bless you all with the
1:42 pm
strength and courage and wisdom to give our kids a fighting chance to achieve the american dream. thank you. [applause] >> thank you, superintendent rent fee. all efforts begin and end with education. i would like to now bring to the stage federal communications commissioner mignon clyburn to give remarks. mignon clyburn serves on the federal communications commission. the federal communications commission has a very important role. they oversee many emerging tech knowledge account the needs from the television stations, radio stations, telephone companies, internet companies and commissioner clyburn has been steadfast in pushing equity issues in my those industries. we are very proud she is with us today. ladies and gentlemen, what an honor to recognize and present
1:43 pm
to federal communications commissioner mignon clyburn. [applause] >> good morning, urban lakers. what an honor it is for me to take part in the series annual convention. save our cities. education, jobs and justice. what a fitting the meso old late encapsulates event for the past year. if you would please allow me to speak about the progress we've made over the last 12 months because you rarely we focus on the good. we need to do better about that. as a nation with the improvement when it comes to education, the high school dropout rate falling. we witness game on the job front, national unemployment rate is decreasing family make incremental note are the steps when it comes to justice. we are witnessing a nation wide
1:44 pm
bipartisan conversation on criminal justice reform in seeing more scrutiny investigations and charges levied on those who may have fallen short of the oath they were swirled to abide by. most often the proof is bolstered by a video. but it was not so long ago even this degree of per would not have made a bit of difference. as dr. king reminded us, human progress is either automatic or inevitable. every step towards the goal of justice require sacrifice, suffering and struggle and the exertion and passionate concern of dedicated individuals, you are the individuals from president marc morial to the leadership of affiliates and volunteers to the urban lake yelping young professionals and the national local staff and supporters, we are so grateful for your commitment to ensuring
1:45 pm
african-americans and underserved populations have access to the training and support needed to receive a quality injustice. with out a doubt for progress and optimism we have are too often clouded by heartache and struggle. supporters and sympathizers of black wives matter our heart ache but engaged and determined to bring about change. 11.3% of african-americans currently unemployed are hearts victor continue to struggle to support their family and search for opportunity. the nearly 500 counties in our nation classified as persistent poverty areas, communities disproportionately and desperately poor for 30 years or more. they are heartsick but many remain hopeful. they are longing and deserving of our support. like you, i hear them and refuse
1:46 pm
to let the heartache wear me down or stifle resolve. each of us is here today because we realize we are the architects and builders of change and hope. it may sometimes seem we are the only draft or send designers of the footprints and blueprint but we keep pushing. we keep moving to keep our heads down. for me, it is about providing opportunity through communication. we have witnessed real have witnessed real games on broadband and technology are used to tackle the most chronic societal problems. our economy is growing and lives are more convenient whether difficult homework assignment, buying a plane ticket or seeking medical help, increasingly this is all less difficult when we are connected to the internet.
1:47 pm
entrepreneurs are accessing new platforms and solving new problems. rock band is breaking down barriers for minorities and the people with disabilities than the poor. when you are shopping online, you may never know the seller or purchaser what he or she looks like. i've heard stories about people of color who are making much more money on line than they ever did when they were pounding the pavement knocking on those stories and facing rejection they concluded may have been due to long-standing prejudices and biases. even if an equalizer of opportunity, even without broadband drinks, too many simply cannot afford to be good. schools and libraries have inadequate broadband speeds.
1:48 pm
community schools are not offering advanced placement or advance stem courses and this is putting our most bright, intelligent students at a competitive disadvantage. companies that pay the best wages will never hire those who are not proficient and without each of us challenging high tech companies to recruit from hbcus state-supported schools without being a bridge for those who do not have the corporate context, our young people will never have the chance being employed by high-tech companies there any other companies leaving our most talented unable to fully develop and market those excellent business ideas waiting to be unleashed. our communities are being left behind and stuck on the wrong side of the opportunity divide, leaving them less likely to gain access to venture capital not
1:49 pm
works and this is why compassionate about connect the dots between the promise of broadband and the actual risk all to everybody flies. and determined and will commit to work with you to modernize their countries only though when comes telecommunications adoption program by making existing support for lifeline for support for broad income and not just voice service as it is today. we have heard relevant relevance, not cost is the reason we do not have connection at home. you know firsthand when you ask a private senior citizen on fixed income whether she wants to sign up for broad and, her dignity will not allow her to admit to you that she cannot afford the service. what she will tell you is that not relevant or she does not
1:50 pm
need to. but we know that is not the truth. the pew research center reported african-americans have adopted broadband faster than any other group in the past 15 years. they also reported the majority of those without broadband, household income lower than $30,000 a year. that is why we are committed to ensuring cost is no longer a barrier that this will only happen to partnerships with industry, government and all of you. last week the commission voted to approve a merger between directv and at&t. what you may not have heard his office worked with the company to design a program that will offer individuals and families eligible for snap the ability to purchase 10 megabits of broadband for $10 a month without any connection fees or hidden charges. for those who don't know what that means, access speed.
1:51 pm
you could affordably download instructional videos, give him a scare through telemedicine and start and maintain on their businesses. this could be the key for so many in our communities and villages so affordably. we recognize even if we create larger communications through mergers we have an obligation to account or small businesses and promote radio programming. i promise you i'll never abandon those goals have called for proceedings to identify more opportunities and i will not quit until the fcc finally come that answers the calls of thousands of petitioners pleading for well over a decade for ruby from exorbitant telephone calling rates charged by companies that serve jails and prisons.
1:52 pm
we made a critical step two years ago. that did not solve the problems for the majority of the 2.7 million children struggling to maintain contact with an incarcerated parent. families, friends and legal aid lawyers by spelling out 400 to $500 a month to keep in touch with loved ones. they can afford it. those clients are not the enable to serve those individuals. what company can afford 400 to $500 a month to protect and stand up for client? they're unable to stay connected and a thick consequence of not being able to stay in touch, they go home as strangers and i'm convinced that i know you know plays a role in 75% of those really said that behind
1:53 pm
bars within five years. i may not be able to stop every inmate from reoffending, but i can will do my part when it comes to those criminal justice reform. i can make a difference. you can make a difference so that costs will not be the main barrier for family and friends when it comes to maintaining contact with those incarcerated. the reason why this has gone on for so long is because too many of us have remained silent. we remain silent no more. but time is to stop ignoring the problem and free to push the fcc to finish what it started. the time is now to demand the 40 plus states to refuse to address the issue of unfair can make calling rates stop ignoring what an mtc calls attacks on pain for
1:54 pm
too many. we are also hope they have. each of us has capacity and inability to push when needed, to prod when necessary to protect when warranted and deliver always. let us use the hours they have to share with each other to sharpen our tools come and be enlightened by new concepts and strategies and get energized so we have stamina and needed to carry the torch of hope and change. i thank you, urban leaguers. i am working with you. i am yours, urban leaguers. thank you very much. [applause] ♪
1:55 pm
>> ladies and gentlemen, please welcome back to the national urban that the secretary of education, arne duncan. ♪ >> first of all, good morning. thanks for having me here. first of all, let's welcome secretary duncan back to the urban league, leaders and gentlemen. he has been with us many, many times. i want to start because you've really been in a trench working hard for six years as the presidenpresiden t secretary of education. i want to start by giving a long view as he looked back on the six years, what has been the most important part of the last six years when it comes to improving outcomes, education, things started. >> to be clear we have a long way to go.
1:56 pm
i would start early childhood education from the best investment we can make. historically her department didn't do much there. what do more than a billion dollars behind steve want to increase access and quality. we are thrilled with that and we have a long way to go. on the k-12 side with high school graduation rates at all-time high for the nation. 81% dropped rates significantly pared african-american dropout rates down 45%. denigrates cut in half. that equates to 1.1 million additional students to color going on to college. we are thrilled with that. one of the things were able to do, feather works for me and runs our students better late. we were able to put $40 billion behind cal grants without going back to paris for nichols. but the money into students and went from 6 million recipients to nine.
1:57 pm
we made progress at every level. we have a long, long way to go. [inaudible] we all know as a historic civil rights organization that 50 years ago president johnson at the elementary and secondary education act in a book so it's evolved over the years. in and the debate is about what it ought to look like as congress considers reauthorization of renewing the law. data. what should we be looking at and of course we've been in a trench. mostly aligned, but i think people would like to hear bird is because some of it is played inside the beltway. >> first off the no child left behind law has been broken for a long time. congress has been broken and pretty dysfunctional as well.
1:58 pm
what we've done is stepped in and provided waivers. >> dysfunctional? >> we provided waivers to get to the onerous parts to maintain accountability. more so in the senate than the house and the house is a good-faith effort. you have republicans and democrats the first time starting to work together to get the right point. i wonder thank you so much in the urban league and other civil rights organizations. this is not an education law. it's a civil rights law. we have to make sure what their kids get educated or not is not a state-by-state decision. i always say this isn't the right thing to do for the black community. this is the right thing to do for our country. but the first time ever nation's schools majority minority of either we help every child is successful and have strong families and communities and a strong nation or the whole nation will struggle and having
1:59 pm
you another stand up and say we need to be held accountable and make sure young people are graduating and measuring progress each year. the voice of the civil rights community is extraordinarily. other voices they walk away from accountability. what states do what they wanted districts do they want and we know what happens sometimes when we give folks a pass. >> a word often do -- [inaudible] testing. his works, my investment. we will pass it back and forth. about what accountability really means and what accountability should we have. one of the things people tend to forget is the elementary and secondary education act involves a big commitment to elementary and secondary education. how should we think about the word accountability? what does that mean in real
2:00 pm
terms? >> uni and everyone near put up billions of dollars of each year. were asking for another billion dollars but we need to make sure from a fiscal standpoint that investments resulting to closing insidious achievement gaps and they climb and dropout rates go down. it is not just about the financial part. it is giving kids a chance in life. ..


info Stream Only

Uploaded by TV Archive on