• Duración:
    4 semanas
  • Dedicación:
    3–5 horas por semana
  • Precio:

    GRATIS
    Agregar un Certificado Verificado por $399 USD

  • Institución
  • Tema:
  • Nivel:
    Advanced
  • Idioma:
    English
  • Transcripción de video:
    English
  • Tipo de curso:
    A tu ritmo

Prerrequisitos

This course is intended for cybersecurity professionals with an interest in payment systems. Basic knowledge of cybersecurity concepts (cryptography, threat models, etc.) is required, with a BS Degree in Cybersecurity optimal.

Sobre este curso

Omitir Sobre este curso

This course provides details on how card payments are processed, including differences between older ‘magnetic stripe’ transactions and newer EMV (or ‘chip’) based transactions. Using this as a base, the course outlines specifically how payment solutions are being implemented around the world on smartphones and mobile devices, the differences between mobile acceptance and mobile issuance, and how other types of payment methods and payment processes may be implemented on these devices. This includes discussions of tokenization and token service providers, their relationship to financial institutions and merchants, as well as card transactions using card readers, contactless payments, and the rise of mobile apps, mobile wallets, and the ledger systems that are often used to manage these processes. Topics of mobile security, security standards, cryptography, protection of sensitive data, potential data breaches, malware, and key management are touched upon at a high level, but primary focus is provided to the mobile payments eco-system and implementations.

Lo que aprenderás

Omitir Lo que aprenderás

In this course you will learn how to think systematically and critically about the concepts and challenges informing implementation of any mobile payments strategy. You will come to understand the core issues that underlie the changing landscape of payments and how to secure digital transactions by learning:

  • the principle components of open and closed loop payment systems
  • the difference between MagStripe and EMV payments and threat models associated with each
  • the differences and similarities between contact and contactless payments using EMV
  • what the core standards for payments are and how they are changing
  • the different types of cardholder authentication
  • the differences between mobile issuance and mobile acquiring and the role that financial institutions play in each
  • the roles that tokenization and token service providers play in mobile payments
  • about the migration away from dedicated payment terminals and what that means for the future
  • about securing enrollment and implementation of mobile applications
  • what the key drivers for change are in the area of payments and how these are shaping the emerging patterns for fraud

Plan de estudios

Omitir Plan de estudios

Week 1: Payments Overview

  • Payment Fundamentals
    • Evolution of Payments
    • How a Payment is Processed
    • Payment Authentication and Settlement
  • EMV and Current Cardholder Authentication
    • EMV and Why It’s Needed
    • EMV Transaction Authentication
    • Cardholder Authentication

Week 2: Introduction to Mobile Payments

  • Mobile Payments Overview
    • Mobile Payments Defined
    • Mobile EMV Issuance
    • Tokenization
    • Mobile Issuance Walkthrough
  • Challenges & Standards
    • Payment Standards & Mobile Payment Challenges
    • Mobile Payment Standards & Reducing PAN Use

Week 3: Payment Problems, Threat Models, and Attacks

  • Threat Modeling
    • Threat Modeling Refresher
    • Payment Threat Models
    • Detailed Attacks on Payment Systems
  • Potential Mobile Issues
    • Mobile Device Security
  • Fixing the Issues
    • Securing Mobile Payments
    • Securing Enrollment & Implementation
    • Mobile Acquiring Walkthrough

Week 4: The Future of Payments

  • Current Trends
    • Current Changes Driving Payments
    • Paying for Payments: Interchange
    • ISO8583 vs ISO 20022
  • Issues for Now and the Future
    • Online Payments vs In-store Payments
    • New Forms of Payments
    • Shared Ledger
    • Managing New Forms of Fraud

Conoce a tus instructores

Andrew Jamieson
Head of Innovations
Underwriters Laboratories

Obtén un Certificado Verificado para destacar los conocimientos y las habilidades que adquieras
$399 USD

Ver un modelo de certificado de edX en PDF
  • Oficial y verificado

    Obtén un certificado con la firma del instructor y el logotipo de la institución para demostrar tus logros y aumentar las posibilidades de conseguir trabajo

  • Fácil de compartir

    Agrega el certificado a tu currículum o publícalo directamente en LinkedIn

  • Incentivo comprobado

    El certificado te da un motivo más para completar el curso

  • Apoya nuestra labor

    edX, una organización sin fines de lucro, se sustenta con los certificados verificados para financiar la educación gratuita para todo el mundo

¿Quién puede hacer este curso?

Lamentablemente, las personas de uno o más de los siguientes países o regiones no podrán registrarse para este curso: Irán, Cuba y la región de Crimea en Ucrania. Si bien edX consiguió licencias de la Oficina de Control de Activos Extranjeros de los EE. UU. (U.S. Office of Foreign Assets Control, OFAC) para ofrecer nuestros cursos a personas en estos países y regiones, las licencias que hemos recibido no son lo suficientemente amplias como para permitirnos dictar este curso en todas las ubicaciones. edX lamenta profundamente que las sanciones estadounidenses impidan que ofrezcamos todos nuestros cursos a cualquier persona, sin importar dónde viva.