Airline White Paper June25
2015-01-10
: Mc Airline Whitepaper June25 Airline_WhitePaper_June25
Open the PDF directly: View PDF 
.
Page Count: 2
| Download | |
| Open PDF In Browser | View PDF |
Airline Industry Payment Card Fraud Prevention Best Practices PCI Best Practices MASTER CARD SITE DATA PROTECTION PROGRAM Compiling and storing payment card transaction information must be performed in accordance with the Payment Card Industry Data Security Standard (PCI DSS) and MasterCard requirements. Payment card fraud continues to plague the airline industry as fraudsters perpetuate scams leveraging counterfeit card and card-not-present (CNP) vulnerabilities. As non-face-to-face transactions become more and more common, acquirers and their merchants need to ensure that procedures are in place to authenticate both the legitimacy of the payment cards being used and the cardholder making the purchase. Get to “Know” Your Customers The first step in a robust CNP fraud prevention program is to collect data on both the passengers traveling and the cardholders making the transactions. This information can include: Name, Address, Date of birth, E-mail address, Phone number. Once the information is collected, it can be cross-referenced with proprietary internal databases and external sources to establish indicators that denote a low- or high-risk exposure for each transaction. Monitor for Suspicious Transactions Other indicators that can signal that an airline ticket purchase may be at risk of fraud may include: • The cardholder is not the actual traveler • Phone calls or Internet Protocol (IP) addresses that are not within close proximity to arrival or destination airports • The same card data is used to purchase multiple tickets during the same time frame but to different locations • The ticket is purchased within a few days or hours of the actual departure time • The cardholder has been identified as making prior fraudulent purchases • The traveler does not appear on an airline’s frequent flyer list • Travel is booked for high-risk destinations • A high-value ticket is purchased, typically first-class or business-class seats To help support merchant compliance with the PCI DSS, the MasterCard Site Data Protection (SDP) Program provides acquirers and their merchants with the requirements, guidelines, and tools that improve their overarching security posture by identifying vulnerabilities and highlighting how to greatly reduce the risk of having cardholder data compromised. CONTINUED FROM COVER In addition to creating a database to gauge the risk exposure for passenger and thirdparty payment card transactions, MasterCard recommends using the Address Verification Service (AVS), card validation code 2 (CVC 2), and MasterCard® SecureCode™. These highly effective cardholder verification resources can make transactions more secure and help reduce fraud. Collaboration is the Key One important element to addressing airline industry payment fraud is the ongoing collaboration of all members in the payment value chain. Travel agents, third-party ticket sellers, airlines, acquirers, and issuers should establish methods for sharing appropriate transaction information—in accordance with the PCI DSS requirements—to help mitigate fraudulent transactions. One example of this type of collaboration is Capital One’s Preferred Merchant Program. Following up on its popular Merchant/Issuer Fraud Forum, Capital One developed a Preferred Merchant Program that allows issuers and merchants to send each other alerts on confirmed fraud. Through this program, issuers and merchants can quickly take appropriate actions necessary to prevent fraud from occurring. ©2012 MasterCard. Proprietary and Confidential. All rights reserved. [If applicable, insert appropriate trademark attribution here. Consult your MasterCard Worldwide Law Department representative.] Since November 2010, Capital One estimates that airlines participating in this program have helped to prevent the sale of thousands of dollars worth of fraudulent tickets. In conclusion, safeguarding account data and preventing fraud is a shared responsibility across all stakeholders. Often times, merchants in the airline and travel industries play an important role as one of the first lines of defense in that effort. Therefore, it is critical that they have a solid understanding of common tactics used by criminals to commit fraud and leverage existing technologies to help determine the difference between valid and invalid payment card transactions.
Source Exif Data:
File Type : PDF File Type Extension : pdf MIME Type : application/pdf PDF Version : 1.4 Linearized : Yes Tagged PDF : Yes XMP Toolkit : Adobe XMP Core 5.0-c060 61.134777, 2010/02/12-17:32:00 Instance ID : uuid:8c60b0c9-30d6-7b47-bfb9-6c328b7891e6 Document ID : xmp.did:089B4707132068118083F01185EC6A63 Original Document ID : adobe:docid:indd:5863be98-7567-11e0-ac38-e2388901fa1f Rendition Class : proof:pdf Derived From Instance ID : xmp.iid:46D3E6DA122068118083F01185EC6A63 Derived From Document ID : xmp.did:560B61C0072068118083F01185EC6A63 Derived From Original Document ID: adobe:docid:indd:5863be98-7567-11e0-ac38-e2388901fa1f Derived From Rendition Class : default History Action : saved, saved, saved, saved, saved, saved, saved, saved, saved, saved, saved, saved, saved, saved, saved, saved, saved, saved, saved, saved, saved History Instance ID : xmp.iid:00801174072068118083F01185EC6A63, xmp.iid:5E651474072068118083F01185EC6A63, xmp.iid:68651474072068118083F01185EC6A63, xmp.iid:4C0B61C0072068118083F01185EC6A63, xmp.iid:560B61C0072068118083F01185EC6A63, xmp.iid:45D3E6DA122068118083F01185EC6A63, xmp.iid:46D3E6DA122068118083F01185EC6A63, xmp.iid:089B4707132068118083F01185EC6A63, xmp.iid:208DA312132068118083F01185EC6A63, xmp.iid:A44FC750132068118083F01185EC6A63, xmp.iid:2EB6D1C6132068118083F01185EC6A63, xmp.iid:EE08C7F3132068118083F01185EC6A63, xmp.iid:4C005162142068118083F01185EC6A63, xmp.iid:DEC57A74152068118083F01185EC6A63, xmp.iid:E7C57A74152068118083F01185EC6A63, xmp.iid:41741030172068118083F01185EC6A63, xmp.iid:27E80253172068118083F01185EC6A63, xmp.iid:2FE80253172068118083F01185EC6A63, xmp.iid:F512CF5B192068118083F01185EC6A63, xmp.iid:3DECA3A01A2068118083F01185EC6A63, xmp.iid:362D43761E2068118083F01185EC6A63 History When : 2012:06:25 10:13:30-04:00, 2012:06:25 10:13:30-04:00, 2012:06:25 10:14:11-04:00, 2012:06:25 10:15:38-04:00, 2012:06:25 10:15:38-04:00, 2012:06:25 11:35:06-04:00, 2012:06:25 11:36:21-04:00, 2012:06:25 11:36:21-04:00, 2012:06:25 11:37:13-04:00, 2012:06:25 11:38:24-04:00, 2012:06:25 11:41:42-04:00, 2012:06:25 11:42:58-04:00, 2012:06:25 11:46:03-04:00, 2012:06:25 11:53:43-04:00, 2012:06:25 11:54:01-04:00, 2012:06:25 12:06:07-04:00, 2012:06:25 12:07:06-04:00, 2012:06:25 12:13:15-04:00, 2012:06:25 12:21:39-04:00, 2012:06:25 12:30:44-04:00, 2012:06:25 13:04:15-04:00 History Software Agent : Adobe InDesign 7.0, Adobe InDesign 7.0, Adobe InDesign 7.0, Adobe InDesign 7.0, Adobe InDesign 7.0, Adobe InDesign 7.0, Adobe InDesign 7.0, Adobe InDesign 7.0, Adobe InDesign 7.0, Adobe InDesign 7.0, Adobe InDesign 7.0, Adobe InDesign 7.0, Adobe InDesign 7.0, Adobe InDesign 7.0, Adobe InDesign 7.0, Adobe InDesign 7.0, Adobe InDesign 7.0, Adobe InDesign 7.0, Adobe InDesign 7.0, Adobe InDesign 7.0, Adobe InDesign 7.0 History Changed : /;/metadata, /metadata, /;/metadata, /metadata, /;/metadata, /;/metadata, /metadata, /;/metadata, /;/metadata, /;/metadata, /;/metadata, /;/metadata, /;/metadata, /;/metadata, /;/metadata, /;/metadata, /;/metadata, /;/metadata, /;/metadata, /;/metadata, /;/metadata Create Date : 2012:06:25 13:04:27-04:00 Modify Date : 2012:06:25 13:04:28-04:00 Metadata Date : 2012:06:25 13:04:28-04:00 Creator Tool : Adobe InDesign CS5 (7.0.4) Page Image Page Number : 1, 2 Page Image Format : JPEG, JPEG Page Image Width : 256, 256 Page Image Height : 256, 256 Page Image : (Binary data 10790 bytes, use -b option to extract), (Binary data 13506 bytes, use -b option to extract) Doc Change Count : 196 Format : application/pdf Producer : Adobe PDF Library 9.9 Trapped : False Page Count : 2 Creator : Adobe InDesign CS5 (7.0.4)EXIF Metadata provided by EXIF.tools