22 April 2018
Milos Dunjic


Milos Dunjic - TD Bank Group

15Posts 93,560Views 15Comments

Tokenization Service Provider as Natural Plug-In Point for Value Added Services?

13 May 2016  |  2866 views  |  0

The EMVCo Tokenization specification captures the basic services, in support of the payment authorization processing during the card not present (CNP) e-commerce and card present (CP) mobile payment use cases. In addition, the ProxyEMVPay Card concept elaborated on how the basic Tokenization Service Provider (TSP) functionality can be extended cheaply and elegantly, to enable usage of tokenization with plastic EMV chip-cards and NFC wearables as well – for card present and for card not present payments.

Tokenization is indeed a very potent and powerful, yet relatively straightforward concept. It can certainly be used irrespective of the channel or use case. Its main purpose is to protect the sensitive card data (Primary Account Number or PAN) by replacing it with the irreversible equivalent (token), which if stolen can’t be misused. But should we stop at that and be satisfied only with cost effectively achieving the standardized sensitive card data protection?

The tokenization service providers could and should play a much bigger role. Since they already play the friendly ‘man in the middle’ role, by intercepting all tokenized payment authorization requests and responses, they can also serve as perfect ‘API plug-in’ points for all kinds of 3rd party Value Added Services, such as: loyalty, stored value, authentication, social networking, etc. The payment industry (i.e. mainly EMVCo) should therefore consider moving beyond pure tokenization and toward standardized APIs for these value added services, in order to make them easily pluggable into the compliant TSPs — all in a standard and controlled way.

With such a extensible and flexible architecture, the payment processing can be extended for the use cases, which aren’t a natural fit for the traditional payment rails, still under full control by the established industry players.

For example, the loyalty collection could potentially be achieved transparently to the user (as part of the payment processing), by using the same card / device, and regardless of the payment channel — once the payment authorization response is intercepted by the TSP, the appropriate loyalty collection standard API plug-in can be invoked, just before the final response is sent to POS or the online merchant server.

This architectural transformation and extension is not going to happen overnight though, but the tokenization service providers certainly have the opportunity to make it possible. In other words – those who can legitimately intercept the payment authorization requests and responses, can add value. The payment industry has a big and obvious opportunity to move beyond pure tokenization toward an even brighter future. Let’s hope it happens! 



Comments: (0)

Comment on this story (membership required)

Latest posts from Milos

WANTED: Unified Contactless Kernel at POS

05 August 2017  |  11765 views  |  0 comments | recomends Recommends 0 TagsCardsInnovationGroupInnovation in Financial Services

Chequing Bank Account In The Age Of Digital Banking?

01 July 2017  |  7554 views  |  0 comments | recomends Recommends 0 TagsRetail bankingInnovationGroupInnovation in Financial Services

Payments Innovation - A Quantum World Of Payments

29 June 2017  |  8362 views  |  0 comments | recomends Recommends 0 TagsPaymentsInnovation

The Persistent Payment Fraud Challenge and What Can Be Done About It

06 May 2017  |  14749 views  |  0 comments | recomends Recommends 0 TagsCardsSecurity

Milos's profile

job title AVP, Payments Innovation Technology Solutions
location Toronto
member since 2016
Summary profile See full profile »
Technology executive fascinated with and focused on payments innovation. All opinions are my own and not of my current nor prior employers

Milos's expertise

Member since 2016
15 posts15 comments
What Milos reads
Milos's blog archive
2017 (7)2016 (8)

Who's commenting on Milos's posts

David Abbott
Nick Collin
Sadra Boutorabi
Paul Love