"EMV in the US" still seems to be a debate point. However, the potential far-reaching problem with EMV ("chip" cards) is deeper than its US
Big Fish, no chips
Few people noticed that Barclays quietly dispensed with the use of "chip" for mobile banking: instead of a PINsentry dongle that worked
in conjunction with a Barclays chip card, they now allow for authentication that involves just a mobile phone (confusingly called Mobile
PINSentry), without using any "chip". Surely, Barclays does rely on "mobile fingerprinting" and other clever security techniques, but authentication nevertheless is still "chipless".
Apple is going to introduce biometrics as part of authentication solution, creating the next-gen equivalent of "chip & PIN".
Online payments have been "cardless" for quite some time. In fact, tokenization is
the preferred payment method when it comes to e-commerce giants (Amazon, Apple Store, PayPal etc.) Starbucks and top US retailers are now bringing tokenization - via QR codes - into the physical world too.
Payments - online or offline - are about authentication, the rest is accounting. Money is no longer "in the bank": making a payment is now simply the matter of changing
records in databases...
Let's put all those elements together:
1. You can do (adequately secure) authentication using just a mobile phone. Or biometrics. Or both.
2. You don't need ANY card at all to make a payment. Online or offline.
What was that EMV thing again...