The credit card information entered on you phone for Apple Pay never leaves your phone, so any hack would have to be done one phone at a time, and would require getting past the built in hardware security. That would probably involve sawing off the top of the A8 chip and performing "brain surgery" to get encryption keys out of the secure enclave without destroying the data first.
I'm very surprised by this also. I thought for sure they'd include the NFC chip in the iPads, so that both new iPads and new iPhones would have the hardware needed on the merchant side, for small businesses. This has to be a very deliberate omission. I'm actually waiting for an iPad Air 2 teardown to confirm that the NFC chip isn't actually hiding inside, unheralded, waiting for some new Apple API's to be released.
I don't think the chip would be what's needed to turn an iPad into a Apple Pay terminal. The chip is the buyer/payer side of the communications process.
The credit card information entered on you phone for Apple Pay never leaves your phone, so any hack would have to be done one phone at a time, and would require getting past the built in hardware security. That would probably involve sawing off the top of the A8 chip and performing "brain surgery" to get encryption keys out of the secure enclave without destroying the data first.
People said the same thing about ATM cards 20 years ago.
Tip for anyone visiting the USA who has got themselves a debit card from a participating USA bank: Passbook won't let you add cards until you go to Settings > General > Language & Region > Region and set it to United States.
This may seem obvious but since those who are from the USA don't have to change this setting it's not noted in any of the instruction guides. Took me 2hrs to work it out.
The credit card information entered on you phone for Apple Pay never leaves your phone, so any hack would have to be done one phone at a time, and would require getting past the built in hardware security. That would probably involve sawing off the top of the A8 chip and performing "brain surgery" to get encryption keys out of the secure enclave without destroying the data first.
From an article in today's news.
"Nearly 439 million records were stolen in the past six months, said Supervisory Special Agent Jason Truppi of the FBI. Nearly 519 million records were stolen in the past 12 months, he said.
About 35% of the thefts were from website breaches, 22% were from cyberespionage, 14% occurred at the point of sale when someone bought something at a retail store, and 9% came when someone swiped a credit or debit card, the FBI said.
About 110 million Americans — equivalent to about 50% of U.S. adults — have had their personal data exposed in some form in the past year"
Comments
Good luck in that nobody gets hacked.
The credit card information entered on you phone for Apple Pay never leaves your phone, so any hack would have to be done one phone at a time, and would require getting past the built in hardware security. That would probably involve sawing off the top of the A8 chip and performing "brain surgery" to get encryption keys out of the secure enclave without destroying the data first.
People said the same thing about ATM cards 20 years ago.
Passbook won't let you add cards until you go to Settings > General > Language & Region > Region and set it to United States.
This may seem obvious but since those who are from the USA don't have to change this setting it's not noted in any of the instruction guides. Took me 2hrs to work it out.
Swiping a credit card is one of the least likely ways to have your CC info stolen. If the banks, the issuers of your CC, weren't themselves being hacked . . .
http://www.wired.com/2011/06/citibank-hacked/
http://www.pcworld.com/article/2691912/jpmorgan-chase-attackers-hacked-other-banks-report-says.html
https://www.yahoo.com/tech/4-things-chase-customers-should-do-in-wake-of-recent-99078736464.html
From an article in today's news.
"Nearly 439 million records were stolen in the past six months, said Supervisory Special Agent Jason Truppi of the FBI. Nearly 519 million records were stolen in the past 12 months, he said.
About 35% of the thefts were from website breaches, 22% were from cyberespionage, 14% occurred at the point of sale when someone bought something at a retail store, and 9% came when someone swiped a credit or debit card, the FBI said.
About 110 million Americans — equivalent to about 50% of U.S. adults — have had their personal data exposed in some form in the past year"
What? Really amazon?