Olympic Athletes To Sport Visa's New Payment Ring In Rio

An anonymous reader writes from a report via Engadget: Visa is introducing a new ring at the Olympic Games in Rio that will let people pay for things by waving their hand -- no phone, wallet, or battery is needed. The ring, which has yet to be named, features a secure microchip from Gemalto, and an embedded antenna. It is crafted of black or white ceramic, as metal would interfere with the antenna. There will be 20 sizes available during its trial run where it will be available exclusively for employees and partners, as well as the 45 athletes sponsored by Visa. The athletes inspired the creation of the ring, as wallets and typical wearables can be an annoyance to them when they're constantly changing uniforms. The ring is even fit for Olympic swimmers, as it is water resistant up to 50 meters. It never needs to be charged since it draws a tiny amount of power from the payment terminal and transmits far less data than Apple Pay or Android Pay. As for security, the ring can be deactivated from a smartphone, and thanks to tokenization, sensitive data is replaced by a digital identifier that can be used to process payments, so thieves won't be able to use it. There has been some controversy surrounding the Olympic Games in Rio de Janeiro. Some doctors have warned that the games could spark a "full-blow public health disaster" with the spread of the Zika virus.

Solution looking for a problem

Since when was paying for stuff hard? Having enough money for the stuff you want? Yeah, that's hard. Actually paying for it - not hard.

Re:Solution looking for a problem

[Aaden42]

Let's see you keep a wallet with cash in your Olympic sized Speedo while you're between races.

On second thought, no... Let's not see that. Helluva way to start a weekend...

Re: Solution looking for a problem

Where exactly would Olympic swimmers be going to buy things between races? Also what would they be buying?

Re:Solution looking for a problem

[fahrbot-bot]

Let's see you keep a wallet with cash in your Olympic sized Speedo while you're between races.

Depending on how large the available rings, male swimmers could carry them *in* their Speedo -- though waving it at or plunking it down on the pos-terminal may be problematic. No word yet on whether Visa will be offering a version of the ring suitable for piercings.

Re: Solution looking for a problem

If I were one, I'd be buying some asshole bleach

Re:Solution looking for a problem

[PopeRatzo]

Wait, I think you may be onto something here. How about a VisaPay cock ring? Kills two birds with one stone. Keeps you tumescent and let's you breeze through checkout! You just have to bump your junk at the kiosk. Maybe a VisaPay Prince Albert?

For women, they could make a VisaPay IUD.

Visa, you can contact me if you're interested in my concept. Actually, it's probably better than you don't contact me. Just go ahead and use them.

Re: Solution looking for a problem

[macs4all]

Where exactly would Olympic swimmers be going to buy things between races? Also what would they be buying?

Steroids, of course!

Re: Solution looking for a problem

If I were one, I'd be buying some asshole bleach

No, not *that* ring. :-O

Re:Solution looking for a problem

[yuriklastalov]

It could be a great boon for prostitutes too. They just need to get the PayPussy installed and they can charge by the stroke!

Re:Solution looking for a problem

[The+Grim+Reefer]

Depending on how large the available rings, male swimmers could carry them *in* their Speedo -- though waving it at or plunking it down on the pos-terminal may be problematic.

Yeah, no kidding. You'd be worrying about more than just the spread of the Zika virus.

Plus the SJW's would be getting all pissed off and we'd need nipple rings for the women, or strap ons, or something.

Re:Solution looking for a problem

[PopeRatzo]

It could be a great boon for prostitutes too. They just need to get the PayPussy installed and they can charge by the stroke!

Apple already holds the patents on a similar product for male prostitutes.

Re: Solution looking for a problem

Condoms. The Olympics are basically a two-week orgy which is why Zika is going to be a problem.

Re: Solution looking for a problem

[geoskd]

Also what would they be buying?

They're going to need a fair amount of antibiotics, and soap, lots of soap.

Re: Solution looking for a problem

[F.Ultra]

Why buy that when you can get it for free from your coach?

Re: Solution looking for a problem

[Ol+Olsoc]

Where exactly would Olympic swimmers be going to buy things between races? Also what would they be buying?

Antibiotics?

Re:Solution looking for a problem

[Ol+Olsoc]

For women, they could make a VisaPay IUD.

Hella fun extracting a payment there!

Re: Solution looking for a problem

"Changing your ring tone."

Re: Solution looking for a problem

"... seeing these [attractive, athletic] girls rummaging around in the condom bowl for the right colours and sizes is quite a sight."
-- Mayor of Olympic village, Sydney, Australia, October 2000.

A "record 150,000 condoms are handed out" at the Olympic village in London, Great Britain.
"Athletes will receive 15 condoms each for the 17-day festival."
-- 'Daily mail Australia', July 2012

Australia is sending "144 boxes of antiviral, Dual Protect, VivaGel® condoms" to the Olympic village in Brazil. That's 864 extra condoms.
-- Official home of the 2016 Australian Olympic team, May 2016.

Brazil is supplying "350,000 male condoms and 100,000 female condoms" to the Olympic village.
-- 'The Sydney morning herald', Sydney, Australia, May 2016.

Re:Solution looking for a problem

[A+Pressbutton]

Apple already holds the patents on a similar product for male prostitutes.

sir, I think you are referring to the famed iprod (tm)

Re:Solution looking for a problem

My wallet has 3 government issued IDs for various purposes. 3 insurance cards. 2 store membership cards. And 5 dedicated payment cards. Two bank debit cards, an emergency credit card, a debit card that gives me a discount at the retailer I shop at most, and a debit card for my health spending account. My wallet is 3 cm thick or just under 1.25 inches thick. It isn't difficult to pay, it is difficult to carry all the ways to pay. Furthermore, they all insist on using security methods that are decades old and the more secure versions are still using an outdated methodology.

Never mind new-fangled cashless payment

[ihtoit]

Have they even finished building the stadiums yet??

Re:Never mind new-fangled cashless payment

[Just+Some+Guy]

I'd be willing to bet that those are separate teams.

Re:Never mind new-fangled cashless payment

Have they even finished building the stadiums yet??

Matter of fact, yes. It's all prepared. Venues are undergoing final touches. Quite a feat for a country bravely struggling with 4 or 5 simultaneous challenges. I applaud those Brazilians. A great people deserving of a place among the civilized nations.

You prick.

Re:Never mind new-fangled cashless payment

[Ol+Olsoc]

Have they even finished building the stadiums yet??

Matter of fact, yes. It's all prepared.

Y'all clean up the open sewers that are your shores?

Re:Never mind new-fangled cashless payment

[Aighearach]

By "prepared" he meant, "this is as good as it gets, this is Olympics third-world pandemic version."

In a normal year, I might share concerns about open sewers. But with zika? That's a minor concern.

Re:Never mind new-fangled cashless payment

[Ol+Olsoc]

By "prepared" he meant, "this is as good as it gets, this is Olympics third-world pandemic version."

In a normal year, I might share concerns about open sewers. But with zika? That's a minor concern.

Why so many people put so much stock into a corrupt proceedings as the Olympics, I don't know. I'd at least suggest that they take all of the athletes to some islan to quarantine them for a few months after it is over.

http://www.sportsonearth.com/a...

http://deadspin.com/5919183/a-...

https://www.techdirt.com/artic...

A long time ago, I watched them, but darn it, it's sleaze greed and bribes from beginning to end.

I'm pretty certain that they'd hold it among the corium in the Chernobyl reactor if paid the right sum. And if I were a betting man, I'd wager Zika will be globally distributed after the games.

Re:Never mind new-fangled cashless payment

[Aighearach]

I'd at least suggest that they take all of the athletes to some islan to quarantine them for a few months after it is over.

There are only a few athletes. There will be 500,000 tourists. We might need to just leave them there, and quarantine Brazil.

Re:Never mind new-fangled cashless payment

[Ol+Olsoc]

I'd at least suggest that they take all of the athletes to some islan to quarantine them for a few months after it is over.

There are only a few athletes. There will be 500,000 tourists. We might need to just leave them there, and quarantine Brazil.

You're right - I forgot about the tourists. Garr, I don't think this is going to end well.

Give me 5

Takes on a whole new meaning once my ring sports a Gemalto reader..

Comment removed

[account_deleted]

Comment removed based on user account deletion

LOL! Thugs will absolutely LOVE this!

As for security, the ring can be deactivated from a smartphone

LOL! So now the same thug who just robbed you of your payment ring will now be sure to rob you of your smartphone, too! And now you'll have lost the ring, lost the way to deactivate it, and this thug will spend your money buying stupid shit for himself.

Or now you've got to install this app on some other phone which you have to leave somewhere else at all times. But by the time you get to it, the thug has spent your money buying stupid shit for himself.

At least with cash it's possible to keep most of it safely in your anus, where most thug robbers won't think to look. And if they do, you can always let out a big shit into their faces.

Re:LOL! Thugs will absolutely LOVE this!

If it can be deactivated from a smartphone app, it's likely also tied into an online account you could access from any browser. You're not really the first person to think of something like that, or consider the possibility that someone might not have a cellphone, or it might not be a supported OS or compatible with the app, or it might not have service, etc. A better hypothetical scenario would be to rob people of their rings, and then lock them up in a Faraday cage.

Re: LOL! Thugs will absolutely LOVE this!

Or you know, hit anyone dumb enough to use this over the head with a wrench, steal their phone, and hold them hostage while you employ the credit, with no id checks.

Omg! I lost my ring!

So now anyone can wear it and wave their hands at point-of-sale systems until it can be deactivated. Seems to me, for the general populace, losing a ring is easier than losing a wallet with a card.

Re:Omg! I lost my ring!

Just look for the Liberace's in the modern world wearing ten or more of these black and white ceramic rings across all their fingers.

For all you young people who don't know who that is, https://en.wikipedia.org/wiki/...

Only 50m

[C3lt]

Unfortunately it is only "water resistant up to 50 meters" and most Olympic swimming events involve swimming more than a single length of the pool.

Re: Only 50m

I don't think that's what it means. That refers to the static test pressure for new devices, not a swimming distance.

Re:Only 50m

[ihtoit]

WR50m is a standard mark on equipment suited to surface swimming. For snorkelling or inshore SCUBA diving, the mark to look for is WR200m.

What the claim here basically means is that aside from the corrosive effects of chlorine, which is a moot point since the ring is made from glazed ceramic (which is chemically inert), you could do lap after lap wearing this thing and it won't or shouldn't come to any harm.

Re: Only 50m

Methinks you missed the joke

Re:Only 50m

That's questionable, considering that the swimmer jump into the water (high pressure for a few moments) and dive when making turns, WR50m might not be enough for those use cases (not even starting about olympic diving).

Re: Only 50m

Yeah until you scuff it up climbing out of the pool a couple times.

Re: Only 50m

[Applehu+Akbar]

I don't think that's what it means. That refers to the static test pressure for new devices, not a swimming distance.

What's "Whoosh" in Portuguese?

Re: Only 50m

You're right, I missed the joke. At least I have the consolation of not being the only person who didn't get it.

Re:Only 50m

[Macdude]

Hey, look way over there. It's the joke you missed.

Re:Only 50m

[Ol+Olsoc]

WR50m is a standard mark on equipment suited to surface swimming. For snorkelling

You can't snorkle in Brazil. Turds get stuck in the tube.

Re: Only 50m

Bravo good sir bravo

Re:Only 50m

[Aighearach]

There is no rule that stupid jokes based on pretending to misunderstand something need to be taken as intended. It is perfectly reasonable to instead look down on the idiot who thinks it is "funny."

The funnier part is that you thought people misunderstood the joke. No, they're explaining why it is so stupid. And you missed that, and accused them of missing it. Talk about "d'oh!"

It is up to the person telling the joke to be funny, it is not up to the reader to laugh. Sneering or derping are also expected reactions to poor attempts at humor.

Re:Only 50m

[Aighearach]

I guess that means it should be "10-50m" instead of "up to 50m."

Re:Only 50m

[ihtoit]

well played.

Re:Only 50m

For snorkelling or inshore SCUBA diving, the mark to look for is WR200m.

Wait? How long are the snorkels you use?

Three rings within range of a terminal - who pays?

Hey buddy, give me a high-five! Missed! Ha ha, you paid for my groceries.

barcode

[Orgasmatron]

So, this is a fancy RFID tag then? Basically, you wave your radio-barcode through the induction field and the payment terminal then goes online using the ring's serial number instead of your credit card number?

Ooh, future.

Re:barcode

[jopsen]

So, this is a fancy RFID tag then? Basically, you wave your radio-barcode through the induction field and the payment terminal then goes online using the ring's serial number instead of your credit card number?

Ooh, future.

Don't be surprised if it turns out this thing does one-time-tokens or something like that... Meaning the thief will have to shake your hand and use the token immediately.

Re:barcode

[macs4all]

So, this is a fancy RFID tag then? Basically, you wave your radio-barcode through the induction field and the payment terminal then goes online using the ring's serial number instead of your credit card number?

Ooh, future.

Precisely. Just a (admittedly clever) repackaging of the same ol' SAW (Surface Acoustic Wave) technology that has been around since the late 1970s.

Also means that Visa gets to be in the middle of all those transactions...

Re:barcode

[silas_moeckel]

Without a battery?

Re:barcode

So what you're saying is, there's a local area token ring handshake vulnerability?

Re:barcode

[LiENUS]

Draws power from the payment terminal like existing wireless payment systems. It's existing tech Visa just put it in a ring.

Re:barcode

[hambone142]

In the future, everything is chrome.

Re:barcode

[swillden]

So, this is a fancy RFID tag then? Basically, you wave your radio-barcode through the induction field and the payment terminal then goes online using the ring's serial number instead of your credit card number?

More likely it's a contactless smart card, which means it has a microprocessor and does a cryptographic exchange with the terminal. This has been doable for many years. In fact, I did a consulting gig with a company making such a ring about 15 years ago. It was going to revolutionize payments, of course.

In all seriousness, once we get fully transitioned to contactless payment, it really opens up the options for the payment form factors. I still think NFC (in your mobile phone) will be the most convenient method for most people because the display and touchscreen enables user controls and because pretty much everyone carries a phone all the time anyway, but once you're using RF and don't need a card-sized antenna there's really no limit to what form factors you can use for payment credentials. The processor can be as small as 2mm square, and shrinking every year.

Re:barcode

[swillden]

Draws power from the payment terminal like existing wireless payment systems. It's existing tech Visa just put it in a ring.

I don't think a ring can carry a large enough antenna to draw power from the terminal, but power requirements are very low, so you could power it from a battery built into the ring for quite a long time. Months at least, if not years.

Re:barcode

[farble1670]

It's a contactless EMV card without the plastic.
http://www.smartcardalliance.o...

Basically, you wave your radio-barcode through the induction field and the payment terminal then goes online using the ring's serial number instead of your credit card number?

So yeah, more complicated than that. It's also *possible* that it's contactless MSD, which is essentially reading MSR data at a distance, but I'm guessing it's EMV since the latter is extremely insecure.

Re:barcode

[LiENUS]

I don't think a ring can carry a large enough antenna to draw power from the terminal

http://nfcring.com// Those draw power from nfc terminals.
Wireless payments are done via NFC, they just use one time tokens. Old tech been around quite some time. They inject them into animals even.

Re:barcode

[scdeimos]

As far as I can tell from the different reports it's the same paywave chip as used in credit cards, just repackaged in a ceramic ring.

Re:barcode

[swillden]

I don't think a ring can carry a large enough antenna to draw power from the terminal

http://nfcring.com// Those draw power from nfc terminals. Wireless payments are done via NFC, they just use one time tokens. Old tech been around quite some time. They inject them into animals even.

NFC (which is a mobile phone technology) is actually a combination of two protocols, contactless smart cards, which use a variant of the T=1 protocol to communicate between a smart chip and a terminal, and RFID, which in which the tags have no processing power. RFID tags have very low power requirements and can operate with a tiny antenna.

Those NFC rings you linked are just passive RFID tags that transmit a fixed code when powered by a field. They don't contain a microprocessor, and couldn't get enough power passively to run one because they can't contain a sufficiently-large antenna. Actually, though, you're probably right that that's what they're using in Rio. Such "dumb" technology would not work for a general-purpose payment scheme, but it works fine for small, closed systems. If that's what they're using, they don't have any sort of single-use tokens; it's the same value on every usage (much like a magstripe, though not the same content).

More general solutions (including NFC and smart card payment solutions) use smart card protocols to communicate, and require a microprocessor in the payment token. Those can be powered passively by the reader field, but doing so requires a larger antenna (roughly the size of a credit card, conveniently enough). In phones they're generally powered by the device battery, though. NFC payments are *not* just one-time tokens. They may use limited-use tokens (sometimes single-use, sometimes more) but those tokens aren't simply transmitted, they're actually cryptographic keys (usually triple DES, though some systems have moved to AES) which are used to create a cryptographic message authentication code.

Re:barcode

[LiENUS]

but doing so requires a larger antenna (roughly the size of a credit card, conveniently enough).

You should look into the yubikey neo. They're significantly smaller than a credit card and include nfc as well as usb connectivity for u2f. Powered passively by the reader.

Re:barcode

[LiENUS]

Ah here we are

For many consumers, part of the hesitation to embrace new technologies surrounds security, or their perception anyway that these solutions are somehow less safe. For its part, the Visa payment ring prototype takes advantage of “tokenization” technology similar to what is used in the Apple Watch. A unique digital identifier is used to process payments without exposing actual account details on the ring itself.

Source: http://www.usatoday.com/story/tech/columnist/baig/2016/06/02/visa-shows-ring-olympians-can-use-pay-rio/85308242//

So according to visa they do in fact contain a microprocessor and according to the videos they work with standard terminals using the standard contactless payment methods.

Re:barcode

[swillden]

but doing so requires a larger antenna (roughly the size of a credit card, conveniently enough).

You should look into the yubikey neo. They're significantly smaller than a credit card and include nfc as well as usb connectivity for u2f. Powered passively by the reader.

Duh. I have some of them. Somehow I never bothered to think about how they could work with such small antennas. I'll have to ask the Yubikey engineers next time I talk to them.

Re:barcode

[LiENUS]

It's a moo point, according to visa this is doing full tokenization and not just a dumb serial number. The trick is antenna orientation not size You kind of do an awkward fist bump ensuring the ring makes an O facing the terminal otherwise its unreliable at best.

Yeah, the least of their problems

I think "onde é o banheiro" is a better response considering what anyone visiting this area will face. Good luck, you poor dumbass son's of bitches. The 1st world thinks nothing can happen to them... :( Please don't bring your children. :( :( :(

And now for something completely different

Seriously, what's the deal with BeauHD and his penchant for adding a completely non-sequitur comment to submitted topics?

Re: And now for something completely different

This is why Slashdot sucks. The editors are probably trying to increase traffic and encourage comments by mixing in something totally unrelated. I feel like many of the stories now are supposed to provoke outrage, even when it comes to new technologies or devices. The story is full of critical posts instead of discussing the technology and how it might be used. It's like there's a knee-jerk criticism of any new technology as useless or a bad idea. It's like all the real nerds have left Slashdot. There was a time when people would have discussed how this worked and how it might be used in other settings. It's actually a cool idea that could be used for access control.

Re:And now for something completely different

[richy+freeway]

I came here specifically to say this. It's cluttering bullshit that doesn't belong there. Might as well have linked to a story about the bus service in Brazil.

For a brief moment when Slashdot changed hands, I thought we might be on to a winner. But no, here we are suffering a fate worse than Dice. Just pure unadulterated shite on the back of promises to sort stuff out. We don't REALLY care about UTF8 that much, what we DO care about is the integrity (hah) of the news and information provided. It's what we comment on, it's what we come here for.

Unfortunately we always have to pick holes in something about every story.

I turned off Adblocking for /. in the hope I was seeing a change. Now i don't like that change I'll vote with my blocker.

Re: And now for something completely different

[richy+freeway]

I've almost 100% moved to Ars for tech news now. At least there's an article to read. I still come here to follow the comments, but it's less and less all the time.

Any other suggestions for decent nerd news?

Re: And now for something completely different

Did you miss the change that Ars made last week, and the reverted?

It wasn't very pleasant, and came down from above (probably because their whole range of sites is down to a single development team, and that team isn't very good,) was botched, and after a very high number of complaints, they rolled the changes back. Its not often you see that.

Re: And now for something completely different

I've almost 100% moved to Ars for tech news now. At least there's an article to read. I still come here to follow the comments, but it's less and less all the time.

Any other suggestions for decent nerd news?

This is about the best you can get. The Internet is dying, dude.

"Secure"

"so thieves won't be able to use it."

Buwahahahahhahahaaahahahaaaahaha, yeah good luck with that. If history is of any indication thieves will crack it almost as soon as it comes out, but the credit companies will claim that it is foolproof for years in spite of droves of proven cases of theft. I do like the idea of a wearable for payments, but it can't transmit all of the time. The user MUST provide some input (pressing a button, hand gesture, etc) that enables the device to transmit if there is ANY chance of it being secure.

Very cool idea, hope it becomes more common

I'm assuming that a unique identifier and transaction ID are generated each time so there's no way to snoop on the transaction and then commit fraud. Assuming that's true, this is a very cool idea. In addition to payments, this could be used to replace keys and could be used to start vehicles or unlock doors. I like the idea that it can be instantly deactivated, and it should be easy to allow for more fine grained access control. I live in an apartment and certain people have master keys. That includes maintenance, the exterminator, and some outside contractors. That means there are keys out there that, if missing or stolen, could allow unauthorized access. Furthermore, it's not that hard to create a master key based on other locks in the building. It's also possible to duplicate the keys without much difficulty. I'd greatly prefer something that has much better access control in that it's hard to duplicate, not possible to generate a master key because access can be granted individually, and a particular key ring can be deactivated if it's stolen or missing. It makes a ton of sense and I'd love to see insurance companies provide a discount for installing such devices because it should reduce theft.

Re:Very cool idea, hope it becomes more common

[macs4all]

I like the idea that it can be instantly deactivated, and it should be easy to allow for more fine grained access control. I

So, you REALLY want your car to have to do a wireless (cellular) internet transaction before it will let you in, while the three thugs walking up the street get closer, ever closer?

No thanks. I'll continue to stick my physical key into the physical door lock, thank you. MUCH quicker, and nothing to sniff out of the air (considering the (laughable) "security" of the common Microchip KEELOQ protocol used in about ALL of the wireless key-fobs for cars, I NEVER use my keyfob to UNlock my car door. EVER).

Re: Very cool idea, hope it becomes more common

Obviously the owner has a backup physical key. That's true even for a home, in case you need to get in when there's a power outage or some other failure of the system. However, if I have to leave the car with a mechanic, it's probably better to have a non-physical key that expires. If I have to drop the car off after the mechanic closes for the day, I probably have to leave a key in a dropbox. After the car is repaired, if I have to pick the car up after the mechanic closes, they would have to leave the car on the street with the key inside. There's also nothing to stop the mechanic from duplicating the key while in possession of it. I very much prefer an electronic key that expires once the mechanic no longer needs it. The same is true if I have someone coming into clean my house during the day. They can get in on certain days also certain times, but not at any hour of the day or night. That such systems are not properly secured at present does not mean that it's impossible to do so. In fact, it's very possible to provide adequate security that is protected against snooping. Public key encryption is a great tool for exactly this type of application.

Re: Very cool idea, hope it becomes more common

[macs4all]

t's very possible to provide adequate security that is protected against snooping.

Oh, I know.

The reason I know that KEELOQ is such a joke is that I developed a keyless entry system for delivery trucks (think "UPS"). After researching KEELOQ, which was the easiest path to victory (the place I was doing this for was a BIG Microchip house), I decided to use AES-128 instead (there are actually some PICs that have hardware AES-128 encryption engines, saving me the trouble of getting that working (and hoping I didn't introduce any vulnerabilities)).

Worked great, and was MUCH more secure than the typical KEELOQ trash that almost ALL vehicle Keyfobs use (even now, with TONS of articles on KEELOQ's vulnerabilites available on interwebs).

I DO like your idea of a "temporary key", though.

Sponsored by Visa

[turkeydance]

in a partnership with Zika

You had me at Gemalto

[The-Ixian]

The company who supplies SIM cards for all the carriers and is rumored to be compromised by the NSA and GCHQ... sign me up...

Re: You had me at Gemalto

[Damarkus13]

You're worried about securing credit card activity from government agencies? Really? Why bother compromising the NFC transaction when they can just go to Visa and get all the data?

Re: You had me at Gemalto

If they go to VISA, they go with a warrant issued by a court. If they use an exploit in a piece of hardware, it's done without court supervision 'cause some tosser decided to press on his keyboard. Not at all the same thing.

Re: You had me at Gemalto

I meant "decided to press enter". Missed a word.

I foresee

that hackers will make a device and pull an antenna up their sleeves, and withdraw someone's money by shaking their hand.

Re:I foresee

[laurencetux]

Hot presentation at DefCon 25: hacking those rings

"can be deactivated using a smartphone"

[SuperKendall]

Unless they took your smartphone also when they robbed you...

Which is why ApplePay still is far more secure, if the Apple watch leaves your wrist no-one is using ApplePay from it, or if you lose your phone they cannot use ApplePay without being able to use the fingerprint reader.

Re:"can be deactivated using a smartphone"

[spire3661]

Banking is based on TRUST, not massive security (at the consumer level). Apple Pay is just a fancy credit card, its not 'secure' in any way that really matters. Dont put too much stock in any one implementation, its mostly a dog and pony show. Back end detection is so sensitive now that i sometimes get locked out of my account if i buy things out of my normal pattern.

Re:"can be deactivated using a smartphone"

[jopsen]

if you lose your phone they cannot use ApplePay without being able to use the fingerprint reader

Fingerprints are good for keeping you kids from buying stuff, but won't stop a motivated attacker any more than a pin code...
But right now, anything other than stupid credit cards with numbers you can read and use online, is super safer because attackers always target the weakest sheep.

Re:"can be deactivated using a smartphone"

[farble1670]

or if you lose your phone they cannot use ApplePay without being able to use the fingerprint reader.

All the more reason to saw off your hand. That's not a good thing.

Re:"can be deactivated using a smartphone"

[mark-t]

The only way even a very motivated hacker can get your pin code is if he can convince you or otherwise trick you into giving it to him. There is no foolproof way to convince people or trick people into doing what you want, however.

Pin is ultimately the most secure identification because it cannot be stolen, unlike any kind of physical object, and in the unfortunate event of a security breach, can be easily changed to mitigate future damages, unlike biometrics.

Re:"can be deactivated using a smartphone"

[SuperKendall]

The ring is much worse than a credit card. They would have to get your wallet to get to a credit card, getting a ring off someone is much easier, and you can do so without them noticing easily. Then it's off to a few vendors until the ring stops working.

Re:"can be deactivated using a smartphone"

[Aighearach]

Make sure to get both, just in case.

Re:"can be deactivated using a smartphone"

[mark-t]

Getting a ring off of a person also requires taking it past the first knuckle, which on many people will cause some level of discomfort as a ring is removed, although it can still definitely be done. However, there is no possible way to remove it without them noticing unless the subject's fingers are numb.

Re:"can be deactivated using a smartphone"

Maybe you could add a camera to the ring which did thumbprint verification on every use.

useless if stolen (unless the thief had someway of stealing your biometrics as well), if suitably hardened.

Re:"can be deactivated using a smartphone"

Though now they'll cut off your thumb as well, I guess?...

Re:"can be deactivated using a smartphone"

As far as I can tell, you can't actually deactivate the __ring__ using a smartphone, but you can deregister it from the system using a smartphone.

Am I off base here?

Movie plot: hackers reactivate the ring, delete the audit trail of it being deactivated and use it to process money transfers, unlock vaults, and stuff like that.

my babbys head shrunkk

they will also be sporting lots of new cases of Zika, created for you by the Rockerfeller created CDC's extremely covert bio warefare black agency. This is the same agency that spreads and improves Bird Flu, Sars, Ebola, Nile River Virus, and a host of others they wish to infect humanity with that do not have the proper genetic signatures. Unfortunately their science is too shoddy to work they way they want, so they've been only getting limited results in terms of death.

UN asking whether to cancel Olympics

[BarbaraHudson]

Not so fast, buddy

Jun 3, 1:31 PM EDT

UN ASKING EXPERT PANEL TO ASSESS ZIKA RISK AT RIO OLYMPICS
BY MARIA CHENG
AP MEDICAL WRITER

OLYMPICS NEWS

LONDON (AP) -- The World Health Organization's chief says she will convene an expert committee to consider whether the Rio de Janeiro Summer Olympics should proceed as planned, following concerns raised about the threat of the Zika virus.

In a request last month, U.S. Senator Jeanne Shaheen asked WHO Director-General Dr. Margaret Chan to evaluate whether the Rio games this year should be delayed or postponed. Chan said in a letter released by Shaheen on Friday that WHO has sent senior scientists to Brazil four times to assess the risk of Zika to the approximately 500,000 athletes and visitors expected to attend the Aug. 5-21 games in Brazil.

Follow the linky for the rest of the story.

No such thing as foolproof

[kheldan]

A talented pickpocket can get your wallet, phone, wristwatch, and the rings off your fingers, and you'll never even know it.

Is there a PIN that you need to use with this ring? Or is it literally single-factor authentication, and as soon as someone divests you of it, they can go nuts with it until it gets deactivated?

On a less serious note, are sex workers in Rio going to have payment terminals compatible with this by the time the athletes arrive? That'll be the most common use for athlete's dollars, I'd think. XD

On a tin-foil-hat conspiratorial note, anyone else wonder if someone has weaponized Zika and seeded the world with carrier mosquitos, to create an extinction-level event for the human race? Thought's occurred to me..

Re:No such thing as foolproof

[macs4all]

On a tin-foil-hat conspiratorial note, anyone else wonder if someone has weaponized Zika and seeded the world with carrier mosquitos, to create an extinction-level event for the human race? Thought's occurred to me..

That would be more "fun" with Ebola than Zika. AFAIK, Zika isn't immediately deadly like Ebola.

I think you have to wait a generation to see the REAL deleterious effects of Zika.

Re:No such thing as foolproof

[sconeu]

On a tin-foil-hat conspiratorial note, anyone else wonder if someone has weaponized Zika and seeded the world with carrier mosquitos, to create an extinction-level event for the human race? Thought's occurred to me.

That would be more "fun" with Ebola than Zika. AFAIK, Zika isn't immediately deadly like Ebola.

Tom Clancy already did it.

Re:No such thing as foolproof

[kheldan]

I think you have to wait a generation to see the REAL deleterious effects of Zika.

Sure, that would be the selling point of weaponizing something like Zika: the damage isn't immediate, it takes a while for it to start being noticed. By then it's too late to really stop it. If Zika was in fact weaponized then that's the point we're at now: it probably can't be stopped, and the damage will be widespread.

Re:No such thing as foolproof

[tlhIngan]

Is there a PIN that you need to use with this ring? Or is it literally single-factor authentication, and as soon as someone divests you of it, they can go nuts with it until it gets deactivated?

On a less serious note, are sex workers in Rio going to have payment terminals compatible with this by the time the athletes arrive? That'll be the most common use for athlete's dollars, I'd think. XD

On a tin-foil-hat conspiratorial note, anyone else wonder if someone has weaponized Zika and seeded the world with carrier mosquitos, to create an extinction-level event for the human race? Thought's occurred to me..

The ring's just a fancy version of your credit card's tap system. Instead of tapping your card, you tap your ring. Presumably everything that you can tap you can use the ring with, and with similar protections.

If you can do tap payment terminals, you can accept the ring. Given you can get terminals that work over 3G, any enterprising sex worker will get one.

Zika carrier mosquitoes can't stand cooler climates - which is why they're not a concern in countries like Canada because the mosquitos won't breed here. We have mosquitos, but Zika can't be carried by them.

Anyhow, it's not mosquitos that's the real way of spreading Zika. It's sex. Zika's a unique disease in that it can be carried by mosquitos AND as a sexually transmitted disease, and so far that's the biggest transmission vector that would happen - a few people get bitten, they then go on little flings and infect other people, who go on their own flings and pretty soon most of the crowd gets it.

Transmission by sex is considered to be a far bigger reason why people are infected than mosquitos.

Re:No such thing as foolproof

A generation of pinhead children for the welfare state to support forever.

Or... The democrats new voters.

They want to blame the Zika virus

[fustakrakich]

The real problem is the air and water contamination. Zika will be the convenient diversion to cover it up

Re:They want to blame the Zika virus

[mrchaotica]

No, the real problem is the widespread corruption and embezzling of funds. That's why the stadiums are behind schedule, why the air and water hasn't been cleaned up like it was supposed to be, and why they can't seem to afford a comprehensive mosquito-control program.

Secure microchip

[t4eXanadu]

"features a secure microchip from Gemalto,"

Yeah, okay. Who wants to bet one of these rings is hacked within 24 hours of the opening ceremony? I'll give it 72 hours, at most.

what the hell...

does the zika thing have to do with the visa ring? absolutely nothing. a blatant attempt at trying to get more clicks by stuffing a hot keyword into an otherwise ho-hum masses wont care article.

editors should be (captcha:) expelled

Unless you've been smoking something

[edittard]

Perhaps you mean full-blown?

Re:Unless you've been smoking something

Wait, so you're smoking cock?

rogue scan points

What is to stop rogue scan points from taking the ring's credentials when it is in range and charging whatever they want?

...3 ...2 ...1. Copy paste!

I don't give it much of a life span. Perhaps as one-off method for payments and then to be entirely discarded, including cryptors...

Re:Three rings within range of a terminal - who pa

Three rings within range of a terminal - who pays?

The elven kings under the sky, obviously.

$50 max liability still in place?

[Joe_Dragon]

$50 max liability still in place?

Why?

[argStyopa]

...because taking your credit card out just takes TOO DAMNED LONG! What if there's something else you need to buy in another place and you're WASTING 3.5 seconds fiddling with your credit card here?

It is more secure, by far, in two ways

[SuperKendall]

Apple Pay is way more secure than a credit card in two ways:

1) The merchant is only getting a one time token to record, so if their payment databases are hacked you have not had your CC info leaked. This reason alone is why I use ApplePay whenever possible, including for large purchases like AirBnB rentals.

2) As mentioned there's the whole "secure element" aspect of the hardware to deal with. Someone stealing your device CANNOT use it without you unlocking it for them. If someone steals a CC they can use it as much as they wish without issue.

Ash nazg durbatuluk

[RDW]

There will be 20 sizes available during its trial run where it will be available exclusively for employees and partners

Let me guess:

Three Rings for the Elven-kings under the sky,
Seven for the Dwarf-lords in their halls of stone,
Nine for Mortal Men doomed to die,
One for the Dark Lord on his dark throne
In the Land of Mordor where the Shadows lie.

Re:Ash nazg durbatuluk

Legend has it that the dwarf-lords in their halls of stone were originally supposed to get five rings, but the Olympic committee sued so they had to change it.

Easy to steal?

[seven+of+five]

Sounds incredibly easy to steal, so not for use by general public...

Let's just eliminate money

Instead of inventing new ways to authenticate money, just show up. If you want to eat something, you're given food, if you need new clothes, you get new clothes.

It's pretty much going to have to be this way when the buy robots is cheaper than paying minimum wage + benefits and we're at 50% (or more) unemployment.

Visa put an RFID in a ring

[houghi]

This is about it. All the rest is marketing bullshit. I have something like that in my MasterCard. Most insecure thing you can imagine.

It is for smaller payments, Wave the card and you paid. All you need now is a portable reader and get all the monies.

Reminds me that I need to figure out how to disable it, because it is sooo insecure.

Re:Visa put an RFID in a ring

[farble1670]

This is about it. All the rest is marketing bullshit. I have something like that in my MasterCard. Most insecure thing you can imagine.

Contactless MSD is insecure. Contactless EMV is more secure. Like all smart cards you can't just read the card data and clone it to another card. A payment requires a secure handshake between the card and terminal.

dont let ORACLE see this

sun microsystems had this tech out years and years ago and since ORACLE bought them up I would guess ORACLE will be beginning the lawsuit here shortly.
java ring

Visa: buy shit easier.

[farble1670]

Visa: buy shit easier.

Just one question...

[erp_consultant]

How much of a kickback is the IOC chairman getting? Because everything about the Olympics involves money and scandals and payoffs of some sort. I can't believe that VISA would stupid enough to introduce something like a new payment system at the Olympics of all places - the absolute epitome of dirty money, scandal ridden events.

I mean seriously, is this some sort of joke? So future Olympic bribes can now be conducted using the VISA payment ring...untraceable, discreet, no more bulky envelopes in a dark alley. No...graft can now be done from the comfort of your own living room. What could possibly go wrong?

Great Idea

[hyades1]

This should help the athletes pay for the drugs they'll need to deal with all the loathsome diseases they'll get from swimming in sewage, drinking sewage, and being feedbags for mosquitoes infected with everything from malaria to zika virus to some freakin' disease we've never heard of that makes your eyeballs melt and your bowels erupt through your mouth.

"features a secure microchip from Gemalto"

How is it secure? Is it locked in a safe?