Slashdot Mirror

← Back to Stories (view on slashdot.org)

The Long, Slow Demise of Credit Card Signatures Starts Today (cnet.com)

Posted by BeauHD on from the antiquated-practices dept.

Last year, all four major U.S. payment providers -- Mastercard, Visa, American Express and Discover -- announced plans to remove the requirement that merchants collect signatures for card transactions. Those plans officially go into effect today, or Saturday in the case of Visa. CNET reports: [D]on't despair if you actually like writing your signature at retail stores, because their ultimate demise will likely take a while. The change is only optional, with merchants, not customers, given the new power to decide whether to get rid of signatures. So, if asked to sign, please don't insist to your next cashier that you no longer need to -- it won't work. Also, plenty of retailers will likely want to keep signatures, particularly if their workers are paid based on a lot of tips, or they sell pricey items. Still, the change marks a clear awareness from payment providers that the signature doesn't really work as a strong protector against fraud.

The change is being handled a little differently by each payment provider. For instance, Mastercard, Discover and American Express said they'll let retailers make every kind of card payment optional for a signature, regardless of whether you've got a new chip card or you still swipe. Visa, meanwhile, isn't changing its requirements for payments using a swipe card, but it did relax its policy for chip card and contactless payments like Apple Pay. Visa noted that over 75 percent of face-to-face transactions using its cards in North America already don't require a signature, thanks to lower-value transactions.

13 of 114 comments (clear)

  1. Hey USians! by JoeDuncan · · Score: 3, Informative

    ... welcome to the year 2000!

    By the time the rest of us are authorizing credit purchases with telepathy, you'll probably *JUST* be introducing the "tap & go" LOL what a fucking backwater...

    1. Re:Hey USians! by AlanBDee · · Score: 2

      You're just wrong. We have the best internet, highest quality healthcare (and cheapest), and the best educational system ever.

      Some people are so stupid they just don't know it.

    2. Re:Hey USians! by ShanghaiBill · · Score: 2

      Yes, but we effectively have zero consumer liability for fraud.

      That means little in reality. Plenty of fraud is for small amounts that slip by without the consumer bothering to inquiry about an $8 charge on their card. For big charges involving identity theft, the burden is on YOU to prove the transactions were fraudulent, and even if you are successful, you may spend hundreds of hours, and have your credit ruined for years.

      Pick your poison; not sure I want EU-styled consumer liability based on a PIN code alone.

      So here are the choices:
      1. Security based on a PIN that is under my full control, and can be changed if compromised.
      2. The American way: Security based on my SSN and DOB, which are unchangeable, and have already been compromised a dozen times.

      Golly, that is a tough decision.

    3. Re:Hey USians! by Computershack · · Score: 2

      ; not sure I want EU-styled consumer liability based on a PIN code alone.

      It would have been easier to say "I get my information about the EU from Fox News."

      --
      I only please one person per day. Today is not your day. Tomorrow isn't looking good either. - Scott Adams
    4. Re:Hey USians! by torkus · · Score: 2

      My bad, i thought this was /. where people knew at least a tiny bit about the tech...

      It's harder, but by no means impossible, to read and duplicate a chip card. You do also need the PIN but there are plenty of examples of that being compromised with cameras primarily but also with hacked keypads and other means.

      It's significantly harder to skim a chip-and-pin vs mag stripe(mag stripes were never secure, only slightly obscure ... for a while) but it can, has, and will still be done fairly regularly.

      --
      You can get rich if you own a politician, but you have to be rich to buy one in the first place.
  2. Who signs their real name? by Snotnose · · Score: 3, Interesting

    These signing terminals have been a thing for a good 15-20 years now, yet I've never signed one. I sign either Foo Bar or Mickey Mouse, depending on my mood. All have gone through with 0 hassle.

    In fact, I bought groceries from Von's today, signed Foo Bar with no issues

    Then again, their Just 4 U program ties my phone # to my credit card so there's that.

  3. partial security / insecurity -- what's the point by supernova87a · · Score: 5, Interesting

    It was silly for the card networks and banks to chicken out on implementing Chip + PIN. People will have to face the (relatively small) pain of learning how to use it at some time, and better to just rip the bandaid off all at once.

    All of Europe, rest of world can deal with using a PIN. What's so special about the US? Just do it, save us all from having to subsidize fraud.

  4. Why not chip-and-pin? by jonwil · · Score: 3, Interesting

    Australia has been using chip-and-pin credit cards for years now, as has Europe and many other places. What is it about the US that makes card companies (Visa, MasterCard etc), banks and merchants so reluctant to introduce chip-and-pin in the US?

  5. Re:partial security / insecurity -- what's the poi by SvnLyrBrto · · Score: 4, Insightful

    The truly obnoxious thing is that without the PIN, the chip itself is worthless, but was forced on us anyway. So we got the slowdown at the registers for no reason. With a PIN, at least if I lose my card or my wallet is stolen, the card would be useless to the thief barring unbelievable luck in guessing. But with only the chip in play, the only place a thief couldn't use my card is the gas station, which was already the case with the stripe.

    Pointless. Security. Theater.

    --
    Imagine all the people...
  6. signatures served no purpose by iggymanz · · Score: 2

    I can't write anything that looks like my signature on those silly tablets anyway, and a lot of people just make a wavy line..... how about some actual security instead? a pin? connect the dots on a grid in a pattern?

    signatures always were silly, a thief can practice the one they make you put the the back of your card

  7. Re:India has moved ahead..mobile payment by PPH · · Score: 2

    just a phone QR code paper printout stuck at counter

    I don't understand how this works. The shop has the QR code. The customer scans it with his phone. 'Beep', the payment has been made. What stops someone from writing a 'Beep' app?

    --
    Have gnu, will travel.
  8. Re:partial security / insecurity -- what's the poi by squiggleslash · · Score: 3, Informative

    Most credit card fraud is based upon writing bogus data (data for the victim's card) to the magnetic strip, so the chip does at least provide security against someone getting hold of your number and creating a fake credit card using it.

    But yes, it does nothing for you without a PIN if the card leaves your possession.

    --
    You are not alone. This is not normal. None of this is normal.
  9. Re:partial security / insecurity -- what's the poi by Jarik+C-Bol · · Score: 2

    Was it not just last week we had reports of new chip cards being intercepted in the mail, having their chip pulled off and replaced with the chip from a dummy card, the real chip put onto the dummy card, and then the modified card placed back in the mail, so that the customer receives their card and activates it, thus enabling the thieves to use their dummy card with the real chip on it, leaving the customer up a creek with their useless card, and charges they did not make?

    --
    I've decided to Diversify my Holdings. I've divided my cash between my left and right pockets, instead of all in one.