CA Technologies eComMinder with CA RiskMinder
September 03, 2013
Starts at about $1 per card and decreases with volume.
Here's another situation where a customer is at risk - not only from fraudsters, but from the convenience of online buying. For decades we have preached that security should not get in the way of usability. Died-in-the-wool security pros took the position that one could have security or convenience, but both was out of the question. Of course that's not how it is today, for the most part, but in the world of online business transactions it is a tough tightrope to walk.
CA has this one nailed with its latest eComMinder with RiskMinder. This cloud-based service does nothing but protect the user against the risk of fraud when purchasing with a credit card online. eComMinder with RiskMinder starts out when the user logs into a participating online merchant site with a credit card. The merchant site sends a request for authentication to the card issuer and the card issuer responds to the user. It also responds to the merchant and, for that session, the user no longer needs to worry about fraud. There is a bit of backend communications between the merchant, the card issuer and the directory server, but these things go on in the background.
The RiskMinder piece adds the dimension of real-time risk analysis and scoring based on a number of factors. Should the user want to perform high-risk transactions, the CA system can require strong authentication dynamically depending on how the administrator writes the policy. Overall, at a buck per card - substantially less when one starts looking at millions of cards - this is inexpensive fraud insurance.
At a glance
Product: eComMinder with CA RiskMinder
Company: CA Technologies
Price: Starts at about $1 per card and decreases with volume.
What it does: Manages card-not-present (CNP) transactions.
What we liked: From the end-user perspective, it doesn't get much simpler than this. Supports the 3D security protocol.
Sign up to our newsletters
SC Magazine Articles
- Study: Open Source Software use increasing in enterprises but without vulnerability monitoring
- RSA Conference 2015: Prepare for the IoT before it's too late, Sorebo warns
- 'Aaron's Law' returns to Congress
- RSA 2015: Tension continues to grow between govt, cryptographers
- Data at risk for 9,000 individuals following unauthorized access to SRI Inc. website
- Study: Conficker declared top threat of 2014, but N. America targeted mainly by AnglerEK
- RSA 2015: Straight talk about encryption, bulk surveillance and IoT
- RSA 2015: In the healthcare industry, security must innovate with business
- RSA 2015: Unintended use of aircraft systems next challenge for counterterrorism community
- RSA 2015: Bug hunting and responsible vulnerability disclosure