Payment Systems Regulator 15July 2018
Contactless mobile payments: A PSR report
3.25 There are several technologies currently available that may be used to effect CMPs.
They include NFC, Magnetic Secure Transmission (MST) and Bluetooth Low Energy
(BLE). While contactless communication technologies are necessary for CMPs, they
are not exclusive to contactless-enabled mobile devices and may also be used for other
payment methods such as contactless payment cards.
Near-field communication
3.26 NFC is an agreed messaging standard for communication using radio-frequency
electromagnetic waves to exchange information (without contact). Apart from mobile
devices, NFC technology is also used for contactless plastic cards, wearable fobs
and stickers.
19
Some of these external devices (e.g. Barclays’ bPay products) have an
embedded passive NFC chip, enabling the device to provide the same functionality as
a contactless prepaid card.
20
Alternatively, external devices may be fully functioning
extensions of an on-device CMP app, with real-time information and tokenised
payments (such as Apple Watch or Samsung Gear).
3.27 Devices using NFC may be active or passive. A passive device, such as the NFC chip in
a contactless card, contains information that other devices can read but it does not read
any information itself. Active devices can both read and send information. An active NFC
device, such as a smartphone, can not only collect information from NFC chips but can
also exchange information with other compatible phones or devices. Most importantly
from a mobile payments viewpoint, a mobile device with active NFC capability can
send and receive different information for different transactions – for example, different
information per transaction through the process called tokenisation (see paragraphs
3.56 to 3.61), which allows these devices to offer higher levels of security.
3.28 Almost all CMP apps in the UK use NFC technology to transmit payment information
between a mobile device and the POS terminal.
21
The network of NFC infrastructure is
already widely rolled out in the UK (and retailer acceptance therefore well established)
22
– mainly as a result of the growth of contactless card payments. Any CMP service with
NFC technology can use a retailer’s existing contactless terminals. This means that
there is no need to provide any new equipment for either the consumer or the retailer,
or for CMP app developers to invest in promoting the adoption of NFC technology to
make CMPs.
3.29 From a retailer’s perspective, NFC CMP transactions are treated by the card schemes
in the same way as physical card transactions, with the same liability rules applying
to retailers. Furthermore, to be able to accept CMPs, retailers only need to have POS
terminals capable of effecting contactless payments (e.g. contactless plastic cards) and
to receive a software update from their POS terminal provider – there is no need for
further hardware changes.
19 NFC has wider applications and can be used for purposes other than payments, such as phone-to-phone
connections, local information caching and transmission (e.g. in museums) or tagging areas visited (such as
by security guards or cleaners).
20 A bPay device does not interact with the user’s device, but is standalone and works as a prepaid card. The
device is only used to top up the card.
21 The major non-store-specific CMP apps (such as Apple Pay, Google Pay, Samsung Pay and Amex Pay) all use
NFC technology. Some store-specific apps (such as the Starbucks and Tesco apps) use barcode technology.
22 For example, according to the UK Cards Association, around 60% of all acquirer-owned POS terminals in
the UK were contactless at the end of 2016. www.theukcardsassociation.org.uk/wm_documents/UK Card
Payments 2017 - Summary FINAL.pdf