ok.. so instead of discussion, you just want to be vulgar. Another for my ignore list.
Got a tip for us?
Let us know
Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.
Why no news of Google Wallet tokenization upgrade?
- Thread starter Menel
- Start date
- Sort by reaction score
ok.. so instead of discussion, you just want to be vulgar. Another for my ignore list.
Thats still not, and irrelevant to the new secure March 2014 EMVco Tokenization Standard...
To continue the quote you conveniently snipped.
Last edited:
I didn't snip it to be malicious, I figured we all knew that Google was storing tokens in the cloud. And storing it in the cloud does introduce security risks. I wasn't refuting that. I was finding a link that stated that Google uses tokenization. Link (with my google search I used) found...
Does the EMVco standard exclude cloud storage of tokens?
Last edited:
Yes if google gets hacked we are screwed, and due to the nature of the android oem situation, google seems to have given up on the apple pay style of payments. I believe the 'old google wallet' had the implementation you are looking for.
Honestly I trust googles web services security more than apple's as far as hacks from exterior sources are concerned, but surely that is biased.
I doubt the situation will change and apple pay is better from a security standpoint. Inferring that wallet is insecure is ridiculous though.
Honestly I trust googles web services security more than apple's as far as hacks from exterior sources are concerned, but surely that is biased.
I doubt the situation will change and apple pay is better from a security standpoint. Inferring that wallet is insecure is ridiculous though.
Yes it does, because it doesnt involve a Token Service Provider, see post 24 https://forums.macrumors.com/posts/20256209/
FAAAALLLLSEEE, it is a Token Service Provider, stop spreading FUD, read what what is about and learn.
You even don't know what a TSP, you're here just to bash what you hate.
----------
Don't waste your time with him
After thinking about it, what EVMCo uses is also better described as a "virtual card".
That's because an account token isn't just any old number. It has to follow regular bank card number rules to be accepted and routed correctly. Thus an account token has to look like a real card number, even if it's actually only a virtual one.
The token-to-account info is of course stored somewhere in both cases.
In the case of MC/Visa, it's stored in their token vault servers.
In the case of Google Wallet, well, we don't know. It could be stored at Google in their own token vault, at Bancorp in their vault, or even with a respected third party like First Data, which multiple banks (and Google) have used as a Token Service Provider.
As for being "more secure"... to whom? We're not responsible for fraudulent purchases in either case.
Yep. For example, many of us use Chase Presidential Plus Mastercards, which Apple Pay doesn't support yet. That makes it a non-starter for us.