Cards on smartphones are more secure than the real cards. You need a pin on your phone to pay, with a card you can pay up to 50€ without any approval.
Also, should a transaction be intercepted, the pirate would only acquire a Digital Account Number (DAN), which can be invalidated to disable the virtual card on the phone. You can still use the physical card and you can add another virtual card on the same, or on a different device.
If a payment made with your physical card is intercepted, the pirate gets the Primary Account Number (PAN) instead. It means that you must disable the real card as well as any virtual card relying on it, and requires you to await a replacement from your bank, and switch all your payments to this new card.
Just because a higher level of security exists doesn’t completely invalidate the lower levels.
That, and the physical card your phone uses for funding tap-to-pay is still vulnerable to that same attack, and not everywhere supports tap, and tap only works if you have a functioning device. Not carrying a backup form of payment is asinine.
“trading convenience for security” was what my comment responded to. Using your phone to pay is not compromising security in any way, quite the contrary actually, and I explained why.
In France, everybody (barring most gas stations, even if I have seen some with tap-to-pay nowadays) can take tap-to-pay, even the remote mountain refuges I have been hiking to. You can even pay tolls and parking with it now.
And somebody even more old-school than you would think you’re a fool not taking cash or checks with you as a backup for your card. I’ve been paying with my phone for years without any problem, I just take my card when I need to refuel my car or traveling, and most of the time I have to check my card pin code anyway on my phone because I never use it.
And if my phone is off for some reason, well I have my watch.
Just use the card your bank gives you?
For real. Trading convenience for security is how we got here though so I really shouldn’t be surprised.
Cards on smartphones are more secure than the real cards. You need a pin on your phone to pay, with a card you can pay up to 50€ without any approval.
Also, should a transaction be intercepted, the pirate would only acquire a Digital Account Number (DAN), which can be invalidated to disable the virtual card on the phone. You can still use the physical card and you can add another virtual card on the same, or on a different device.
If a payment made with your physical card is intercepted, the pirate gets the Primary Account Number (PAN) instead. It means that you must disable the real card as well as any virtual card relying on it, and requires you to await a replacement from your bank, and switch all your payments to this new card.
Just because a higher level of security exists doesn’t completely invalidate the lower levels.
That, and the physical card your phone uses for funding tap-to-pay is still vulnerable to that same attack, and not everywhere supports tap, and tap only works if you have a functioning device. Not carrying a backup form of payment is asinine.
“trading convenience for security” was what my comment responded to. Using your phone to pay is not compromising security in any way, quite the contrary actually, and I explained why.
In France, everybody (barring most gas stations, even if I have seen some with tap-to-pay nowadays) can take tap-to-pay, even the remote mountain refuges I have been hiking to. You can even pay tolls and parking with it now.
And somebody even more old-school than you would think you’re a fool not taking cash or checks with you as a backup for your card. I’ve been paying with my phone for years without any problem, I just take my card when I need to refuel my car or traveling, and most of the time I have to check my card pin code anyway on my phone because I never use it.
And if my phone is off for some reason, well I have my watch.