ENISA : Good practices and recommendations for payment providers

22 December 2016

ENISA publishes good practices and recommendations for payment providers and financial institutions following an analysis of the security of mobile payments and digital wallets.

ENISA assessed the most widely used payment applications and their security models to identify good practices. The identified results, validated in a workshop in November 2016, provide some key recommendations included in this report.

A key challenge identified is maintaining the security of mobile operating systems at a sufficient level. Mobile OS provide good security when applied, but many customers are not aware of these, and therefore do not use them. Another challenge is the security of the mobile payment chain, the assurance of which is paramount for the successful adoption of mobile payments.