Secure Payments Task Force

From 2015 through 2018, the Federal Reserve System’s Secure Payments Task Force engaged a diverse array of more than 200 stakeholders in advancing the work outlined in the January 2015 Strategies for Improving the U.S. Payment System (PDF). The mission of the Secure Payments Task Force was to provide a forum for stakeholders to advise the Federal Reserve in its leader/catalyst and operator roles on payment security matters, and identify and promote actions that can be taken by payment system participants collectively or by the Federal Reserve System. The task force anchored their work around three objectives and made significant progress in meeting them during its operation from June 2015 through March 2018.

Objectives

  • Provide advice on payment security matters.
  • Coordinate with the Faster Payments Task Force to identify solutions for any new or modified payments infrastructure so that it is both fast and secure.
  • Determine areas of focus and priorities for future action to advance payment system safety, security and resiliency.

The Progress to Secure Payments

With facilitation support from the Fed, the task force took an active role in building consensus and developing work products through face-to-face meetings, teleconferences, segment calls, webinars, surveys and other tools designed to solicit and calibrate participant viewpoints.

In November 2017, the task force developed and published a list of currently available fraud and risk Information Sharing Data Sources (Off-site) that may be used to mitigate fraud and cyber threats, in an effort to broaden the use of actionable information across payment system participants. Then in March 2018, the task force concluded its efforts and published the Payment Lifecycles and Security Profiles (Off-site), which serve as an educational reference guide for payment and security practitioners on the lifecycles of the most common payment types.

Work Groups

The task force created targeted work groups that discussed industry challenges and proposed solutions for effecting lasting payments security improvements. The focus of each work group and contributions to the aforementioned security resources are noted below.

Data Protection

  • The Data Protection Work Group and Payment Identity Management Work Group began focusing on their respective disciplines separately – but quickly realized that to advance security in these areas, they must work together to understand the landscape and talk about the payment lifecycle holistically. The groups collaborated to create an educational resource that describes the lifecycle for the most common payment types. This resource highlights not only how a given payment type works, but also security methods, sensitive data and associated risks throughout three key phases of the lifecycle: enrollment, transaction and reconciliation. This resource, the Payment Lifecycles and Security Profiles (Off-site), is available on SecurePaymentsTaskForce.org (Off-site).
  • The Law and Regulation Coordination Work Group and the Standards Assessment Team also provided significant input on the Payment Lifecycles and Security Profiles (Off-site), including subject matter expertise on applicable laws, regulations, standards and other references.
  • The Information Sharing Work Group focused on improving awareness of inclusive cybersecurity and fraud information sharing among and across U.S. payment industry participants. To advance this goal, this work group created Information Sharing Data Sources (Off-site) that can help organizations address payments fraud risk. The work group also highlighted the need for a recommended fraud classification model to use in discussing and reporting fraud, now being developed by the Fed’s Fraud Definitions Work Group.

View the work product voting reports and records below:

Secure Payments Task Force Participants

Secure Payments Task ForceThe progress made in payments security could not have been possible without more than 200 task force participants who dedicated their expertise, diverse perspectives, time and energy to the Secure Payments Task Force. Thank you to all who served on the task force and helped identify actions that can be taken by industry stakeholders to ensure that U.S. payment system security remains strong – and that protections and incident responses keep pace with rapidly evolving and expanding security threats.

Check out the task force participant roster (Off-site) for a comprehensive list of all participants at the conclusion of the task force. Eight unique stakeholder segments were represented. Each segment elected representatives to serve on the Secure Payments Task Force Steering Committee (identified by an * and bold text).

First NameLast NameOrganization
* Christopher* Danvers* American Airlines Federal Credit Union
* Chris* Gilbert* Bankers' Bank of Kansas
* Steve* Mott* BetterBuyDesign
* Frank* Perrelli* BNY Mellon
* Suzanne* Martindale * Consumers Union
* Brian* Peretti* Department of the Treasury - OCIP
* Peter* Tapling* Early Warning
* Troy* Alvarez* Intel Corp
* Cedric* Menchion* Killeen Independent School District
* Terry* Dooley* SHAZAM Network
* Brad* Mares* Target Corporation
* Victoria* Strayer* TSYS
* Glen* Ulrich* U.S. Bank
* Stephen* Ranzini* University Bank
* Dave* Faoro* Verifone, Inc.
* Reed* Luhtanen* Wal-Mart Stores, Inc.
SethRudenACI Worldwide
Mary AnnMillerActimize Inc
CaryTonneAffinity Plus Federal Credit Union
WillMontisAgriBank, FCB
GeneFradellaAllegiance Retail Services
TracyLaffertyAlloya Corporate FCU
PaulAhlstromAlta Group Americas
HeatherWyson-ConstantineAmerican Bankers Association
MichelleBeckmanAmerican Express
EdwardScheidtANSI x9 Accredited Standards Committee
JuriParkAon Corporation
LeizlMendiolaAutomatic Data Processing
MariaArminioAvenue B Consulting
JamesGradyBAI
SteveCurtisBank of America
AdamAndersonBank of Commerce
RobertZietlowBankers' Bank
ChristopherHillBankers' Bank of the West
ShuyingFengBarclays
JustinParksBB&T
DanielHoltBillHero, Inc.
NishanthReddyBlue Pebble Solutions, Inc.
StewartWeinerBMO Harris Bank
WilliamBozeman IIIBozeman Financial LLC
RandiPotterBusey Bank
JoelWilliquetteCapital Credit Union
RakeshMirajkarCapital One
SuchitraPudmanabhanCBW Bank
CedricLeightonCedric Leighton & Associates
ManfredNeustifterCFPS Technology Group
JonathanLevinChainalysis Inc.
DonaldSeeterlinChesapeake Bank
ArvindKapoorChubb Insurance
PaulReimerClearkey Inc.
JillBrungardtCommerce Bank
DerrickBretzComputer Services, Inc.
GaryTaylorConexxus
WillWade-GeryConsumer Financial Protection Bureau
PaulLoveCO-OP Financial Services
StephenLindgrenCornhusker Bank
RueJenkinsCostco Wholesale Corporation
RochelleStoltzCoulee Bank
LanceNoggleCredit Union National Association
CurtisHallowellCummins Allison Corp.
RobertCoakleyD+H Global Transaction Banking Solutions
TerryForsDeluxe Corporation
DaveTatgeDISC (Digital Identity Security Company)
GinaGobeynDiscover Financial Services
DonaldChapmanDNC Consulting Inc.
BenSchmittDwolla Inc.
MichaelMcCulloughEastern Bank
MarkCarlEchosat Inc.
DavidWeneCurrency Mint
KurtHelwigElectronic Funds Transfer Association
AmyZirkleElectronic Transactions Association
WendyWishonEPCOR
ChristopherWilliamsExponent Inc.
MichelleWeaverExtraco Banks
MichaelBenardoFDIC
ChristinaHulkaFIDO Alliance
BrianPetersFinancial Innovation Now
JasonKratovilFinancial Services Roundtable
CaseyMerollaFirst Annapolis Consulting
RickVan LuvenderFirst Data
JoyceFlinnFirst United Bank & Trust
KannanSrinivasanFiserv
DannaBurchessFive Points Bank
HannahWalkerFood Marketing Institution
Emma ColemanJordanGeorgetown University
BrianRussellGiesecke & Devrient
BruceWelchGilbarco Inc.
GaroDoudianGreen Dot Bank
Andrew R.Bland IIIHarland Clarke Holdings Corp
KevinThomsenIBM
CaryWhaleyICBA
JayFitzgeraldIndependence Title
TheodoreKozlowski IIIIndividual Participant
FrazierEvansIndividual Participant
InaGoldbergIndividual Participant
ChristineKoncalIndividual Participant
ArvindDeogirikarIndividual Participant
JeremySwensonIndividual Participant
OliverManahanInfineon Technologies
MarkKrantzInformation Control Company (ICC)
VijayAnandInfosys Limited
SherryAvenaInteractive Financial Services Group, Inc.
ScottVolmarInterComputer Corporation
KirstenTruskoIRC Advisory
RichardLeirerJaguar Software
RichardBradfuteJames Polk Stone Community Bank
AlphonsePascualJavelin Strategy and Research
AndrewSloperJP Morgan Chase
AlexChewJumio
JoyceLucasKacil Business & Technology Consulting Firm
BradleyWiskirchenKount Inc.
AaronPressLexis Nexis Risk Solutions
JosephMasonLouisana State Univeristy
SalvatoreScanioLudwig & Robinson PLLC
AndrewHartridgeM&T Bank
SharonLeesMacon-Atlanta State Bank
AnnmarieHartMagTek, Inc
DavidJacksonMarketcy
JanetSmithMasterCard
MarkHorwedelMerchant Advisory Group
AndrewChurchillMidas Alliance
TimRunnallsMidwest Independent Bank
JaneLarimerNACHA - The Electronic Payments Association
CarrieHuntNational Association of Federal Credit Unions
LauraChadwickNational Restaurant Association
LindaJewellNavy Federal Credit Union
JanetMerletNEACH
BryanPennyNordstroms
RyanMcNaughtonNorth American Banking Company
PhilipAndreaeOberthur Technologies
RichardParryParry Advisory
Mary AnnCallahanPaxos Trust Company, LLC
SarahGimelloPaychex Inc.
RichardO'BrienPayment Pathways
Lewis M.HowardPayments & Card Network USA, LLC
ThomasKracherPayments Strategy Professionals
LaurenHollowayPCI Security Standards Council
SimaGandhiPlaid Technologies
DaveOndoPNC Bank
MichaelLandauPricewaterhouseCoopers LLP (PwC)
DeborahBartooPSCU
TravisDulaneyPush Payments
DebbieSmartQ2
ShoaibShafquatQcheque
CatherineWilliamsRBC
RodmanReefReef Karson Consulting, LLC
MatthewSpeareRegions Financial
AustenJensenRetail Industry Leaders Association (RILA)
NiklasSandquistRetail Payments AS
JoseCortedanoRosetta Technologies
AngelGrantRSA Security LLC
WenlockFreeSecurityMetrics
RaymondSeefeldtSG Consulting Group
KellyDickersonShore United Bank
StephenTrusheimSignalFire, LLC
RandyVanderhoofSmart Card Alliance/EMV Migration Forum
CharlesWallenSpectrum
ShaneHamiltonSquare, Inc.
CatherineEnnisStanley Black & Decker, Inc.
CarlaCaninoSunlight Commerce Consulting
ClintHardisonSunTrust
ArnaudBoulnoisSWIFT Inc
LarryAubolTASCET
JeffreyTasseyTassey & Associates
AnthonyMeholicThe Bancorp
JeffStoryThe Bankers Bank
JarrettHelmsThe Clearing House (TCH)
JohnCarlsonThe Financial Services Information Sharing and Analysis Center
WilliamBarouskiThe Northern Trust Company
ThaddeusKingThe Pew Charitable Trusts
JasonDrohmanThe Western State Bank
EricSchurrTMG Financial Services
StevenKirschToken
SherryNewtonTranswestern Commercial Services
CathrynGreggTreasury Strategies, Inc.
JamesDeanTrueCourse Advisory Services, LLC
JesusRamosTSA Inc.
BeckyBarrowsTTCU The Credit Union
MaartenBronUL
AngiFarrenUMACHA
AngelaCampbellUMB Bank, NA
PaulRogersUnited Bankers' Bank
GlenWileyVerisign
AndrewMcGloinVisa
GilbertVerdianVocaLink
GaneshSrinivasanVolante Technologies Inc
PhilipPicilloWebster Bank
YuemeiZhangWells Fargo
VictorVinogradovWestern Alliance Bank
KimBodenWestern Union
BradleyWilkesWingCash, LLC
AndrewBarlowWisconsin ACH Association (WACHA)
JimDukeWood Forest Bank
AmmaGuerrierXenith Bank