Financial Technology

Tightening security on federal payment cards

Shutterstock image: credit cards.

Federal credit cards are going to get a harder to crack.

As part of wide-ranging set of policy initiatives about financial information security, President Barack Obama announced the federal government will be switching to payment cards that are protected by two new layers of security – a microchip that is harder to clone than a magnetic strip and a personal identification number that users key in during transactions, like a bank card.

Beginning next year, new payment processing terminals at federal agencies must have the necessary software to support these new security features, under an executive order signed Oct. 17. This effort will be overseen by the Treasury Department. The General Services Administration is responsible for making sure that debit and credit cards issued on government accounts possess the enhanced security measures, beginning next year.

Direct Express cards, which give recipients of Social Security and Supplemental Security Income electronic access to benefits, will also be equipped with chips and PINs.

The executive order also sets a deadline on a plan for establishing multiple-factor authentication for public-facing federal systems that store personally identifiable information.

Agency plans are due in 90 days, and by 18 months more secure identity verification measures must be in place. The National Institute for Standards and Technology has been operating a series of pilots under the National Strategy for Trusted Identities in Cyberspace program designed to test novel authentication systems that don't rely on user names and passwords.

In remarks at the Consumer Finance Protection Bureau announcing the initiative, Obama called on Congress to pass legislation to create nationwide rules on consumer data breaches, rather than relying on a patchwork of state rules. "Today, data breaches are handled by dozens of separate state laws, and it’s time to have one clear national standard that brings certainty to businesses and keeps consumers safe," Obama said.

Members of both parties in the House and Senate have proposed various financial data breach bills to standardize consumer notification of compromised accounts. The issue caught fire in early 2014 after a spate of highly publicized data breaches at large retailers, including Target. But thus far, members have yet to coalesce around a single bill.

About the Author

Adam Mazmanian is executive editor of FCW.

Before joining the editing team, Mazmanian was an FCW staff writer covering Congress, government-wide technology policy and the Department of Veterans Affairs. Prior to joining FCW, Mazmanian was technology correspondent for National Journal and served in a variety of editorial roles at B2B news service SmartBrief. Mazmanian has contributed reviews and articles to the Washington Post, the Washington City Paper, Newsday, New York Press, Architect Magazine and other publications.

Click here for previous articles by Mazmanian. Connect with him on Twitter at @thisismaz.


Featured

  • FCW PERSPECTIVES
    sensor network (agsandrew/Shutterstock.com)

    Are agencies really ready for EIS?

    The telecom contract has the potential to reinvent IT infrastructure, but finding the bandwidth to take full advantage could prove difficult.

  • People
    Dave Powner, GAO

    Dave Powner audits the state of federal IT

    The GAO director of information technology issues is leaving government after 16 years. On his way out the door, Dave Powner details how far govtech has come in the past two decades and flags the most critical issues he sees facing federal IT leaders.

  • FCW Illustration.  Original Images: Shutterstock, Airbnb

    Should federal contracting be more like Airbnb?

    Steve Kelman believes a lighter touch and a bit more trust could transform today's compliance culture.

Stay Connected

FCW Update

Sign up for our newsletter.

I agree to this site's Privacy Policy.