NFC technology is a standards-based wireless communication technology that allows data to be exchanged between devices that are a few centimeters apart. NFC operates at 13.56 MHz and transfers data at up to 424 Kbits/second. NFC is distinguished by its intuitive interface and its ability to enable largely proprietary wireless networking platforms to interoperate in a seamless manner.
The primary uses of NFC are to:
- Connect electronic devices, such as wireless components in a home office system or a headset with a mobile phone
- Access digital content, using a wireless device such as a mobile phone to read a “smart” poster embedded with an RF tag
- Make contactless transactions, including those for payment, access and ticketing
NFC can be used for a wide variety of mobile applications, including:
- Making payments with a wave or a touch anywhere contactless card point-of-sale (POS) readers have been deployed
- Reading information and “picking up” special offers, coupons and discounts from smart posters or smart billboards
- Storing tickets for transportation, parking access or events
- Storing personal information that will allow secure building access
The NFC Forum provides the following comprehensive list of benefits of NFC on its website:
- Intuitive: NFC interactions require no more than a simple touch.
- Versatile: NFC is ideally suited to the broadest range of industries, environments, and uses.
- Open and standards-based: The underlying layers of NFC technology follow universally implemented ISO, ECMA, and ETSI standards.
- Technology-enabling: NFC facilitates fast and simple setup of wireless technologies, such as Bluetooth, Wi-Fi.
- Inherently secure: NFC transmissions are short range (from a touch to a few centimeters).
- Interoperable: NFC works with existing contactless card technologies.
- Security-ready: NFC has built-in capabilities to support secure applications.
An NFC-enabled phone is provisioned with a payment application and payment account information (i.e., credit or debit card) issued by the consumer’s financial institution. The application and payment account information are encrypted and stored in a secure area in the phone. The phone uses NFC technology to communicate with the merchant’s contactless payment-capable POS system, similar to the contactless payment cards and devices in use today. The payment and settlement processes are the same processes used when the consumer pays with a traditional contactless or magnetic stripe credit or debit payment card.
NFC mobile contactless payments can be made at both attended POS locations (such as stores) and unattended locations (such as vending machines) that use the existing merchant payments infrastructure. To pay, the consumer simply brings the phone to within a few inches of a contactless payment-capable POS system and the transaction occurs. The process is the same as that used by the contactless credit and debit cards currently being deployed globally.
Each NFC-enabled application has its own requirements for security. For example, payment account information and payment transactions must be highly secure, while retail offers may require little to no security.
NFC-enabled credit and debit payment applications are secure. Personal information, including financial information such as an account number and expiration date, is stored in a secured area in the NFC phone, commonly called the “secure element.”
While not all NFC applications require security, those that involve financial transactions or certain mobile marketing applications (e.g., coupons and loyalty) require a “secure element” within the phone to securely store applications and/or credentials (e.g., financial account numbers) and provide for secure execution of applications.
The secure element (secure memory and execution environment) is a dynamic environment in which application code and application data can be securely stored and administered and in which secure execution of applications occur. The element resides in highly secure crypto chips (usually a smart card chip). The element provides delimited memory for each application and other functions that can encrypt, decrypt, and sign the data packet.
The secure element could be implemented either by a separate secure smart card chip (currently implemented in most of the NFC-enabled mobile phone pilots), in the SIM/UICC (which is used by GSM mobile phone operators to authenticate subscribers on their networks and maintain personalized subscriber information and applications), or in an SD card that can be inserted in the mobile phone. The secure element implementation approach will be selected by the mobile operator implementing the service and/or by the payment service provider (for SD card implementations).
NFC and RFID are both wireless technologies, but NFC is used at a shorter range and is used for secure applications, including payment. RFID, on the other hand, has a longer range, supports minimal security, and is used for very simple applications, such as tracking pallets or animals.
NFC mobile contactless payment transactions between a mobile phone and a POS terminal use the standard ISO/IEC 14443 communication protocol currently used by EMV and U.S. contactless credit and debit cards. This means that consumers can use their NFC-enabled mobile phones for payment at the existing installed base of contactless credit and debit terminals that are based on this standard.
Near Field Communications World maintains a list of mobile phones with NFC, as well as what is expected to come soon. It can be found at: http://www.nearfieldcommunicationsworld.com/nfc-phones-list/
NFC has been implemented in numerous projects globally, with new NFC-enabled services being announced regularly.
NFC Times and Near Field Communications World maintain databases of NFC projects worldwide. They can be found here: http://www.nfctimes.com/nfc-projects andhttp://www.nearfieldcommunicationsworld.com/list-of-nfc-trials-pilots-tests-and-commercial-services-around-the-world/