No you don't. Because any devices you have don't use apples patented secure enclave or apples patented tokenization system. Both of these are unique and protect privacy in ways existing systems cannot. I've analyzed both of these and written articles on the patents.
using chip-pin is 100% safe, and by that I mean (trying to be as short as I can)...
ALL merchants here in Sweden use online-authorization (same as ApplePay)
if you wanna steal my money... you need my numbers right... the online auth. is "impossible" to fiddle with, for a couple of reasons
the chipreader/terminal is (comparing this with your iPhone 6) a device the merchants rent (and it´s "safe") communicates to certain IP:s, changes keys etc.
it is also very difficult to copy your unique ID.. first of all the terminals are very public, even if all employees tries to copy the chip.. well they can not, second point is (as an example) VeriFone provides you with the terminals/IP´s, codes etc. <- which they change on a non-regular schedule
I have much more info here but moving on...
our debit/credit-cards here HAS the magnetic strip (which basically renders all modern safety measures "useless") because we do travel out of the country sometimes...
even though our mag-strip is the golden one (containing info telling the ATM: hey this card uses a chip, sooo use that
)
we do have skimming... if all ATM:s in Sweden would only accept chip, well you see the problem with tourists
but if you own a card from any Swedish bank, you´ll get your money back within 2-3 days... I´m not sure how the banks reason here, but a guess would be a number of people tell their bank: I withdrew money from ATM-X at so and so time.. and this happened, if 10+ people say the same, well it´s a fact
a few things to consider here are:
we already have a safe system, and all actors have their responsibility...
IF an ATM is compromised (mag-reader) and accounts are emptied - the bank will return all your money (the reason is the ATM:s are the Banks responsibility)
IF a terminal at a merchant is compromised (which has yet to happen) the bank will return your money (the responsibility here is paid by the merchant to security companies like VeriFone.. and if compromised all money is paid by named Sec Corp.)
sooo
ApplePay will have to compete with the already established "safe-terminal providing companies"
none of these companies have any interest in what you are buying, who you are, and why you´re buying...
I absolutely love ApplePay, also USA is a good country... my point is more that in this case Apple has teamed up with VeriFone:
https://twitter.com/VeriFone
I have a very criminal past life... I´m now on the good side (security) so I know way too much on howto bypass security
If this is posted in the wrong forum (too much applejuice that is) trust me in that Apple has no intention of making your payments "safer" ...
has seen an opportunity to make a shi*load of money... that is it
a major reason for this is in USA you still don´t have a law, making the merchant financially viable in case of fraud-suspicion (copying the card.. that is) and if we can provide a safe transfer (which is quite easy really) WE will pay back any money WE are responsible of...
good timing, but still f´n greedy (personal opinion)
take care MR´s
