I can't see the security risk of opening NFC hardward access to third-parties.
This is how Apple Pay works:
It provides a secure platform for card issuers (banks) to store and utilize tokenized card information on a phone. Sensitive information is stored on the so called Secure Element, which is seperated from iOS. When a transaction is about to be made, the token is then transmitted through NFC to the merchant for further processing.
Unless Apple can explain how allowing the use of NFC antenna may lead to unauthurized access to the Secure Element, the Australian banks have a point here. NFC technology is only a means to wirelessly transmit data. Without it, third-parties cannot develope their own payment apps, resulting in the monopoly of Apple Pay on iOS.
I would like to quote some sentenses from https://arstechnica.com/gadgets/2014/10/how-mobile-payments-really-work/
In short, Apple charges banks to make their issued cards compatible with Apple Pay method, while being "not in the middle of the payment flow at all". Since the major Australian banks already developed their own wireless payment methods, why would they pay Apple for a similar thing? If only Apple opened the NFC hardware, the major banks might provide similar user experience without Apple Pay. From their perspective, Apple is trying to block competition by making NFC exclusive to Apple Pay only.
- So using this method, Apple not only uses a token as a proxy for a real credit card number that is device-specific and ideally should not be able to be replicated across another device, but it also offloads responsibility for the security of the token and the cryptogram to the card issuer.
- All in all, it seems like a good deal for Apple. The company is not carrying a lot of sensitive information on its servers, and, at the same time, it reportedly receives a cut of the Interchange Fees that banks make on each purchase.
- As MasterCard's Sherri Haymond described, "What Apple's role is here is they're the technology platform provider, they're interacting with the consumer, but they're not in the middle of the payment flow at all. All they're doing is facilitating their assets to be transferred."
I use "Paywave" payments, it is no more difficult to get my wallet out than it is to get my phone out.
Apples method how ever also reduces fraud, anyone can use a pay wave card, there is no security, transactions under $50 happen without a PIN.
The banks are also saying they want access to Apple technology that Apple developed for free that will give the banks increased security and as a plus will give them greater access to data for data mining, all for free.
Australian banks are making record profits.