ID WORLD International Congress: Bart Renard

This site will work and look better in a browser that supports web standards.

middleHome
middleID WORLD TV
middle
middleAbout ID WORLD 2011
middleID People Awards 2011
middle
middle
middleSponsors
middleMedia Partners
middlePress Area
middle
middle
middleOther Events:
middleID WORLD Abu Dhabi
middleID WORLD Rio de Janeiro
middleVertical Forums
middleID WORLD 2010
middleID WORLD 2009
middleID WORLD 2008
middleID WORLD 2007
middleID WORLD 2006
middlePast Events

Bart Renard

Director of Services & BD Manager – Vasco Data Security

Speaks at ID WORLD on Transactions @ ID WORLD

Bart Renard has been working for Vasco since 1998 and has served in different roles within the company. He started by building the Customer Services department after which he switched to a sales position heading Vasco’s Enterprise Security Channel Sales in EMEA. Currently Bart is responsible for global business development activities for VASCO. These activities include Solution and Integration partner activities in the different Vasco markets being Banking- , Online Application and Enterprise security markets. Besides strong activities with these types of partners Bart is constantly looking for new partners and opportunities within the market that can expand the business.

Prior to VASCO Bart has been active in different roles within AES Prodata (ERG Transport Systems) regarding automated fare collection systems for public transport for 5 years as well as 3 years in GTECH Corporation active in the (online) automated gaming industry for official state lotteries and gaming companies.

After getting his degree in Computer Science (Hasselt, 1990), Bart Renard started his career as a software programmer for different companies in the computer and network industry.

In 1998 he started working for VASCO Data Security as Director Customer Services. In this position he was responsible for all pre- and post-sales activities at Vasco.

In 2005 Bart switched positions to lead Vasco’s Enterprise Security Sales division for the next 2 years after which he swapped into his current role.

In 2009, Bart Renard completed the International Management Programme of Vlerick Business School.

“Pro’s and the con’s of using eID cards for e-banking”

The presentation will address the pro’s and the con’s of using eID cards for e-banking applications through field experience feed-backs in Europe (primarily Belgium and Portugal ). The presentation will explain why the use of eID cards in e-banking applications relies on its ability to generate OTPS and e-signature codes when the card can then be used in unconnected mode (E.g such as in Portugal). This authentication system is also less subject to potential frauds as eID crypto processor is not shared by two environments (as opposed to EMV cards being used both for payment and e-banking security). One of the main issues addressed in the presentation relates to the support of eID cards. In case e-banking customers forgot their eID PIN number, they will naturally contact the bank help desk which will have no other option than to re-direct to the authorities who delivered the card (like the local municipalities in Belgium and their not very “user friendly” opening hours). Banks are reluctant to provide the additional support that would require these PIN/ unlock codes. It might prove expensive to run and the solution would be out of their control.

eID card use presents several security challenges. eID cards are not targeted by hackers primarily because of the lack of reward. In most existing eID applications, there is no money directly at stake. When eID cards are going to be used for banking applications, the attractiveness to defraud eID cards will increase dramatically. The use of transparent readers (No Pinpad, no display) like it is used today would be totally unacceptable by most banks. In most deployed readers, there is no support for features like “What you see is what you sign” or/and PINpad. Bankers would have to take the action of deploying more secure readers that can fit banking requirements. Most eID cards must be used in connected mode and require the installation of an eID middleware. Such scenario is only acceptable when a limited service level applies (no risky on-line transaction). Most banks require their online services to be accessed anywhere, anytime. Granting Access to e-banking services with an eID cards cannot be guaranteed if user’s USB ports have been blocked (like in a corporate environment as a security measure) or when the end-user does not have administrator rights to install the required software. In addition, eID cards as such (like any PKI smart card based scheme by the way) is not a bullet proof solution against MITMA or Man-in- the-browser attacks. Fake data can potentially be sent to the card in order to get a valid signature without the end-user knowledge. All these limitations can be overcome…as long as eID card is correctly implemented with the right applications and user environment as per the recommendations detailed in the presentation.

Speaking on November 16


Access to the Conference requires the payment of the delegate fee: click here

Platinum Sponsor

Gold Sponsors

Silver Sponsor

Standard Sponsor

Morpho Hirsch SCM Jarltech Datalogic