50p 2017

50p 2017

A conference about India's digital payments ecosystem.

Abhay Rana (Nemo)


Security Horror Stories in Payments

Submitted Nov 27, 2016

I’ve been working in the Payments Industry for more than a year now, handling security along with many other things at Razorpay. This talk is about the learnings and the fails I’ve seen across many players in the current payment industry.


Things this talk will cover:

  • Broken crypto code in many payment gateways
  • Horror stories we’ve seen from various banks
  • How convoluted security is at various banks and organizations

This is a small talk, and is slightly more focused towards people working with banks/payments/developers. I’ll be showing example code that should point out both the obvious and not-so-obvious mistakes that organizations make when it comes to security. The primary takeaways from the talk are fairly simple: Don’t roll your own crypto.

Unfortunately, this golden rule is broken on a daily basis by almost everyone in the industry.

Speaker bio

Nemo is a developer at Razorpay, where he gets to interact with various organizations in the FinTech industry on a daily basis. He’s the resident security geek, which is how he managed to collect the material for this talk.




{{ gettext('Login to leave a comment') }}

{{ gettext('Post a comment…') }}
{{ gettext('New comment') }}
{{ formTitle }}

{{ errorMsg }}

{{ gettext('No comments posted yet') }}

Hosted by

50p, formerly an annual conference held in 2017 and 2018 on digital payments - is turning into round-the-year forum for conversations and collaborations on the #payments ecosystem, and associated #fintech topics. Follow 50p on Twitter. more