[quux]

EMV cards are a big improvement for security but the UX is a step big back from mag swipes. Here's an example from a recent stop at the ATM.

* I dipped my card and then was told to reinsert the card and leave it in for the duration of the transaction. I wonder how long it will take for me to insert/leave by default instead of dipping.

* The machine mechanically locked my card into the slot until I had taken my cash, I wonder how more frequently people are going to leave their cards in the ATM now. Also, what happens if the power goes out or the machine crashes?

* It seems that some EMV cards have multiple "Applications" on them and it's impossible to tell which one should be used in which context. When I inserted my card, the ATM presented me with a menu asking be to select between "US DEBT" and "VISA DEBT" I had no idea which one to choose, and had to pick one, try to make a withdrawal, fail, and then choose the other one to take out cash. I don't remember which one worked, and if that's the one I should use in other locations.

[stordoff]

Every ATM I've use in the UK will wait for you to remove the card before finishing the transaction (e.g. dispensing the receipt or cash you asked for). If you lose the card in the machine, a new one can be mailed to you (within two days IIRC), though this has never happened to anyone I know.

I've never seen a "Application" choice, so I can't really comment on that. Is that US specific?

Overall, I've found the UX on new cards to be a big improvement on magstripes.

[coleca]

I was talking to a manufacturer of fuel pump payment terminals and he was commenting that in the US we have spent the last 10 years training customers to dip their cards into the terminal and remove them before pumping fuel. Now the cards are going to be clamped in the terminals (in 2017) and not available until after the pump is returned. He guaranteed that it will be a nightmare with people leaving their cards behind at the pumps.

[slashink]

1. I understand coming from only swipe but in my mind (Sweden) you insert your card while you perform the entire transaction as a identifier compared to swiping. That's at least how me and my friend think about it after asking him.

2. Machines in Europe has been doing this for a long time and it's never been an issue. I guess in the rare case power goes out (aren't these machines on UPS?) it you just call the provider hotline, cancel that card and get a new one in the mail the day after.

3. I have never seen this but i agree this is an issue. That is a unnecessary UX roadblock.

[davb]

1) I agree - I think this is a regional thing. In the UK, ATMs almost always lock the card in place (typical non-corner-store ones take the entire card into the machine).

2) In the UK, most machines make you take the card out before dispensing the banknotes. Bank-owned (non-corner-shop) ATMs "spit out" the card and beep until you take the card. Only then do they dispense the cash.

3) I don't think many UK card issuers use multiple applications for the same context. That is to say, if you put your card into an ATM, only one application is likely to be compatible with that profile. There may be other applications for travel (ITSO, for example, is a travel card standard built on Global Platform). I think every EMV terminal has support for application selection menus (usually in the form of little buttons along the side of the screen) but they're virtually never used in the UK.

In my experience while travelling, US payment terminals are the most unusual.

[rbobby]

Same in Canada... gotta take the card and then the money comes out. Nice thing is that you never forget your card in a machine :)

[davb]

Yeah. And if you do happen to enter you PIN, request cash then just walk away, the machine will furiously beep for a short time then pull the card back in ("swallow the card").

You've then got to request a replacement card from your issuer but it does limit the chance of a stranger coming along and retrieving the forgotten card and attempting to use it (for a signature fall-back transaction after damaging the chip, or for a cardholder not present - CNP - transaction).

Bank-operated ATMs will also often retain the card if it's been reported lost or stolen, but this does rob the lucky/brave checkout operator of their £50 bonus if they happen to retain a stolen card that's been used in store.

[xmm]

3. I have seen this, some Swedbank cards will ask you to choose "konto" (debit) or "kredit" (credit). It needs to be obvious which choise to pick.

[run4yourlives2]

You remove your card first, then it dispenses cash.

> Also, what happens if the power goes out or the machine crashes?

Seriously? Where do you live where the grid is this unstable?

Living in Canada, I can tell you that using my cards in the US where there are no EMV/chip readers feels tremendously insecure to me now. It's just a matter of getting used to things.