Conexxus

Conexxus Progress

  1. About
  2. Conexxus Progress

Just A Few Things Conexxus Has Done, And Is Doing....

2020

Operations

  • COVID-19 related operations articles published.

Payments

  • Release of Payment System Product Code, V4.0, which adds clarifications for dyed fuels, identifies taxable and non-taxable fuel sales in the same transaction, auto and commercial diesel, adding product code support for cannabinoids, new fuels, EV battery exchange, toll payments, additional discounts, charity, and gratuity.
  • Release of Forecourt Dispenser Controller, V2.1, which adds support for the POS to send an alarms to all subscribed devices, alternative fuels, error code detail, and the ability to change prices of multiple fuel products and modes.
  • Release of Forecourt Payment Terminal, V1.0, which defines the XML protocol for control of fuel island payment devices; pump-integrated or as a stand-alone. The standard includes the ability to manage magnetic stripe, EMV and NFC transactions and control the consumer interface.

Compliance

  • Support of the NACS Age Verification project through technical consulting, API design and creation of standards working group within Conexxus.
  • Release of EMV Resource and Guidance V1.2, which updates the white paper with new information and resources specific to the convenience retailer.
  • Updated EMV preparedness surveys were completed.
  • Series of newsletters on data privacy in the US as it relates to the California Consumer Privacy Act were published.

Improving competitiveness

  • “API Sprint”. Investing $1M in grant funding from NACS to accelerate the adoption of API standards in order the accelerate industry technology to better compete in today’s digital economy.  Deliverables currently being worked on are:
  • A well-defined process to quickly accept and standardize submitted APIs (external or committee) that comply with industry standard formats; “the Factory”.
  • Created API Design Guidelines supporting OAS 3.0, JSON, transport and security.
  • Creation of a comprehensive Data Dictionary that standardizes application and formats of enterprise data; improving value and usage of data, regardless of source or API creator (including non-standard).
  • A slate of API project candidates that will, when implemented, greatly improve the technical capabilities of retailers to innovate and integrate new business models, through removal of functional chokepoints and confining data paths.
  • Extends useful life of existing technologies, enabling a more cost effective digital transformation road map.
  • Working closely with IFSF, all of the API work is proceeding as a global standard, which ensures innovation can quickly cross-borders.  Open Retailing website and gitlab created to support this collaboration.

Membership Website

  • Upgraded Conexxus website to Drupal V8, increasing functionality and security.

 

2019

Operations

  • Release of POS/Back Office V3.6.1, which added a detailed recommendation on how to configure the POS to account for sales restrictions on age-gated products and Juul RACS program support.

Payments

  • Release of Electronic Payment Server (EPS) V2.11, which adds support for special transaction routing, improved transaction efficiencies,  support for vouchers, mobile ticket prints,  outdoor payment terminal (OPT) status and events, car wash codes, and the ability to control how AID menu selection labels are presented.
  • Release of EMV Fleet Tags V1.0 which adds fleet functionality to EMV cards
  • Release of EMV Resource and Guidance V1.1, which updates the white paper with new information and resources specifically for convenience retailers.

Compliance

  • In cooperation with PEI, a new work item was kicked off to add underground storage tank (UST) information to the site asset standard.
  • Conducted industry-wide survey to gather data on EMV preparedness.
  • Obtained industry fraud numbers with cooperation of major card brands, giving the first view into the amount of fraud – and EMV non-compliance risk - at the dispensers for the collective industry.

Improving competitiveness

  • With a continued focus on APIs and development process, both a Conexxus API focus work group to set priorities and a joint API work group with IFSF to define API guidelines were created.
  • Member-driven initiatives resulted in new working groups for:
    • Gift card interface POS operations,
    • Internet/Web of Things,
    • Intelligent cash drawer,
    • Car wash operations
    • Food service – production and external delivery.
    • Industry Road Map that matches emerging operational trends and innovations with required technology competencies, enabling retailers to plan for the future.

Membership accessibility

  • Established Conexxus GitLab instance to improve membership collaboration on standards.

2018

Data & Payment Card Security

  • Continued webinar program with monthly webinars on security, fraud and EMV topics.  Over 2 thousand stakeholders have attended.
  • Kicked off new work item for safely moving business data out of a secure environment
  • Conexxus, along with NACS Government Relations, is representing the industry at Weights and Measures to protect merchants from onerous anti-skimming measures, while advocating for reasonable solutions that give the most benefit for the cost.

 

Standards Upgrades

  • Release of Electronic Payment Server (EPS) 2.10, which adds support for RF vehicle tags, improved customer experience for EMV refunds, support for additional PIN block keys, support for proprietary and contactless smart cards, support for determining contact and contactless capability, signature requirement information from the payment host, and support for EPS to POP messaging.
  • Release of POS/Back Office 3.6, which added support and improvements for tax exemptions, manual fuel sales, loyalty reporting, discounts,  and overall better documentation and clarification on the POS journal.
  • Release of Forecourt Device Controller (FDC) v2.0.1, which builds on the original IFSF specification to address the gaps for North America and improve the schema design for automated development tools.  This release is the first truly global specification developed and published jointly by Conexxus and IFSF.

 

Membership Services & Advocacy

  • Continued advocacy for the industry on payment related topics through EMVCO and US Payments Forum.
  • Continued leadership roles at World Wide Web Consortium (W3C) in verifiable credentials, web payments and digital promotions work groups
  • Creation of website guide to facilitate onboarding of new members
  • Website redesign for resources to make navigation easier especially for non-members
  • Successful programming of TechEdge at the NACS Show, targeting over 700 technology industry professionals

 

Digital Business Migration – 4IR

  • API Task Force created to investigate migration to APIs resulting in creation of working groups in 2019 to address.
  • Preliminary draft initiative to launch API/Microservices development “sprint” to accelerate industry digitization and technical flexibility
  • Created Fourth Industrial Revolution and Digital Culture Development Library – available to public and membership
  • Created first draft of 10-year technology roadmap, outlining key factors to embrace to fully benefit from new technologies and innovations; introduced at TechEdge/NACS

 

Looking forward to 2019

  • Full exploration and kick off of API/Microservices sprint
  • Digital promotion pilot, in conjunction with the Coupon Bureau and JICC – bringing secure, flexible and automated digital promotions to the industry
  • Increased engagement with NACS GR on cannabis/hemp/tobacco verification and supply chain issues
  • Fresh eyes analysis of our supply chain in the digital future in EB2B
  • Creation of 4IR basic research consortium; creating use-cases for 4IR technologies like AI/Machine Learning and Internet of Things
  • Develop a standard interface for made to order food service that allows data transfer and synchronization between a mobile application with ordering, a customer self-service ordering terminal, the point of sale, the back office and the kitchen production system. 
  • Create an FDC/POS-Car Wash standard that can be leveraged for modern car wash functionality as well as by devices on the forecourt with similar use cases (e.g. air pumps).  

2017

STANDARDS

The Data Security Committee focused on its continuing mission to reduce data risk in the industry.  The Committee substantially completed by year end a new whitepaper, “Remote Access Compliance and Responsibilities”.   This whitepaper is designed to assist in educating and informing retail petroleum store operators/small merchants on cybersecurity issues.

The Retail Financial Transactions Committee substantially completed by year end a new whitepaper “Resources & Guidance for EMV Implementations in a C-Store Environment”.  This whitepaper provides links for educational information and frequently asked questions regarding EMV implementations in the US.

Conexxus created the Digital Offers working group, subsidiary to Retail Financial Transactions, in 2017 to complete its suite of mobile commerce standards (in addition to mobile payments and mobile loyalty).  The ability to easily and securely distribute, use, and accept offers issued by retailers and consumer package goods companies is viewed as paramount to the ultimate success of mobile payments.  The mission of the Digital Offers Working Group is to identify and develop standards for the exchange of data needed in a digital offers ecosystem.

The EB2B Committee substantially completed by year end a new resource guide explaining the benefits of adopting electronic file exchange for c-stores.

Device Integration released Site Asset Specification V1.0 in October.  PCI DSS V3.2 Section 9.9.1 requires retailers to maintain a list of devices in which cardholder data could pass through (including make, model, location, and serial number or other unique identifier). This standard enables retailers to electronically transmit this data and more for any device in your store environment.  Read an abstract of the Site Asset Specification on our Standards Page.

 

EVENTS and EDUCATION

Conexxus hosted members attending the National Retail Federation’s Big Show at the Javits Center in New York. 

The Conexxus Annual Conference was held at Loews Annapolis, with a record 174 people in attendance. Check out some great moments captured at the conference!  Committees met over 4 days to set their respective 2017 work agendas; covering topics such as EMV, data security, mobile commerce, digital promotions and device integration.  Keynote speakers Jeff Ma, member of the MIT Blackjack team, spoke about relying on analysis to stay on strategic mission, and Washington Post columnist Gene Marks spoke on staffing and marketing in the age of Mobile Millennials.  Education sessions were also presented on diverse topics such as:

  • Mobile checkout using NAXML,
  • Technology in Japan Convenience,
  • CIO Insights and
  • Industry Trends

Conexxus held its Annual Strategy Conference in Salt Lake City, hosted by Maverik at its downtown headquarters known as “Base Camp”.  The group of 30 staff and Gold members worked on improving Conexxus’ value to the industry, with special focus on the evolution of how standards play in the “API Economy”.  Wovyn (Internet of Things startup) and GoSkip (mobile self-checkout startup) presented their vision and products to the attendees.

Conexxus anchored the NACS Show’s Technology Edge program and floor area, serving over 700 IT professionals attending the NACS show and sessions.  Sessions included:

  • Enabling the mobile workforce
  • Preparing for EMV
  • Strategies for Customer Engagement
  • Using the NIST Framework for Data Security

Conexxus presented nine webinars, covering topics such as PCI compliance updates for small merchants (Level 4), ransomware, third party risk management, and payment security and risks. View a complete archive of the monthly Conexxus webinars.

 

ADVOCACY

Conexxus continued work that advocates for open access to technology and the needs of our industry.  Areas of focus are:

  • EMVCo: Conexxus is one of the only retail organizations that participates in the creation of chip-based payment platforms.  Through its membership, Conexxus intends to represent industry concerns and identify future specification requirements.
  • World Wide Web Consortium (W3C): Conexxus has, for over 2 decades, been one of the only retailer organizations to actively participate in this group that creates Standards for the internet.  Conexxus represents the industry through leadership in three areas of work:
    1. Web Payments – how web applications access standardized payment systems
    2. Digital Promotion – how web applications can readily integrate and support promotions pushed to consumers.
    3. Verifiable Claims – how web applications can identify or verify consumers without exposure to existential personal data.
  • US Payments Forum – representing industry concerns regarding deployment of EMV and Mobile Payments.
  • X9 – more than 2 decades of representing industry issues to this ISO body tasked with structuring the payments industry Standards in the US and abroad.
  • US Federal Reserve (various) – a decade of representing our segment’s issues and concerns related to the US payment system.

2016

STANDARDS

Mobile Payments standard v2.0 released, incorporating Loyalty standard and usability feature upgrades.  This standard continues to be the only complete mobile commerce standard in existence and is slated to have digital promotions and couponing adding to provide a complete mobile commerce ecosystem.

Conexxus was nominated by the card brands and EMVCo to design fleet operation tags that leverage the PAR discretionary data in the EMV specification.  This work is intended to provide complete indication of the unique fleet operations associated with future fleet chip cards.

Forecourt Device Controller Working Group (FDC) completed specification of integrating US requirements into the existing IFSF standard to achieve a singular global interface to control forecourt devices.

 

EVENTS & EDUCATION

Conexxus hosted members attending the National Retail Federation’s Big Show at the Javits Center in New York.  Booth tours at IBM, Microsoft and NCR were arranged, followed by a group dinner on Columbus Circle.

Conexxus provided nine webinars to the general industry that covered critical topics such as EMV, protecting dispensers and ATMs from skimming attacks, data security and response in the distributed network, and mobile commerce.  A complete archive of Conexxus webinars can be found here: https://www.conexxus.org/content/webinars

The Conexxus Annual Conference was held at the Loews Ventana Canyon, with a record 165 people in attendance.  Committees met to set their 2016 work schedule and finalize work done to date.  Futurist Michael Rogers provided the keynote address, and additional programming addressed key topics such as EMV, enterprise cloud computing, mobile payments and data privacy.  A complete agenda can be found here: https://www.conexxus.org/content/2016AnnualConference

Conexxus held its Annual Strategy Conference in San Jose, CA; hosted by VeriFone at its headquarters.  Along with working on marketing strategy to improve Conexxus’ value to the industry, attendees participated in select portfolio start-up company presentations related to mobile enterprise, artificial intelligence applied to data security.  Conexxus works with venture capital firms Kleiner, Perkins, Caufield, Byers, Greylock Partners, and Andreessen-Horowitz to identify relevant technologies for the industry, identify upcoming standards and keep the industry on the cutting edge in retail technology.

Conexxus anchored the NACS Show’s Technology Edge program and floor area, serving over 700 IT professionals attending the NACS show and sessions.  Sessions included:

  • Preparing for EMV
  • Strategies for Customer Engagement
  • Data Security

Conexxus membership visited the Microsoft Retail Experience Center (REC) in Redmond, WA.  The REC is a working demonstration lab of the latest retail technology, including mobile commerce, remote ordering, consumer tracking and behavior, interactive retail media and inventory management.

 

ADVOCACY

Conexxus intensified its work with the EMV Migration Forum (EMF) Petro Working Group to identify the multiple headwinds faced by our market in meeting the October 2017 liability shift deadline.  The issues identified by this group played no small part in the card brands’ decision to delay liability shift until October 2020, saving the industry close to $1B in added expense and liability.

Conexxus focused on expanding standards work within the World Wide Web Consortium (W3C, https://www.w3.org/ ) to standardize tomorrow’s web-based retail landscape to fully leverage the coming mobile improvements anticipated with the release of 5G mobile networks.  Conexxus led work centered in three key areas that improve the interoperability of online and instore mobile commerce:

  • Mobile Payments – work aimed at simplifying web/mobile commerce connectivity to the various forms of authenticated payments that may emerge.  This will allow tomorrow’s web-based customer shopping experience, with the security of today’s “app” functionality.
  • Verifiable Claims – work intended to provide personal identity information without exposing existential PII.  Through this work, age, identity and other PII facets can be validated without exposing critical personally identifiable information.
  • Digital Offers – this initiative seeks to standardize the usage of all manners of digital promotions from within the web application

Conexxus membership began work on reconciling ISO8583 payment standards in the fuels retail segment with the upcoming ISO20022 in conjunction with IFSF and nexo (FR), that has also received Conexxus input through its leadership within X9.  This work is in anticipation of global migration to the new payment standard from the existing bitmapped standard, and aims to have the petroleum use case included.

Conexxus also continued its work and advocacy with the US Federal Reserve payments initiatives, BACPAC payments roundtables, and Mobile Payment Workgroups.
 

2015

Annual Conference held in Annapolis included committee face to face work as well as an expanded offering of education content

Sponsored a technology leadership summit in Austin, TX, meeting with the Center for Identity at the University of Texas as well as Retail me Not

Hosted technology field trips to Microsoft Retail Experience Center

Continued to provide cutting edge content for the Technology Edge at the NACS Show and hosted the Technology Edge Center on the show floor

Continued to host monthly webinar series covering a variety of data security and technology topics

Electronic Payment Server (EPS) standard V2.7 and V2.8.1 released

Loyalty standard V1.1 released

Mobile Payments standard V1.0 released

Payment Systems Product Codes V3.7 released

Continue to participate in regulatory work efforts:

  • Federal Reserve Banks of Boston & Atlanta Mobile Payment Initiative Workgroup
  • Federal Reserve Bank of Richmond BACPAC
  • ANSI X9
  • World Wide Web Consortium (W3C)
  • EMV Migration Forum (EMF) - sponsoring member of the Petro Working Group

2014

PCATS rebranded Conexxus – to reflect its expanded mission and commitment to the industry

Re-launched the Annual Conference which allows committees to meet face to face and bring attendees premium education content

Payment Systems Product Codes V3.6 released

POS/Back Office V3.5 standard released

Electronic Payment Server (EPS) V2.6 standard released

Point-to-point Encryption (P2PE) V1.0 standard released – first standard based on X9 119.1 standard

Delivered on its mission by hosting a technology leadership meeting for attendees in the San Francisco Bay area.  Meetings were held with various venture capital firms and Microsoft executive leadership. 

Provided cutting edge content for the Technology Edge at the NACS Show

Advocated for the industry on Capitol Hill by providing the retailer's view on how payments, data security and privacy should be regulated and implemented

Created a monthly webinar series covering data security and emerging technology

Continue to participate in regulatory work efforts:

  • Federal Reserve Banks of Boston & Atlanta Mobile Payment Initiative Workgroup
  • Federal Reserve Bank of Richmond BACPAC
  • ANSI X9
  • World Wide Web Consortium (W3C)

 

2013

Global standards work - convergence of standards with IFSF

          -Device integration – Forecourt Controller

          -Electronic Payments – EPS Standards homogenization

Mobile Commerce work items added to Retail Financial Transactions Committee agenda

          -Added digital coupons and promotion to Loyalty Working Group

          -Mobile Payments Working Group to focus on interoperability with emerging technologies

Electronic Business to Business (EB2B) Retail Merchandise V1.5.22 standard released

Industry Data Breach database launched

Continued work with PCI and card brands to reduce complexity of small merchant risk mitigation

Participation in regulatory work efforts:

          -Federal Reserve Banks of Boston & Atlanta Mobile Payment Initiative Workgroup

          -Federal Reserve Bank of Richmond BACPAC

          -Sponsored ANSI X9/Federal Reserve conference on EMV

2012

POS to Back Office (POS/BO) V3.4.4 standards released

Electronic Payment Server (EPS) v2.5 standard released

Certification Committee becomes the Standards Quality Assurance (SQA) committee to improve standards clarity and implementation

Reducing card data risk of the industry:

          -Provided IP for NACS’ launch of the “We Care©” risk mitigation program

          -Held retail industry’s first breach simulation exercise, dimensioning preparedness for breach event

          -Created “8 Points” for small merchant data risk reduction, receiving endorsement from other trades

          -Negotiated simplification of Self Assessment with Visa, allowing small merchant use of SAQ

          -Released guides for protecting card data at forecourt

                    -Video on inspecting dispenser payment terminals

                    -Guide for protecting dispenser payment terminals from skimmers

                    -Employee training Guide for data security

2011

POS to Back Office (POS/BO) V3.4 standards released

Point-to-point Encryption (P2PE) Working Group established

Creation of Technology Research Committee

Standard document formats for specifications and standards established

2010

Integration of operations with NACS

          -PCATS remains independent organization with integral role in NACS

                    -Self-sustaining

                    -Self-directed

          -Becomes NACS’ technology resource for knowledge and advocacy

Data Security Committee (DSC) established

Reducing card data risk of the industry: SAQ compliance web tool launched

2009

Retailer Business Requirements (RBR), Technical Advisory (TAC) and Certification Committee efforts aligned:

          -Define Core Detailed Standards with the "which, why and how?"

          -Certification lab up and running

          -Expand PCATS Gateway participation

          -Complete standards documentation

Former data security Subject Matter Experts community – becomes Data Security Committee

2008

Standards Documentation

          -Detailed standard with business case

          -Established standards development and approval processes

Working Committee Efforts

          -Loyalty Standard

          -Open Site Architecture release

          -Electronic Sign Specification

AutoSafe Specification

2007

Content Management System

          -CMS tool online

          -Standards repository created

Working Committee Efforts

          -POS/Back Office Interface 3.4.1

          -EB2B Retail Merchandise 1.5

          -EB2B Motor Fuels 1.5

Pilot Efforts

          -PCATS Gateway

          -Lottery

2006

Initiated Retailer Business Requirements (RBR) Committee

Electronic Payment Server (EPS) Collaboration with International Forecourt Standards Forum (IFSF)

2005

Began standards work and expanded working groups

2004

Incorporated as Industry Standards Body

Acquired IP from NACS

Established Technical Committees
Return to top