Core Viewpoint - The rapid development and widespread application of mobile payment technology have led to the rise of "no-password payment" services, which simplify payment processes and enhance user experience. However, there are concerns regarding security management among payment service providers and users' awareness of security risks [2][3]. Group 1: Recommendations for Payment Service Providers - Payment service providers should strengthen security management for "no-password payment" services by ensuring proper authorization management and confirming users' true intentions during the activation process [2]. - It is essential to enhance merchant risk management by setting reasonable limits on "no-password payment" services based on the merchant's business conditions and risk information [3]. - Continuous monitoring of transaction processes is necessary to prevent financial loss risks, utilizing risk models and big data analysis to identify and verify unusual transaction patterns [3]. Group 2: User Awareness and Protection - Users are encouraged to enhance their security awareness by implementing measures such as enabling two-factor authentication and regularly changing passwords [6]. - Users should improve their risk identification capabilities, remain vigilant against marketing traps, and avoid storing payment information on public devices [6]. - Regular checks on "no-password payment" agreements and prompt actions to freeze or close accounts upon detecting anomalies are recommended [6].

Core Viewpoint - The rapid development and widespread application of mobile payment technology have led to the rise of "no-password payment" services, which simplify payment processes and enhance user experience. However, there are concerns regarding security management and user awareness in this area [1][2]. Group 1: Recommendations for Payment Service Providers - Payment service providers should strengthen the security management of "no-password payment" services by ensuring proper authorization management and confirming user intent during the activation process [1]. - It is essential to conduct thorough identity verification and avoid default activation of "no-password payment" services, ensuring users' rights to choose and be informed [1]. - Providers should assess the risk preferences and capabilities of elderly users and clearly present core terms of the service [1]. Group 2: Merchant and Transaction Management - Payment service providers must enhance merchant risk management by setting appropriate limits on "no-password payment" transactions based on merchant characteristics and risk information [2]. - Monitoring transaction activities is crucial to prevent financial losses, utilizing risk models and big data analysis to identify and address unusual transaction patterns [2]. Group 3: User Rights and Awareness - Payment service providers should implement efficient complaint handling processes to protect user rights and offer easy cancellation options for users who no longer wish to use "no-password payment" [2]. - Users are encouraged to enhance their security awareness by employing measures such as two-factor authentication and regularly changing passwords [4]. - Users should regularly check their "no-password payment" agreements and remain vigilant for any unusual transactions, taking immediate action if necessary [4].

Core Viewpoint - The rapid development and widespread application of mobile payment technology have led to the rise of "no-password payment" services, which simplify payment processes and enhance user experience, but also highlight the need for improved security management by payment service providers and increased user awareness of security risks [1][2]. Group 1: Recommendations for Payment Service Providers - Payment service providers should strengthen security management for "no-password payment" services by ensuring user consent and identity verification during the activation process, avoiding default activation, and safeguarding user rights [1]. - There should be enhanced risk management for merchants, including setting reasonable limits for "no-password payment" services based on merchant risk profiles and business characteristics [2]. - Continuous monitoring of transaction activities is essential to prevent financial losses, utilizing risk models and big data analysis to identify and address unusual transaction patterns [2]. Group 2: User Awareness and Protection - Users are encouraged to enhance their security awareness by implementing measures such as enabling two-factor authentication and regularly changing passwords [4]. - Users should be vigilant against marketing traps and avoid saving payment information on public devices, as well as regularly checking their "no-password payment" agreements and transaction alerts [4]. - Payment service providers should offer efficient complaint handling processes and easy options for users to deactivate "no-password payment" features if they choose to discontinue use [2].

Core Viewpoint - The China Payment and Clearing Association has issued an initiative to enhance the security management of "no-password payment" services, emphasizing the need for improved safety measures and user awareness in the rapidly evolving mobile payment landscape [1][2]. Group 1: Recommendations for Payment Service Providers - Payment service providers should strengthen the security management of "no-password payment" services by ensuring proper authorization management and confirming user intent during the activation process [1][2]. - Merchants should implement risk management practices, including setting transaction limits based on their operational characteristics and risk profiles to avoid enabling high-risk merchants [2]. - Continuous monitoring of transaction activities is essential to prevent financial losses, utilizing risk models and big data analysis to identify and address unusual transaction patterns [2]. - User rights protection must be prioritized, with efficient complaint handling processes and easy options for users to deactivate "no-password payment" services if desired [2]. - Ongoing tracking and regulation of "no-password payment" services should be conducted, focusing on public sentiment and addressing issues related to financial losses and service disputes [2]. Group 2: User Awareness and Safety Measures - Users are encouraged to enhance their security awareness by implementing protective measures for their mobile devices and accounts, such as enabling two-factor authentication and regularly changing passwords [3]. - Users should improve their risk identification capabilities, remain vigilant against marketing traps, and avoid storing payment information on public devices [4]. - Regular checks on "no-password payment" agreements and monitoring transaction alerts are advised, allowing users to freeze or deactivate accounts upon detecting any anomalies [5].

二是强化商户风险管理，提供限额管理功能。根据商户经营情况、业务场景、风险信息等合理确定"免 密支付"商户开通范围，避免为高风险商户开通"免密支付"服务。结合经营特征等情况，针对性设置商 户"免密支付"交易限额。 三是加强交易环节监测，防范资金损失风险。通过风险模型搭建、大数据分析等技术不断提升风险管控 能力。当用户的交易模式与日常消费习惯发生不符等异常情况时，及时进行拦截或二次验证，防范用户 资金损失风险。 四是加强用户权益保护。提供高效的投诉处理流程，切实保障用户权益。若用户不再继续使用"免密支 付"功能，为用户提供便捷的关闭通道。根据老年人的实际需求，实时或定期主动推送"免密支付"交易 相关信息，在显著位置提供相关信息一键查询功能，提供"免密支付"一键取消功能。 中国支付清算协会还提示用户增强安全防范意识： 记者今天（12日）从中国支付清算协会了解到，随着移动支付技术的快速发展和广泛应用，"免密支 付"业务通过简化支付流程，大幅缩短了交易时间，提升了用户的支付体验。在提高便捷性的同时，部 分支付服务主体在业务安全管理方面还存在提升空间，一些用户也存在安全意识薄弱的情况。为进一步 规范"免密支付"业务开展， ...

二是强化商户风险管理，提供限额管理功能。根据商户经营情况、业务场景、风险信息等合理确定"免 密支付"商户开通范围，避免为高风险商户开通"免密支付"服务。结合经营特征等情况，针对性设置商 户"免密支付"交易限额。 三是加强交易环节监测，防范资金损失风险。通过风险模型搭建、大数据分析等技术不断提升风险管控 能力。当用户的交易模式与日常消费习惯发生不符等异常情况时，及时进行拦截或二次验证，防范用户 资金损失风险。 四是加强用户权益保护。提供高效的投诉处理流程，切实保障用户权益。若用户不再继续使用"免密支 付"功能，为用户提供便捷的关闭通道。根据老年人的实际需求，实时或定期主动推送"免密支付"交易 相关信息，在显著位置提供相关信息一键查询功能，提供"免密支付"一键取消功能。 五是做好业务跟踪与规范。持续开展"免密支付"相关舆情监测，重点关注资金损失、服务纠纷等情况， 并及时妥善予以处理。 北京商报讯（记者 刘四红）11月6日，中国支付清算协会（以下简称"协会"）发布消息称，随着移动支 付技术的快速发展和广泛应用，"免密支付"业务通过简化支付流程，大幅缩短了交易时间，提升了用户 的支付体验，也在一定程度上帮助商户提高结 ...

Core Viewpoint - The China Payment and Clearing Association has issued an initiative to enhance the security management of "no-password payment" services, emphasizing the need for payment service providers to strengthen security measures and ensure user consent [1] Group 1: User Consent and Identity Verification - Payment service providers are required to strictly verify user identity information during the activation process of "no-password payment" services [1] - Users must confirm their intention to activate the service and sign the "no-password payment" agreement through prominent page displays, eliminating default activation practices [1] - The initiative aims to ensure users' rights to choose and be informed about the activation of "no-password payment" services [1] Group 2: Risk Management for Vulnerable Groups - There is a call for a comprehensive assessment of elderly users' risk preferences and capacity to handle such services [1] - Key terms of the service must be prominently displayed to elderly users before activation [1] - The initiative advocates for cautious activation of "no-password payment" features for elderly individuals [1] Group 3: Transaction Monitoring and Risk Prevention - Enhanced monitoring of transaction activities is necessary to prevent potential financial losses [1] - The use of risk models and big data analytics is encouraged to improve risk management capabilities [1] - In cases where user transaction patterns deviate from normal consumption habits, timely interception or secondary verification is recommended to safeguard user funds [1]