Aeriandi Enlists Adapt on PCI Compliance

Aeriandi differentiated financial solutions selected Adapt independent managed services to support its business growth. Adapt will deliver critical infrastructure to support Aeriandi’s flagship offering, PCI Circle, which helps organisations meet compliance obligations quickly, cost effectively and securely. Aeriandi creates innovative technology that delivers superior business results for organisations across a number of industries. PCI Circle is Aeriandi’s team of highly experienced engineers, developers, consultants and managers that share deep expertise in delivering successful, PCI-DSS compliant solutions across every industry from multi-channel retailers to utilities, major high street banks and financial institutions.

nCircle Launches PCI DSS Compliance Package

nCircle security performance management solutions integrated its nCircle Certified PCI Scan Service in the PureCloud security services platform, giving users access to vulnerability scanning, web application scanning and automated PCI scanning. Improving network security and compliance with PCI DSS, the PCI Scan Service enables smaller organizations and businesses to cost effectively achieve PCI compliance and improve network security. With an average of 5,000 new vulnerabilities discovered each year, regular or continuous vulnerability scanning is an essential security best practice. nCircle is offering a PureCloud Small Business Compliance Package that provides five IPs of PCI scanning and five IPs of comprehensive vulnerability and web application scanning, enabling smaller organizations and businesses to achieve PCI compliance and, at the same time, improve network security.

CPI Card & NXP Semiconductors Launches Dual Interface EMV

CPI has chosen NXP’s payment solution for its latest dual interface product to facilitate the migration to EMV systems in North America. This provides an opportunity for banks to provide additional consumers advanced services and applications. The CPI qualified solution is based on the NXP SmartMX dual interface solution with 12K EEPROM memory. NXP’s portfolio of SmartMX products has been vetted by independent evaluation labs in numerous Common Criteria and EMVCo certifications. The devices feature advanced security concepts including the patented GlueLogic design methodology, dedicated hardware firewalls to protect software and data, and a comprehensive suite of technologies addressing attack scenarios with light and lasers.

payShield

Thales information systems and communications security has made
available its “payShield” Cardholder Authentication for “nShield
Connect” and “nShield PCI Express” hardware security modules (HSMs). The
“payShield” Cardholder Authentication for “nShield” authenticates credit
card users and protects encryption key transfers to safeguard credit
card information and assisting with regulatory compliance such as PCI.
The “payShield” Cardholder Authentication for “nShield” is already
widely deployed in web-based applications for MasterCard’s Chip
Authentication Program (CAP) and Visa’s Dynamic Passcode Authentication
(DPA) for online banking and 3D-Secure applications such as Verified by
Visa and MasterCard SecureCode for online payments. This supports
customers upgrading their mission-critical environments using Thales
“nShield Connect” HSM, offering dual, hot-swappable power supplies for
enhanced business continuity.

Thales Provides Authentication for nShield

Thales information systems and communications security has made
available its “payShield” Cardholder Authentication for “nShield
Connect” and “nShield PCI Express”
hardware security modules (HSMs). The “payShield” Cardholder
Authentication for “nShield” authenticates credit card users and
protects encryption key transfers to safeguard credit card information and
assisting with regulatory compliance such as PCI. The “payShield”
Cardholder Authentication for “nShield” is already widely deployed in web-based
applications for MasterCard’s Chip Authentication Program (CAP) and
Visa’s Dynamic Passcode Authentication (DPA) for online banking and
3D-Secure applications such as Verified by Visa and MasterCard
SecureCode for online payments. This supports customers upgrading their
mission-critical environments using Thales “nShield Connect” HSM,
offering dual, hot-swappable power supplies for
enhanced business continuity.

EZIO POCKET READER

Digital security provider Gemalto is supplying Advanced Bank of Asia (ABA) in Cambodia with its strong
authentication solution, Ezio Pocket Reader, to secure their new
Internet banking services. The company also provides the bank with EMV
(Europay, MasterCard, Visa) credit cards. ABA customers can use the EMV credit card to securely access their
online banking services. To access online banking services, customers
simply insert their EMV card into the Ezio Pocket Reader. Subsequently,
a one-time-password, which is unique and different every time, will be
generated to authenticate the cardholder. This combination of ‘something
you have’ (the card) and ‘something you know’ (the one-time PIN)
provides a high-level of security compared to simple username and
password only schemes. One of the leading banks in
Cambodia, ABA is the first in the country to adopt an EMV card-based
authentication solution. Ezio Pocket Reader is compliant with the latest
industry standards – MasterCard CAP and Visa DPA.

EZIO CLASSIC

Serbian-based Banca Intesa has selected the Gemalto “Ezio Classic”
reader to secure e-commerce services. Customized with Banca Intesa’s
visual corporate identity, the “Ezio Classic” allows users to make
online purchases with the security level guaranteed by the EMV banking
card while protecting them from “card non present” fraud in e-commerce.
Gemalto deploys one of the world’s first smart-card based strong
authentication solutions used for securing e-commerce. By inserting
their banking card into the reader and enter their PIN code on the
keypad, “Ezio Classic” generates a One Time Password they type in to
securely make e-commerce purchases, allowing shoppers to buy a wide
variety of goods with the highest level of security.

MICROPASS 6000

INSIDE Contactless advanced open-standard contactless chip technologies
has introduced its “MicroPass 6000” dual-interface intelligent payment
processor. Designed as an EMV-compliant platform for a new family of
MicroPass, the “MicroPass 6000” offers flexibility, efficiency and fast
time to market for card manufacturers and issuers with both contact and
contactless operation. The core payment platform expands INSIDE’s
multi-brand, multi-application offerings on a dual-interface platform
designed to meet high-volume requirements of EMV markets. Additionally,
the “MicroPass 6000” platform supports both ISO 14443-B contactless and
ISO 7816 contact protocols and is designed to be compliant with both EMV
CL v1.1 and v2.0, type B and EMV v4.1 Book 1 interoperability standards.

EM & CRI

Cryptography Research has signed patent agreements with EM
Microelectronic – Marin semiconductors concerning, allowing the latter
to implement the formers patents. For its flash-based smart card chips
in the telecom market, EM will be implementing CRI’s patent to enhance
tamper-resistant smart card security against Differential Power Analysis
(DPA) and related attacks. DPA is a form of attack consisting of the
monitoring of fluctuating electrical power consumption of a target
device and channeling advanced statistical methods to derive
cryptographic keys and data. With this patent agreement, EM will be
implementing its freedom to use the CRI patents to develop and enhance
its security chips used in its smart card security applications for
banking and electronic identification. This will allow its customers to
develop their own security countermeasures without a separate license
from CRI.

Cryptography Research Signs EM Micro

Cryptography Research has signed patent agreements with EM
Microelectronic – Marin semiconductors, allowing the latter
to implement the formers patents. For its flash-based smart card chips
in the telecom market, EM will be implementing CRI’s patent to enhance
tamper-resistant smart card security against Differential Power Analysis
(DPA) and related attacks. DPA is a form of attack consisting of the
monitoring of fluctuating electrical power consumption of a target
device and channeling advanced statistical methods to derive
cryptographic keys and data. With this patent agreement, EM will be
implementing its freedom to use the CRI patents to develop and enhance
its security chips used in its smart card security applications for
banking and electronic identification. This will allow its customers to
develop their own security countermeasures without a separate license
from CRI.

INSIDE & CRI

INSIDE Contactless has signed agreements with Cryptography Research
(CRI) for the use of CRI’s patents covering countermeasures to
Differential Power Analysis (DPA) and related attacks. CRI’s solution
will protect INSIDE’s secure semiconductor products, which may use the
CRI patents for its contactless semiconductor security on contactless
cards, key fobs, mobile payment bridge products, and NFC secure elements
for mobile phones. INSIDE has delivered more than 100million “MicroPass”
chips containing operating system and application software for major
brands in the financial services industry. Cryptography Research has
been awarded a portfolio of approximately 50 patents covering
countermeasures to DPA attacks in banking, pay television, mass transit,
secure ID, and wireless telecommunications.

DCS Releases CardWizard easyPIN

Instant issuer Dynamic Card Solutions announced the availability of
“easyPIN” change solution that allows portable and remote changing of PINs.
“easyPIN” makes use of an Internet or phone connection and a small
unconnected handheld smart card reader that is issued by their financial institution.
Cardholders can simply insert their EMV card into the smart card reader
and follow the instructions that prompt them to change their PIN. This can be done
through the online banking website, interactive voice response (IVR) support, or an
optical interface. The flexible design of DCS’ easyPIN means
it can be integrated into issuers’ existing customer delivery channels such as
home banking, and the solution is also compatible with standard Two Factor
Authentication (2FA) functionality, such as MasterCard CAP & Visa DPA, ensuring that the
deployed readers provide a wide range of features to cardholders.