Dubai-based Swiftch, a payment securing the first Visa Ready and MasterCard self-certified mobile card payment acceptance solution for merchants and acquirers throughout the United Arab Emirates (UAE), is using the Thales payShield 9000 hardware security modules (HSMs). UAE is highly developed in terms of IT infrastructure, internet and smartphone usage, and yet cash is still…
Gemalto’s SafeNet Luna EFT (Electronic Funds Transfer) Payment HSM (Hardware Security Module) now supports new standards from the major credit card networks for secure implementations of contactless payments via mobile phones.
In today’s CardFlash News Que: ACI (Celent); APPLE PAY (Pei Wei); MASTERCARD (India ActionAID); and GEMALTO (HSM).
CA-based InfoGard is now accredited by EMVCo to conduct Terminal Type Testing and will immediately begin offering Level 2 contact testing and pre-evaluation services. EMV pre-evaluation services include debug testing and compliance consulting. Additional EMVCo testing services are being planned to support its payment customers.
A new customer case study of Xpress Bill Pay’s use of Prime Factors’ EncryptRIGHT data protection and enterprise crypto key management capabilities has been released. Prime Factors encryption and tokenization product is well regarded in the payments industry.
Compass PlusCompass Plus announced that its open development payment platform, TranzAxis, has now been fully certified to support Futurex’s Excrypt SSP9000 hardware security modules (HSMs). This new partnership with Futurex, a provider of secure, robust, and cost-effective data encryption security solutions, has extended the list of HSMs now supported by the TranzAxis payment platform. Compass Plus’ distributor in the Latin American and Caribbean region, during the migration of Global Processing Centre in Antigua (GPC) to TranzAxis. The certification has enabled customers, including GPC, to utilise Futurex HSMs for EMV data preparation and the card issuance process, as well as the secure authorisation and communication of sensitive data for Visa, MasterCard and UnionPay EMV cards.
Thales will be showcasing its high assurance cryptographic solutions for protecting big data, public key infrastructures (PKIs), cloud and mobile payments at this year’s RSA Conference, San Francisco, February 24 – 28, 2014. As organizations increasingly rely on cryptography as part of their data protection strategy and to protect their critical systems, the trustworthiness of these crypto systems becomes paramount. This is particularly relevant in light of recent concerns over back doors, poorly implemented crypto systems, out of date algorithms, weak key management systems and the increasing burdens arising from privacy mandates. Thales can help organizations re-assess and re-evaluate their crypto security and key management infrastructure and deliver solutions that ensure their integrity and trustworthiness.
Acculynk announced that the European Patent Office granted Acculynk patent protection for the company’s propriety process for PIN based authentication over the Internet. The patent protects the mechanisms and processes behind Acculynk’s innovative PaySecure® product, a software-only service that allows consumers to pay for online purchases with their debit card and bank-issued PIN. Acculynk is the only global payment gateway that brings e-Commerce merchants PIN authenticated payments for debit or credit cards across some of the largest markets in the world. Currently the PaySecure solution is supported in 3 of the 5 largest PIN debit markets: USA, India and China. Globally Acculynk supports over two billion bank issued cards in its network.
From EMV migration to email protection and Public Key Infrastructures, REALSEC’s solutions enable US financial institutions to dramatically reduce the time of deployment from months to weeks, increasing security level and ROI. The use of cryptographic technologies in the banking and financial sector is both a regulatory requirement, as well as a customer requirement. Customers’ increasing concerns about identity theft and the latest security breaches nationwide are boosting the deployment of additional security measures to help protect customer data and transactions. To address todays’ needs, REALSEC offers a number of unique solutions to protect financial-related operations EMV migration, ATM/POS remote key loading, digital signature, etc.
YESpay, the latest member of the WorldPay Group, is now deploying its Omni-channel Point-to-Point Encrypted (PTPE) integrated payment service to its first few UK high-street retailers fully ¬accredited by WorldPay Streamline. The solution achieves card data encryption within the Ingenico IPP350 PEDs (PIN Entry Devices) and decrypts the critical card data at the YESpay payment gateway within HSMs (Hardware Security Modules). YESpay’s PTPE solution complies with security recommendations specified by Visa ‘Data Field Security’ Best Practices and Payment Card Industry Security Standards Council (PCI SSC). YESpay has engaged its QSA, FortConsult, to audit and validate the solution to PCI SSC which is expected to complete in first half of 2014.
Bluefin Payment Systems is set to introduce a PCI-validated Point-to-Point Encryption (P2PE) solution validated through qualified P2PE assessor, 403 Labs, LLC, in 4Q/13. The PCI P2PE Standard requires a PCI-approved point-of-interaction device (POI) and HSM (hardware security module) key management; software solutions are not currently eligible for P2PE validation. Bluefin’s P2PE technology can be implemented in retail POS systems, in call centers, and in mobile devices and will interface with the company’s PayConex platform. This provides security features such as tokenization, end-to-end encryption (E2EE) and transparent redirection.
Responding to increasing demand for mobile payments, e-security expert Cryptomathic has upgraded its EMV flagship issuing solution, CardInk, to enable customers to issue payment applications to smartphones and other mobile devices. The upgrade sees CardInk supporting MasterCard Mobile PayPass™ and Visa Mobile requirements. The ability to use a mobile device to make a near-field-communication (NFC) payment at the point-of-sale (POS) or to transfer funds remotely is gaining widespread popularity across the globe. The extended functionality of CardInk, Cryptomathic’s EMV data preparation solution, allows users to generate the personalisation data for mobile wallet credentials and to securely issue NFC payment applications to smartphones, using the same systems as when issuing physical payment cards.