Product: TransKrypt Security Server
Company: NewNet Communication Technologies LLC
NewNet Communication Technologies LLC, a telecom solutions provider established in 1989 and headquartered in Chicago, added TransKrypt Security Server (TransKrypt) to its NewNet Secure Transaction (NST) suite, a line of payment security systems designed to protect transaction data.
NewNet said it has deployed on-site, hosted, cloud and managed global communications solutions to millions of users in more than 90 countries, and its NewNet Secure Transaction Portfolio transports an estimated one out of every five payment transactions.
TransKrypt combines point-to-point encryption (P2PE) with secure host hardware modules
"Encrypting cardholder sensitive data and tokenization in transit and at rest is being adopted more than ever, even with the U.S. transitioning to EMV," said Tai-Kei Cheung, President, Secure Transactions at NewNet. "NewNet Secure Transactions offers a format preserving solution that meets and exceeds payments industry guidelines."
The growth of mobile and broadband consumption has led to higher transaction volumes; NewNet views advanced data protection as a critical component of network security strategy. POS devices, especially non-SSL [secure sockets layer] dial terminals that transmit cardholder data over public networks, require multilayered security. At minimum, data must be encrypted from card entry and tokenized; device certificates must also be verified. "Basic cardholder data protection is insufficient protection against cyberattacks, and the industry must exceed those requirements," Cheung said. The company affirmed that its TransKrypt Security Server addresses these critical requirements.
TransKrypt's P2PE supports data encryption from POS terminals, reducing the scope of the Payment Card Industry Data Security Standard in the cardholder data environment. P2PE solutions are also required to use secure cryptographic devices such as host HSMs to encrypt and decrypt payment card data and to store and manage cryptographic keys. The TransKrypt HSM is FIPS 140-2 compliant; its physical and logical boundaries are designed to protect cryptographic keys, which are immediately cleared in the event of unauthorized access.
TransKrypt can be used to generate a base derivation key (BDK) for each acquirer and merchant. Each BDK is stored in the HSM and cannot be retrieved by the system. A BDK can also generate an initial phase encryption key (IPEK) for each POS terminal. POS devices receive each IPEK securely, using each IPEK to generate a unique encryption key to encrypt every payment transaction. Additional security features include:
TransKrypt can be integrated with other NewNet Secure Transaction solutions to securely transport and route encrypted data to and from POS devices and authorization hosts. All systems are equipped with integrated server hardware, HSM hardware, application software and built-in redundancy. Multiple configuration options are available, including customization according to the unique needs of enterprise-scale client organizations, the company stated.
The Green Sheet Inc. is now a proud affiliate of Bankcard Life, a premier community that provides industry-leading training and resources for payment professionals. Click here for more information.
Notice to readers: These are archived articles. Contact names or information may be out of date. We regret any inconvenience.Prev Next