Utimaco's PCI-PIN certified key custodian service providing trusted POS crypto key operations
- Key Custodial Services
- PCI-PIN certified
- High Availability
Product Type:
As-a-serviceDelivery Time:
Key Benefits
Details
Our PCI-PIN certified service provides access to trained experts acting as key custodians for you. Executed in highly secure and geo-redundant data centers, the Utimaco staff is available 24/7 to reliably and securely execute on-demand cryptographic key operations for you: Key Generation, Key Distribution and Key Storage.
This makes it the better choice for all organization aiming to optimize their on-premises costs and workloads while benefiting from reliable security and compliance for their POS use cases such as POS key injection, PIN key generation and distribution, data encryption key generation and distribution or key block protection key (KBPK) generation.
Key Generation and Distribution
POS Key Generation as a Service provides secure payment key generation and distribution services.
It provides secure remote transfer of the payment keys to the point of their usage, whether it is your hardware depot, the acquirers’ facilities, or the actual POS terminal in the field.
Even the key migration and rotation from 3rd party vendor HSMs is included in this service, making it the perfect solution to release you from key custodial tasks related to your POS payment keys across a multi-vendor setup.
Key Storage
The reliable and transparent key storage capabilities of POS Key Generation as a Service are helping you not only to have full transparency on your key inventory but also enable secure key backup capabilities, ensuring reliable audit trails and helping you being fully prepared for disaster recovery (DR) to ensure the continuity of operations.
Certifications and Compliance
- PCI PIN
- PCI P2PE
- PCI DSS
- SOC2
- ISO27001
- ISO9001
- ISO14001
- NIST SP800-53
Hardware-Based Security
Based on hardware appliances with integrated HSM as Root of Trust
- Dedicated to secure key generation and storage inside a tamper-protected HSM
- Fully protecting cryptographic keys under AES 256 Bit encryption
- Hosted in Utimaco Datacenter
Subject matter experts carrying out POS payment-associated key management responsibilities including:
- Key Generation
- Key Escrow
- Key Inventory
- Key Exchange
- Key Storage
- Key Migration
- Key Rotation
- Key Export
- Key Distribution (e.g. to POS Devices)
- Key Custody
- Key Management
Hosting Information
Hosted in a highly secure datacenter providing:
- 24x7 onsite security personnel
- CCTV with 90-day backup
- Biometric / Photo badge access
- Crash-rated / Anti-climb gates
- Geo-redundancy