Cryptosec Payment HSM offers a simplified migration experience, incorporating a command set compatible with major HSM vendors
Cryptosec Payment HSM provides unparalleled security for payment transactions. Featuring tamper-responsive hardware, it ensures maximum protection for sensitive data. Additionally, it supports high availability and load balancing through external load balancers, guaranteeing uninterrupted service reliability.
Product Type:
PlatformDelivery Time:
Key Benefits
Details
Simplified Migration
Cryptosec Payment HSM offers a simplified migration experience, incorporating a command set compatible with major HSM vendors. Designed to protect transactions across various payment channels (ATMs, TPVs/POS, mobile banking, etc.), it ensures the security of diverse credit and debit card transactions.
High security and availability
Cryptosec Payment HSM provides unparalleled security for payment transactions. Featuring tamper-responsive hardware, it ensures maximum protection for sensitive data. Additionally, it supports high availability and load balancing through external load balancers, guaranteeing uninterrupted service reliability.
Specifications
- PCI PTS HSM v3.0 certified
- All banking functions and algorithms included, no hidden additional costs
- Used by financial institutions around the world
- Quick and easy integration with any financial application
- Complies with ANSI, ISO, and PCI/DSS standards
- Can be easily integrated into any bank environment, complementing existing implementations, and is operable alongside other HSM vendors.
- EMV commands available for smartcard, contactless, and mobile transactions
- New standard functions included within the maintenance contract at no additional cosl
- Possibility of adding additional features on demand
- Maximum security of transactions, more protection, and keys custody (Tamper Responsive)
- Smart card reader, which provides load security of master keys of external origin
- Capacity to serve up to 2,000 simultaneous requests
- Monitoring through SNMP protocol
- Secure access for remote console for HSM administration, monitoring, and supervision.
Banking commands and functions
Support payment cards:
- PIN verification functions and smartcard for VISA and MasterCard.
- EMV 3.X and 4.X transactions and messaging, including scripts of encryption and digital signatures: DAC and DN, ARQC and ARPC functions and PIN change.
- Integration with all major types of authorization of payments and applications software.
PIN code functions:
- Generation, translation and verification.
- PIN-offset calculation.
- PIN codes export.
- Blind envelopes printing.
- Calculation and verification of validation codes (CVV/CVC, dCVV/CVC3, CSC, etc.).
EMV functions:
- Encryption and signature script.
- PIN change.
- DAC and IDN calculation and validation.
- ARQC verification and ARPC generation.
Other features included:
- Generation and verification of keys to wallet and transport applications.
- Management of Toll Motorway.
- Message security: MAC generation and validation using the algorithm defined by the ANSI X9.9 Financial Institution Message Authentication standard.
- RSA key generation: signature and verification of data with RSA public key up to 4,096-bit
- MK (Master Key) storage on smart cards (ISO 7816).
- Keyblock support, PCI-certified
Supported algorithms
Symmetric key encryption:
- DES, TDES2 and TDES3
- AES and AES-GCM with key length 128, 192, 256 bits
Asymmetric key encryption:
- RSA with key length from 512 to 4,096 bits
Hash functions:
- MD5 - SHA-1 and SHA-2
Key authentication:
- HMAC - CMAC
- Key generation through a random number generator according to SP800-90A, SP800-90B, SP800-90C
Key Derivation Algorithms:
- DUKPT – ZKA – PBKDF2