Data that is encrypted and safeguarded is less likely to fall into the wrong hands.
In a card-not-present transaction, the card used for payment does not come in contact with the payment terminal, and is not physically presented to the merchant at checkout. Payments made remotely, such as those made when online shopping, or when using an online payment system, are also included in this category. In these instances, the payment card has not been swiped, inserted, or tapped into a card reader.
Naturally, without seeing or checking the card, business owners are vulnerable to credit card fraud. Card-not-present fraud happens when an impostor uses another person’s compromised card information to make a purchase remotely.
By ensuring PCI compliance, encrypting sensitive data, and asking for extra authentication, cardholder data will remain protected.
Applications for Secure “Card Not Present” (CNP) Transactions
Multi Factor Authentication
Enables certificate-based authentication to authenticate employees, devices, machines, IoT endpoints or payment transactions – the use of an HSM as hardware Root of Trust ensures maximum security.
Public Key Infrastructure
Establishes trust relationships between connected entities such as devices, networks, applications and users. PKI is a long-proven technology providing the foundation for secure authentication, confidentiality in communication, and the integrity of data generated and exchanged.
