EMVCo Reports Progress With EMV Deployments

  
     

 

Prepaid Cards Are A Fast Growing Payment Sector

  
     

 

Card Product Innovation Is Key To Banks' Growth

 
     

 

Banks Integrating Payments To Simplify Workflow

  
     

 

Banks Seeking New Payments Revenue Streams

  
     

 

EMV Cards Will Increase Self-Service Payments

  
     
     


Customer Select PIN Solution for Banks

iTxCSP is the Next Generation Customer Select PIN Solution for Banks. It is an end-to-end solution that supports Triple DES and EMV enabled read/Write formats and certified devices.

iTxCSP resides within the bank’s current environment that supports other card based applications such as ATM and POS. It utilizes Hardware Security Modules (HSM) to perform secure cryptographic operations with end-to-end security in mind.

Highlights:

  • Support new card based security standards, based on the 3DES and EMV formats and certified VISA PED read/write Device
  • Allow in-branch card refresh service that enables the bank to repair or reissue a new card on site and in a real-time environment
  • Enables the customer to reset their PIN during normal business hours and to immediately use their new PIN for all PIN based transactions
  • Adoption of XML as message interface to terminal
  • Choice of New or existing Teller Terminal for the Front End application
  • Complete End-to-End Application that is platform and infrastructure independent
  • Solution integrates easily with host databases
  • Security interfaces to solution is customizable (e.g. biometric interface for teller authentication)

iTxCSP Solution Overview:

The solution consists of a set of hardware devices to be installed at the Bank Branches (Front-End) and a software application to be installed on the central system (Back-End).

The Front-End components are the following:

  • A secure PINPad with an integrated motorized hybrid (magstrip and chip) reader/encoder
  • A new teller terminal with an integrated modem and optional integrated finger-print recognition device. Or…..
  • Existing bank teller terminal that links up through the bank network infrastructure

The teller terminal is a teller-facing device and the PINPad is a customer-facing device. The teller terminal and the PINPad contain the necessary customized software to support the functional requirements of the solution. The teller terminal is connected to the PINPad via RS232/USB Serial port. The teller terminal connects to the backend via the existing dial-up connection or thru TCPIP for all online transaction processing.

The communication between the teller terminal and the Back-End is secured by encryption and MACs using a set of distinct communication keys established when the Front-End “sign’s-on” to the Back-End. The encryption and MACing is done on both sides i.e. full duplex.

Transactions performed by the Customer may optionally be authenticated by the Teller using authorization passwords or “finger-prints” depending on the options chosen.

The Back-End components are the following:

  • CSP Application (CSPA),
  • SSP application (SSPA) and
  • One or more HSMs

The CSPA contains all the logic to authenticate requests from the Front-Ends, validate them and process them. When necessary, the CSPA communicates with the SSPA and external host systems to process the required transaction. The CSPA also provides a “Store-and-Forward” or “SAF” function to update the Host database in case the communication link with the Host system is down.

The CSPA also provides a UI for the Bank Staff to configure and setup the CSPA.

The CSPA supports the following functions:

  • Issue of New Card (with and without Account Number on Card)
  • Change PIN in real-time (i.e. changed PIN is reflected in the Host database in real-time)
  • Re-encode Magnetic Stripe
  • Reporting of transactions and exceptions
  • Batch file update to the Host of transactions collected during the SAF
  • Full logging of all transactions
  • Initialization, Generation and Distribution of Keys

The SSPA will leverage Banks HSM to provide:

  • The security framework and
  • The key block features are used to ensure that all transactions between the CSP device and the Host system are conducted in a secure environment and shall remain entirely invisible throughout the transactions stream – from device to host application.

Key Benefits:

  • Provide new front-end infrastructure for immediate deployment or replacement of current PIN Entry and Card Encoder Hardware Device at the front-end. The new device supports the current specification (a.k.a. 1DES) as well as enabled to accept new format 3DES and process EMV Cards
  • Deployable as a new application to support the new “front-end” devices; or replace the back-end application with a solution that can support the new “front-end” devices with the following key requirements:
    • Support all the on-line and batch functions required by the new device such as Change PIN, Issue New Card, Re-Encode Old Card, etc
    • Support connectivity to Back-end Card Management Hosts
    • Support connectivity to HSM
    • Support direct connectivity of front-end CSP Terminals over dial-up connection or Bank teller terminal through IP connection
    • Support administration functions such as Manage CSP Terminal, Manage User, Manage Teller, Configure Time Zone, Manage Host Update Batch
  • Flexible applications development and is deployable within all open environments that are based on industrial standards. Specific versions that leverages platform specific environmental strength for the back-end applications are also available i.e. HP Non-Stop Server.
  • A full end-to-end turn-key solution service including all front-end hardware and software components for the Branch, all the software for the back-end to run on specify platform and professional services for installation, host-integration, training, roll-out and support is available from one source.

 Copyright © i-TransAct Private Limited.                                                         For information, please contact the Webmaster.