Encryption - Information Management Today

point-to-point-encryption-p2pe

Encryption

Black Friday and Cyber Weekend: Navigating the Tumultuous Waters of Retail Cybersecurity

Thales Cloud Protection & Licensing

NOVEMBER 20, 2023

The Indispensable Role of End-to-End Encryption in the Age of Mobile Wallets Mobile wallets and online transactions are now as commonplace as physical cash transactions. Today, using Point-to-Point Encryption (P2PE) isn't just a luxury; it's a necessity. For retailers, this poses a two-pronged challenge.

Retail

Retail Cybersecurity Financial Services Encryption

Is Your Chip Card Secure? Much Depends on Where You Bank

Krebs on Security

JULY 30, 2020

Newer, chip-based cards employ a technology known as EMV that encrypts the account data stored in the chip. The technology causes a unique encryption key — referred to as a token or “cryptogram” — to be generated each time the chip card interacts with a chip-capable payment terminal.

Security

Security Sales Encryption Risk

Join 55,000+

Insiders

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Webinars

Peak Performance: Continuous Testing & Evaluation of LLM-Based Applications

MORE WEBINARS

Trending Sources

PCI DSS: Which PCI SAQ is Right for My Business?

IT Governance

JULY 14, 2022

For merchants that don’t store card data in electronic format but use IP-connected POI (point-of-interaction) devices. For merchants that process cardholder data via POS (point-of-sale) systems or other payment application systems connected to the Internet. What is a PCI SAQ?

Computer and Electronics

Computer and Electronics Compliance Sales Paper

Webinars

Peak Performance: Continuous Testing & Evaluation of LLM-Based Applications

MORE WEBINARS

Leveraging tokenization services from the major card brands

Thales Cloud Protection & Licensing

MARCH 29, 2018

In the recent Thales eSecurity eBook, ‘ PCI Compliance and Data Protection for Dummies ’, we cover the main technologies that can be used, such as encryption and tokenization, to help with such efforts in protecting the payment prior to a successful authorization and secure storage of selected elements afterwards.

Encryption

Encryption Data breaches IoT Risk

Choose the right SAQ to demonstrate PCI DSS compliance

IT Governance

MARCH 21, 2018

For merchants that don’t store card data in electronic format but use IP-connected point-of-interaction (POI) devices. For merchants that process cardholder data via point-of-sale (POS) systems or other payment application systems connected to the Internet. SAQ P2PE-HW. For those that don’t fit into any of the above categories.

Compliance

Compliance Computer and Electronics Sales Paper

Expert Insight: Stephen Hancock

IT Governance

OCTOBER 30, 2023

It’s a relatively short SAQ, with only one more question than the shortest SAQ, P2PE [point-to-point encryption], and covering just 4 of the Standard’s 12 high-level requirements, so a good way of reducing the PCI DSS compliance burden for smaller merchants in particular. We sat down to chat to him.

Compliance

Compliance Risk Education Security

Hardware security still essential at the heart of the payments infrastructure

Thales Cloud Protection & Licensing

SEPTEMBER 6, 2018

Through the PCI documentation they have deemed that using software-based cryptography for all of these tasks could result in: Malware used to capture keys and sensitive data from server memory; Manipulation of PIN blocks in transit; and, The compromise of key-encrypting keys (used to secure cryptographic zones).

Security

Security Encryption Compliance Risk

PCI Security Standards Council Provides Mobile Payment Acceptance Guidance

Hunton Privacy

MAY 29, 2012

The Guidance offers merchants practical advice for partnering with a Point-to-Point Encryption (“P2PE”) solution provider and satisfying their PCI Data Security Standard compliance requirements in the context of mobile payment acceptance.

Encryption

Encryption Security Compliance Cloud

PCI Security Standards Council Issues Best Practices for Mobile Payment Acceptance Security

Hunton Privacy

SEPTEMBER 20, 2012

Encrypting data in accordance with the Payment Card Industry Data Security Standard (“PCI DSS”) prior to transmitting the data outside of the trusted execution environment. As we reported earlier this month, the Federal Trade Commission issued guidelines for mobile app developers.

Security

Security Encryption Risk Access

A guide to the PCI DSS’s vulnerability scanning and penetration testing requirements

IT Governance

MARCH 1, 2019

Organisations that handle payment card information are legally required to regularly scan and test their systems, but too few understand that these are separate things. Any organisations that process, transmit or store cardholder data must comply with the PCI DSS (Payment Card Industry Data Security Standard). What is vulnerability scanning?

Computer and Electronics

Computer and Electronics Compliance Risk Government

Point-of-Sale (POS) Security Measures for 2021

eSecurity Planet

FEBRUARY 8, 2021

Massive point-of-sale (POS) breaches continue to make headlines on a regular basis, and they can have a significant impact on consumers’ trust in a company and its brand. It’s a tough time to be a retailer. vSkimmer malware, a successor to Dexter, dates back to 2013. vSkimmer malware, a successor to Dexter, dates back to 2013.

Sales

Sales Retail Security Encryption

Black Friday and Cyber Weekend: Navigating the Tumultuous Waters of Retail Cybersecurity

Is Your Chip Card Secure? Much Depends on Where You Bank

Webinars

Trending Sources

PCI DSS: Which PCI SAQ is Right for My Business?

Webinars

Leveraging tokenization services from the major card brands

Choose the right SAQ to demonstrate PCI DSS compliance

Expert Insight: Stephen Hancock

Hardware security still essential at the heart of the payments infrastructure

PCI Security Standards Council Provides Mobile Payment Acceptance Guidance

PCI Security Standards Council Issues Best Practices for Mobile Payment Acceptance Security

A guide to the PCI DSS’s vulnerability scanning and penetration testing requirements

Point-of-Sale (POS) Security Measures for 2021

Stay Connected