Quickly and easily reduce your PCI scope
and protect your payment systems
Encryption
Enabling the encryption you need, where you need it.
The OLS Enhanced Payment Solution gives you the flexibility to implement the encryption technology that you need for your business including:
End-to-End Encryption
The PAN and SAD are encrypted at the POI with the payment instrument. The PAN/SAD information stays encrypted with a single processor-owned key from the POI to the merchant acquirer or back-end processor. This encryption can be hardware or software-based encryption. In this scenario, the encryption process (and any related tokenization) is owned and controlled by the merchant acquirer or back-end processor.
Point-to-Point Encryption
The PAN and SAD is encrypted at the POI with the payment instrument just like with E2EE; however, this process utilizes a single merchant-owned key from the POI to the first processing host/gateway which is outside of the merchant’s payment infrastructure. The PAN/SAD can be re-encrypted with a unique processor key prior to forwarding to the next processing host/gateway. As with E2EE, this encryption can be hardware or software-based. Unlike E2EE, ownership and control of the encryption process is shared between the merchant and the processing host/gateway.
Validated P2PE
The encryption must be hardware-based using an approved PTS device and software that restricts access to PAN/SAD information. Control processes within the five PCI-defined “domains” must be validated annually by a Qualified Security Assessor (QSA). A solution provider must administer the full program to ensure compliance of all “components” with the PCI-P2PE v2.0 standards.
Key Management / Encryption Translation
In an attempt to bolster security at the POS, merchants are being asked to manage multiple encryption keys within the PED based on service type, payment type, and processor. This microservice manages a single encryption key within the merchant’s PED to encrypt CHD/SAD, then performs decryption/encryption within the platform to convert the CHD/SAD to cipher text using the encryption key/methodology of the third party service, issuer, or processor.
Benefits of Encryption
Encryption is a critical component of any secure payments infrastructure. It can provide benefits beyond the obvious protection of data.
Reduced PCI Scope
The scope of a PCI examination is limited to the components in a given system that contain sensitive information. By encrypting this information and making it useless to fraudsters in the event of a breach can help reduce the PCI scope by removing the secure components from examination.
Relief From Breach Notification
In most states in the U.S., a business that has suffered a breach must notify anyone whose data was compromised. So, if you eliminate the ability to compromise sensitive data, you also reduce many of the costs associated with a typical data breach.
Methodologies
Encryption is a “must-have” technology in any data environment, but especially in the payments industry. It can also be utilized in a number of different ways including:
- Encryption of “at rest” data in a database, backup or other repository
- Encryption of the transport means of data such Transaction Layer Socket (TLS)
- Encryption of the data or payload that is to be transported from one device to another or one system to another
Tokenization
Protect and remove cardholder data from your systems
Powerful and flexible technology to protect cardholder data and your systems. OLS Tokenization is available as part of an Enhanced Payment Solution deployment or as a stand-alone solution. Whether you need to deploy tokenization or manage/migrate from an existing service, OLS Payments can help you get to where you need to be.
Card On File / Mobile Wallets
Provides convenience for customers by letting them store payments for later use.
Subscriptions and Recurring Billing
Secure and convenient management for automatic and recurring payments.
Permanent Tokens
Replace the PAN and reuse the token as often as necessary.
Supplied or Generated Tokens
Utilize existing or third party provided tokens or let our system generate them for you.
Token Per Transaction
Generate a token for each transaction where no storage is needed.
PCI Compliant Encryption
When data storage is needed, we apply fully compliant encryption to insure security.
It’s time for streamlined payments orchestration
OLS Payments gives retail technology leaders a streamlined payments processing system that:
- Prioritizes transaction security from the beginning
- Enables flexibility and efficiency with a modular design
- Supports future-ready and cost-effective scaling
Let’s talk! Receive a plan customized to your company’s challenges and goals by taking the next step.