HSM – Hardware Security Module

Data protection for companies and critical infrastructures

HSM Trustway crypt2pay

When it comes to payment transactions, security is one of the most important issues.

Banks and financial institutions may suffer considerable financial losses in case of fraud. Reliable and flexible protection solutions are required which integrate into payment systems.

In close collaboration with major international banking networks, financial institutions and strategic partners, Atos has designed a range of Hardware Security Modules called Trustway crypt2pay that meet today’s market requirements. Beyond payment transactions, the functions of trustway crypt2pay are extended to secure transactions with other cards in the fields of health or identity, and other types of equipment, such as smart meters or connected objects.

Carrier-grade VoIP switch

Expertise

Atos has built up a unique body of expertise in information systems security, bringing together consulting and systems integration expertise and an in-depth understanding of corporate security technologies.

Banking specialist

With more than 30 years in financial security, Atos securise numerous banking networks and is takes an active part in implementing comprehensive payment systems with renowned software publishers.

Full compliance

FIPS 140-2 Level3+*, EMV 4.2 CPA, Visa VIS 1.4.0, MasterCard Mchip 4.0, AMEX CSC TM, 3-D SecureTM, PayPass, PayWave, DUKPT 2009 f TR31, HCE Cloud Based Payment, LoRa. *CHR Cryptographic module is FIPS 140-2 level 3+ approved

Trustway crypt2pay is a high performance encryption device designed to protect transactions, carried out with a bank or private card, contact or contactless, and all operations made in card processing centers.

Already chosen by several major European banks, Trustway crypt2pay brings the security required in many card applications:
Transaction acquisition
EMV and magnetic stripe authorization (VISA, Mastercard, American Express, UnionPay)
PIN management & PIN printing
Applications for private cards
3-D SecureTM issuance and authorization
EMV and magnetic stripe data preparation
Dynamic CVV verification
HCE (Host Card Emulation) solutions for Cloud Based Payment.
Key Management Centre.

The cryptographic services offered by Trustway crypt2pay also cover transaction security needs for connected smart devices through dedicated macro commands:
Smart metering transactions
Securing the Internet of Things (IoT)

The Trustway crypt2pay product range uses the latest cryptographic technology. It adapts to different uses with a high level of reliability. New functions can be easily uploaded on the HSM to ensure upgrading to the latest market evolutions.

In addition, Trustway crypt2pay integrates general purpose functions accessible through standard interfaces to cover all needs to protect stored data (database encryption) or exchanged data (protection of SSL/TLS keys) and meet PCI DSS requirements.

Trustway crypt2pay is a universal module available in low, medium and high speed, offering a large variety of options and connection.

In all industries the requirements of cryptographic key management are becoming increasingly complex. Ensure that each key is in the right place at the right time for the right use is a constraint for many organizations, such as card issuing banks, transport infrastructure or identity cards or passports issuers.

The proliferation of applications and HSMs requires the establishment of centralized tools for key management and harmonization of procedures for key management. Atos KMC solution has been designed to manage keys for banks and large organizations.

Atos KMC solution offers several import/export formats to exchange keys with partners and includes key distribution to target HSM from Atos (crypt2pay) and other vendors. KMC relies on Trustway crypt2pay HSM to ensure a permanent protection of keys. The key introduction device is connected directly to the HSM of the KMC for entering PINs and key components, in order to provide a trusted path for the introduction of secrets.

SECURITY, FLEXIBILITY, SCALABILITY

Tamper resistant design: MEPS 2 approved, CHR Cryptographic module is FIPS 140-2 level 3+ approved, PCI HSM certified
Several coprocessor speeds: 90 PVV / 200 PVV / 2000 PVV
Multi-purpose HSM with different customizable packages
Proprietary interface: TLV messages
Standard interfaces: PKCS#11, Microsoft CNG, EKM

FULL COMPLIANCE

EMV 4.2 CPA
Visa VIS 1.4.0
MasterCard Mchip 4.0
AMEX CSC
3-D Secure
PayPass
PayWave
DUKPT 2009
► TR31
HCE Cloud Based Payment
► LoRa

CRYPTOGRAPHY

DES: DES and triple DES
RSA: Keys up to 4096 bits
PKCS1.5 and PSS signature
SHA-1, SHA2
HMAC
AES: 128, 192 and 256 bit keys
► ECDSA: ANSI and Brainpool named curves
DSA: Keys up to 3072 bits

TECHNICAL FEATURES

Performance: 90 – 200 –2000 PVV tps
Voltage: 85-264 Vac
Frequency: 47-63 Hz
Humidity: 30% – 70% non condensing
Operating temperature: 10/45°C f

Related resources and actuality

Factsheet Trustway crypt2pay

Hardware Security Module (HSM) for secure transactions

Trustway crypt2pay is a high performance encryption device designed to protect transactions, carried out with a bank or private card, contact or contactless, and all operations made in card processing centers.

Factsheet KMC

Key Management Centre (KMC) for secure transactions

The proliferation of applications and HSMs requires the establishment of centralized tools for key management and harmonization of procedures for key management. Atos KMC solution has been designed to manage keys for banks and large organizations.

Newsroom

The « Assises de la Sécurité »

October 11-14th 2017, Monaco
Meet us on the Atos-Bull booth n°11

Partner program

Private zone for customers and partners

Bull support consists of an international team of experts who will help you get optimal use out of our products in your specific environment every day.

…..

Other HSM products

Trustway Proteccio NetHSM

TrustWay Proteccio NetHSM is a hardware security module (HSM) providing software solutions with a high-performance and highly secure environment
Visit product page >

TrustWay Proteccio OEM

HSM TrustWay Proteccio OEM provides editors and integrators with an open and secure hardware platform for designing certified and scalable cryptographic appliances.
Visit product page >

Interested in our HSM payment Trustway crypt2pay?