HSM – Hardware Security Module

Ensuring safer financial transactions

HSM for high-performance payments

Payment fraud is a major cause of financial losses and reputational damage for financial institutions. There is a growing need for reliable and flexible protection solutions to be integrated into payment systems.

In close collaboration with major international banking networks, financial institutions and strategic partners, Atos developed and designed Trustway Crypt2pay, a range of hardware security modules that meets financial industry requirements.

Atos cybersecurity Trustway Crypt2payHSM Trustway Crypt2pay

Follow or contact us:
Linkedin | Twitter

Cybersecurity-Shield-Lock yellow


Full compliance with payment standards


Trustway Cryp2pay offers specific cryptographicfunctionalities to secure smart cards, process payments and comply with payment industry standards:

FIPS 140-2 Level3+*, SAFIRE (GCB), PCI HSM, EMV 4.2 CPA, Visa VIS 1.6.0, MasterCard Mchip, AMEX CSC™, 3-D Secure™, PayPass, PayWave, DUKPT 2009 & 2017, TR31 2018, TR34 2012, HCE Cloud Based Payment, LoRa.
*CHR Cryptographic module is FIPS 140-2 level 3+ approved


Dual purpose for greater data protection


Trustway Crypt2pay also exposes general purpose functions through standard interfaces to cover allprotection needs for stored data (database encryption) or exchanged data (protection of SSL/TLS keys) while meeting PCI PTS requirements.



Domain expertise


Atos has over 30 years of experience in financial security, We work with numerous banking networks and take an active role in implementing comprehensive payment systems with renowned software publishers.


Technical expertise


Atos has built a unique body of expertise in information systems security, bringing together consulting and systems integration expertise and an in-depth understanding of corporate security technologies.

Trustway Crypt2pay, secure payment and financial transactions

Payment systems evolve to keep pace with a changing economy

Customer demand is the main driver behind new payment options, from mobile to instant payment. With the rise of e-Commerce and the fact that cash is no longer king, businesses need a convenient solution to improve customer satisfaction.

The speed of transactions is also changing the way financial transactions are made. Organizations and consumers are looking for low responses times, meaning payment system availability must be high and the information must always be accurate.

Ultimately, security is at the heart of the payment ecosystem. To ensure the highest levels of security in this very complex and changing ecosystem, transactions rely on regulations and standards (like EMV, PCI, HCE architecture and third-party wallet security).

In close collaboration with major international banking networks, financial institutions and strategic partners, Atos has designed the Trustway Crypt2pay hardware security module to help secure the data in transit between all actors and meet today’s market requirements.

Trustway Crypt2pay: A high-performance encryption device for transactions

Trustway Crypt2pay is designed to protect transactions (contact or contactless) carried out with a bank or private card, and all operations made in card processing centers. Already chosen by several major European banks, Trustway Crypt2pay brings the security required in many card applications:

  • Transaction acquisition
  • EMV and magnetic stripe authorization (VISA, Mastercard, American Express, UnionPay)
  • PIN management and PIN printing
  • Applications for private cards
  • 3-D SecureTM issuance and authorization
  • EMV and magnetic stripe data preparation
  • Dynamic CVV verification
  • HCE (Host Card Emulation) solutions for cloud-based payments
  • Key management centre

The cryptographic services offered by Trustway Crypt2pay also include transaction security needs for connected smart devices through dedicated macro commands:

  • Smart metering transactions
  • Securing the Internet of Things (IoT)

The Trustway Crypt2pay product range uses the latest cryptographic technology. It adapts to different uses with a high level of reliability. New functions can be easily uploaded on the HSM to ensure upgrading to the latest market evolutions.

Trustway Crypt2pay is a universal module available in low, medium and high speed, offering a large variety of options and connections.

In all industries the requirements of cryptographic key management are becoming increasingly complex. Ensure that each key is in the right place at the right time for the right use is a constraint for many organizations, such as card issuing banks, transport infrastructure or identity cards or passports issuers.

The proliferation of applications and HSMs requires the establishment of centralized tools for key management and harmonization of procedures for key management. Atos KMC solution has been designed to manage keys for banks and large organizations.

Atos KMC solution offers several import/export formats to exchange keys with partners and includes key distribution to target HSM from Atos (Trustway Crypt2pay) and other vendors. KMC relies on Trustway Crypt2pay HSM to ensure a permanent protection of keys. The key introduction device is connected directly to the HSM of the KMC for entering PINs and key components, in order to provide a trusted path for the introduction of secrets.


Tamper resistant design: SAFIRE (GCB), CHR Cryptographic module is FIPS 140-2 level 3+ approved, PCI HSM certified
Several coprocessor speeds: 100 to 3600 PVV / s, 100 to 1200 RSA2048 / s
Multi-purpose HSM with different customizable packages
Proprietary interface: TLV messages
Standard interfaces: PKCS#11, Microsoft CNG, EKM


Visa VIS 1.6.0
MasterCard Mchip
3-D Secure™
PayPass & PayWave
DUKPT 2009 & 2017
TR31 2018
TR34 2012
HCE Cloud Based Payment


DES: Triple DES
RSA: Keys up to 4096 bits
PKCS1.5 and PSS signature
AES: 128, 192 and 256 bit keys
ECDSA: ANSI and Brainpool named curves


Performance Crypt2pay XT: up to 3600 PVV tps
Voltage: 85-264 Vac
Network: 3 x 1 Gb
2 Hot Plug PSU
Frequency: 47-63 Hz
Humidity: 30% – 70% non condensing
Operating temperature: 10/45°C
Dimensions Crypt2pay XT: 442x346x76mm
Weight Crypt2pay XT: 14 kg

Related products

HSM for IoT

Discover how to meet the security requirements of the distribution system operators standards. These solutions integrate security provisions to protect the communication of metering data and meter settings.

The HSM for IoT

Cryptographic Data Preparation Device

Cryptographic Data Preparation Device for EMV card personalization elements to generate and secure EMV card personalization elements in your infrastructure

CDP Device

Related resources

Atos cybersecurity Trustway HSM secure transactions

Factsheet: Trustway Crypt2pay

Hardware security module (HSM) for secure transactions

Trustway Crypt2pay is a high-performance encryption device designed to protect transactions carried out with a bank or private card (contact or contactless) and all operations made in card processing centers.

Factsheet: KMC

Key management centre (KMC) for secure transactions

The proliferation of applications and HSMs requires the establishment of centralized tools for key management and harmonization of procedures for key management. Atos’s KMC solution has been designed to manage keys for banks and large organizations.

Brochure: HSM

Data security: Choosing the right path through compliance

Compliant, flexible and innovative, our range of hardware security modules provides companies and critical infrastructures with the reliability of an innovative and robust architecture in compliance with strict security demands.

Disruption in the payment ecosystem webinar


Solving key security challenges of new payment technologies

Fraud, card data security, interoperability … To enable consumers to use new payment technologies, issuers must meet key security challenges. Learn what a HSM can bring to support these evolutions.

Other HSM products

Trustway Proteccio NetHSM

TrustWay Proteccio NetHSM is a hardware security module (HSM) providing software solutions with a high-performance and highly secure environment
Visit product page >

Trustway Proteccio OEM

HSM Trustway Proteccio OEM provides editors and integrators with an open and secure hardware platform for designing certified and scalable cryptographic appliances.
Visit product page >

Trustway DataProtect

Trustway DataProtect is a data encryption solution to guarantee data security and the control on the data access
Visit product page>

Interested in the Trustway Crypt2pay HSM for payments?