HSM for high-performance payments
Payment fraud is a major cause of financial losses and reputational damage for financial institutions. There is a growing need for reliable and flexible protection solutions to be integrated into payment systems.
In close collaboration with major international banking networks, financial institutions and strategic partners, Atos developed and designed Trustway Crypt2pay, a range of hardware security modules that meets financial industry requirements.
HSM Trustway Crypt2pay
Follow or contact us:
Full compliance with payment standards
Trustway Cryp2pay offers specific cryptographicfunctionalities to secure smart cards, process payments and comply with payment industry standards:
FIPS 140-2 Level3+*, SAFIRE (GCB), PCI HSM, EMV 4.2 CPA, Visa VIS 1.6.0, MasterCard Mchip, AMEX CSC™, 3-D Secure™, PayPass, PayWave, DUKPT 2009 & 2017, TR31 2018, TR34 2012, HCE Cloud Based Payment, LoRa.
*CHR Cryptographic module is FIPS 140-2 level 3+ approved
Dual purpose for greater data protection
Trustway Crypt2pay also exposes general purpose functions through standard interfaces to cover all protection needs for stored data (database encryption) or exchanged data (protection of SSL/TLS keys) while meeting PCI PTS requirements.
Atos has over 30 years of experience in financial security, We work with numerous banking networks and take an active role in implementing comprehensive payment systems with renowned software publishers.
Atos has built a unique body of expertise in information systems security, bringing together consulting and systems integration expertise and an in-depth understanding of corporate security technologies.
Trustway Crypt2pay, secure payment and financial transactions
Payment systems evolve to keep pace with a changing economy
Customer demand is the main driver behind new payment options, from mobile to instant payment. With the rise of e-Commerce and the fact that cash is no longer king, businesses need a convenient solution to improve customer satisfaction.
The speed of transactions is also changing the way financial transactions are made. Organizations and consumers are looking for low responses times, meaning payment system availability must be high and the information must always be accurate.
Ultimately, security is at the heart of the payment ecosystem. To ensure the highest levels of security in this very complex and changing ecosystem, transactions rely on regulations and standards (like EMV, PCI, HCE architecture and third-party wallet security).
In close collaboration with major international banking networks, financial institutions and strategic partners, Atos has designed the Trustway Crypt2pay hardware security module to help secure the data in transit between all actors and meet today’s market requirements.
Trustway Crypt2pay: A high-performance encryption device for transactions
Trustway Crypt2pay is designed to protect transactions (contact or contactless) carried out with a bank or private card, and all operations made in card processing centers. Already chosen by several major European banks, Trustway Crypt2pay brings the security required in many card applications:
- Transaction acquisition
- EMV and magnetic stripe authorization (VISA, Mastercard, American Express, UnionPay)
- PIN management and PIN printing
- Applications for private cards
- 3-D SecureTM issuance and authorization
- EMV and magnetic stripe data preparation
- Dynamic CVV verification
- HCE (Host Card Emulation) solutions for cloud-based payments
- Key management centre
The cryptographic services offered by Trustway Crypt2pay also include transaction security needs for connected smart devices through dedicated macro commands:
- Smart metering transactions
- Securing the Internet of Things (IoT)
The Trustway Crypt2pay product range uses the latest cryptographic technology. It adapts to different uses with a high level of reliability. New functions can be easily uploaded on the HSM to ensure upgrading to the latest market evolutions.
Trustway Crypt2pay is a universal module available in low, medium and high speed, offering a large variety of options and connections.
In all industries the requirements of cryptographic key management are becoming increasingly complex. Ensure that each key is in the right place at the right time for the right use is a constraint for many organizations, such as card issuing banks, transport infrastructure or identity cards or passports issuers.
The proliferation of applications and HSMs requires the establishment of centralized tools for key management and harmonization of procedures for key management. Atos KMC solution has been designed to manage keys for banks and large organizations.
Atos KMC solution offers several import/export formats to exchange keys with partners and includes key distribution to target HSM from Atos (Trustway Crypt2pay) and other vendors. KMC relies on Trustway Crypt2pay HSM to ensure a permanent protection of keys. The key introduction device is connected directly to the HSM of the KMC for entering PINs and key components, in order to provide a trusted path for the introduction of secrets.
SECURITY, FLEXIBILITY, SCALABILITY
► Tamper resistant design: SAFIRE (GCB), CHR Cryptographic module is FIPS 140-2 level 3+ approved, PCI HSM certified
► Several coprocessor speeds: 100 to 3600 PVV / s, 100 to 1200 RSA2048 / s
► Multi-purpose HSM with different customizable packages
► Proprietary interface: TLV messages
► Standard interfaces: PKCS#11, Microsoft CNG, EKM
► EMV 4.2 CPA
► Visa VIS 1.6.0
► MasterCard Mchip
► AMEX CSC™
► 3-D Secure™
► PayPass & PayWave
► DUKPT 2009 & 2017
► TR31 2018
► TR34 2012
► HCE Cloud Based Payment
► DES: Triple DES
► RSA: Keys up to 4096 bits
► PKCS1.5 and PSS signature
► SHA-1, SHA2, SHA3
► AES: 128, 192 and 256 bit keys
► ECDSA: ANSI and Brainpool named curves
► Performance Crypt2pay XT: up to 3600 PVV tps
► Voltage: 85-264 Vac
► Network: 3 x 1 Gb
►2 Hot Plug PSU
► Frequency: 47-63 Hz
► Humidity: 30% – 70% non condensing
► Operating temperature: 10/45°C
► Dimensions Crypt2pay XT: 442x346x76mm
► Weight Crypt2pay XT: 14 kg
HSM for IoT
Discover how to meet the security requirements of the distribution system operators standards. These solutions integrate security provisions to protect the communication of metering data and meter settings.
Cryptographic Data Preparation Device
Cryptographic Data Preparation Device for EMV card personalization elements to generate and secure EMV card personalization elements in your infrastructure
Factsheet: Trustway Crypt2pay
Hardware security module (HSM) for secure transactions
Trustway Crypt2pay is a high-performance encryption device designed to protect transactions carried out with a bank or private card (contact or contactless) and all operations made in card processing centers.
Key management centre (KMC) for secure transactions
The proliferation of applications and HSMs requires the establishment of centralized tools for key management and harmonization of procedures for key management. Atos’s KMC solution has been designed to manage keys for banks and large organizations.
Data security: Choosing the right path through compliance
Compliant, flexible and innovative, our range of hardware security modules provides companies and critical infrastructures with the reliability of an innovative and robust architecture in compliance with strict security demands.
Solving key security challenges of new payment technologies
Fraud, card data security, interoperability … To enable consumers to use new payment technologies, issuers must meet key security challenges. Learn what a HSM can bring to support these evolutions.
Other HSM products
Trustway Proteccio NetHSMTrustWay Proteccio NetHSM is a hardware security module (HSM) providing software solutions with a high-performance and highly secure environment
Visit product page >
Trustway Proteccio OEMHSM Trustway Proteccio OEM provides editors and integrators with an open and secure hardware platform for designing certified and scalable cryptographic appliances.
Visit product page >
Trustway DataProtectTrustway DataProtect is a data encryption solution to guarantee data security and the control on the data access
Visit product page>