A partnership with Visionnaire allowed to implement hardware encryption in a cash machine network
CLIENT
Financial Sector Company
Financial Sector Company
AREA
Finance
PROBLEM
A company in the financial sector needed to comply with the security standards of two credit card operators, as well as the standards of an international bank, as the cash machines in that company’s nationwide network did not accept international cards, which caused inconvenience and loss of revenue.
SOLUTION
Visionnaire was a partner of the financial sector company in the development, through the evolving maintenance of a solution for managing self-service channels and complementary services from bank branches, and made it possible, with lower cost and greater speed, to implement 3DES encryption by hardware and software in cash machines. It also performed remote key management on the network and met the security standards of two credit card operators, as well as the standards of an international bank.
RESULTS
Customers of over 40 financial institutions were benefited with the improvement of this deployment in more than 20,000 cash machines spread in over 800 cities throughout Brazil, with a great reduction in the unavailability of terminals due to the encryption key problem.
TECHNOLOGY
Developed 100% in Java and based on XML configurations; adhering to Service-Oriented Architecture (SOA) concepts; Online Transaction Processing (OLTP) feature; Oracle database; WebSphere MQ; WebSphere Application Server and Rational Application Developer.
Detailed problem:
A company in the financial sector needed to comply with the security standards of two credit card operators, as well as the standards of an international bank, as the cash machines in that company’s nationwide network did not accept international cards, which caused inconvenience and loss of revenue.
Therefore, such company needed a technological partner that would work with software architecture, which would be used to develop an evolving maintenance process that would work from another solution from the same client that allows banks to make financial transactions available in different channels (cash machines, branches etc.)
It was necessary to implement a 3DES (Triple DES) encryption solution by hardware and software at cash machines and perform remote management of keys on the contracting company's network.
Note: client is described as a Financial Sector Company because it is not possible to reveal its name for contractual reasons of confidentiality.
Detailed solution:
In a development work carried out in partnership with Visionnaire, hardware encryption in 3DES (Triple DES) was implemented both at cash machines and in the solution for managing self-service channels and complementary services from bank branches, with initial Master Key remote load and dynamic exchange of Master Key and Working Key 1 (hardware) adapted for 3DES.
Visionnaire carried out the contracting company’s solution adequacy to the password encryption standard by hardware in 3DES with adherence to the PIN security requirements and adherence to the PCI 3DES requirement regarding the Master Key load.
Remote management of encryption keys was carried out by automating the key loading process at cash machines. The use of this technology made it possible to automate the process of loading the initial Master Key, eliminating the processes of generating envelopes and typing keys directly on the cash machine keyboard.
This process reduced operating costs due to the elimination of the typing of the cash machine key on the machine by the two custodians, necessary in the old process, and eliminated the possibility of failure of the old process, caused by the incorrect typing of some data in one of the envelopes in the machines. It also reduced the unavailability of cash machines due to a key problem.
