VeriShield Protect - PowerPoint PPT Presentation

1 / 25
About This Presentation
Title:

VeriShield Protect

Description:

Revolutionary technology that simplifies PCI ... VeriShield Protect Encryption Software protects Retailers by seamlessly encrypting ... PowerPoint Presentation ... – PowerPoint PPT presentation

Number of Views:126
Avg rating:3.0/5.0
Slides: 26
Provided by: Form173
Category:

less

Transcript and Presenter's Notes

Title: VeriShield Protect


1
VeriShieldProtect
Nowavailable on Vx Solutions!
  • Revolutionary technology that simplifies PCI DSS
    compliance with no system upgrades

2
Security Breaches In The News
3
Security Breaches In The News
4
Security Breaches In The News
5
Security Breaches In The News
6
The Challenge
Difficulty for retail organizations to meet and
retain PCI DSS security compliance
  • Contributing Factors
  • Too many points of failure
  • Audit oversight on complex networks
  • Monitoring the security level of POS systems is
    difficult and costly
  • Costly prevention methods

7
Acquirers Security Challenge
  • Monitoring and verification of compliance
  • 80 of identified compromises since Jan. 1, 2005
    have occurred at Level 4 merchants
  • Liability placed on acquirers to ensure Level 4
    merchants are compliant

8
Acquirers Security Challenge
Unauthorized use of terminal
An example of how a merchant can set up an
exposed network connection without consulting the
acquirer
9
Conventional Wisdom within the Payments Sector
You have to be an expert in a lot of areas to
protect your business today
10
Not anymore
11
Current day retail scenario
12
PIN pad
PLEASE SLIDE CARD
13
PIN pad
Full card track data traverses networkin the
clear until last connection to the processing
host.
TRANSACTIONPROCESSING
4512211313312112311331441414323232
14
PIN pad
What if the data couldbe encrypted at the
payment device and delivered through same
transaction channel without upgrade to current
system?
ENCRYPTION AT DEVICE?
Store ABack Office Server
Company Network Servers
Processing Host
Store AMultilane POS System
15
PIN pad secured by VeriShield Protect
Track Data is encrypted at PINpad in manner that
allows it to use current POS infrastructure.
VeriShield Protect delivers data in same format
as POS System is expecting.
ENCRYPTEDTRANSACTIONPROCESSING
The encrypted data is then decrypted at the
processing host.
00CAHG21!aajkd500fasdJ_at_!21
Store AMultilane POS System
16
VeriFones Vx 570
This solution isnow availableon Vx Solutions
PLEASESLIDE CARD
17
VeriFones Vx 570secured byVeriShield Protect
This solution isnow availableon Vx Solutions
ENCRYPTEDTRANSACTIONPROCESSING
00CAHG21!aajkd500fasdJ_at_!21
Transaction Data Encrypted and Secure
Processing Host
18
How Is This Accomplished?
298101 569982 218934 009321 677882 395864 212988 3
20023 983277 928383 012398 455781 395684 887154 76
0033
20017632108900331272 98740300023954232128 32398566
120907612778 55623210799095496331 6567882322435011
6785 23900934586793456821 54673122093459968312 780
01239248290434298 09123963364327496032 52919951005
333143465 91119923884252413148 0212595211017732018
7 93348955819021759690 12561963091370437047 081192
12884426940234
Track data is encrypted at the mag stripe reader
using Hidden TDES, a patented technology that
reformats the data in a manner that the POS
system network still receives the track data
format it was expecting
435688 760033 1588 08119212884426940234
BIN Routing
H-TDES
Last Four
Track Data Resident on Card
435688
1588
298101
20017632108900331272
Track Data encrypted withHidden Triple DES
(H-TDES)
19
Protecting Consumer Data
A N D
20
VeriShield Protect Components
  • VeriFone Component
  • VeriShield Protect Encryption Softwareprotects
    Retailers by seamlessly encrypting consumer card
    data before it enters the Retailers Point of Sale
    Systemand maintains that protection until it is
    safely outside of the merchants infrastructure,
    effectively shielding the merchant from the
    actual details of the consumer data.
  • Semtek Components
  • Decryption Appliance high performance decryption
    appliance.
  • CDMS provides merchants and acquirers with a
    real time understanding of their security status
    and risk. It is also designed to provide merchant
    processors a definitive real time view of their
    entire portfolio without having to rely on
    self-reporting of the merchants within their
    system.

21
Sustainable Security CDMS Overview
The VeriShield Protect solution incorporates
access to aCipher Device Metrics Server (CDMS)
that provides a real-time status and alert system
to monitor compliance of each and every
transaction as it occurs.
  • A highly sophisticated monitoring system
  • Security assurance and forensics for every card
    transaction within the enterprise
  • Delivered in real time

CDMS Dashboard
22
CDMS as Definitive Monitoring Tool
CDMS Key Features Why They Matter
  • Real Time vs. Everything ElseWhen a breach
    occurs, time-lag to awareness is the critical
    measure of survivability. Real-time means real
    mitigation. Real time means the Acquirer is the
    first to know.
  • Actionable Data vs. Foggy DataSecurity status
    should not be an argument. CDMS empirical
    data(vs. analytics) makes it crystal clear if
    you are secure or not secure.
  • Auditing vs. ReportingSecurity monitoring is no
    place for conflicts of interest. Compliance
    teams need reporting that is auditable to SAS 70
    standards.

23
The Real Costs of Security Breaches
  • A single lost, stolen, or compromised customer
    record costs your company exactly 197according
    to the Ponemon Institute, a privacy research firm
  • Fines associated with a compromise can equal
    25-35per account numberaccording to Retail
    Systems Research
  • 80 of credit card data breaches are tied to cash
    register and other POS devicesaccording to
    Gartner Inc.
  • A security breach can cost anywhere between 90
    and 305 per recordaccording to Forrester
    Research

24
VeriShield Protect The Benefits to You
  • Cardholder data is never exposed in the POS
    environmentSimplifies PCI DSS compliance
  • Significantly reduces impact of costly audits,
    prevention methods and potential breaches
  • No impact to current POS systemInstalling
    VeriShield Protect is transparent to the POSand
    does not require any software changes
  • No impact to cardholderDoes not require any
    additional steps or actions by the customer

25
Ensure your payment system is secure with
VeriShield Protect.
Write a Comment
User Comments (0)
About PowerShow.com