31 October 2014

E-payment consortium publishes draft 3DES specification

31 July 2002  |  3575 views  |  0

An e-payment consortium established by ACI Worldwide, Diebold, Thales e-Security and VeriFone has published a draft security specification proposing the first global interoperable method of triple DES session key management.

3DES is a key encryption algorithm designed to prevent fraud for PIN-based debit transactions initiated at ATMs and POS terminals. While standards currently exist for 3DES master key management and 3DES DUKPT (Derived Unique Key Per Transaction), there is a lack of standards for session key management. Without standards, each vendor is required to develop proprietary implementations, placing an added interoperability burden on the systems that must transport session keys.

The e-payment consortium is working to create a global 3DES specification to increase/enhance interoperability between each element of an end-to-end payment solution from the host software, to host security modules and automated teller machines (ATMs) and point-of-sale (POS) terminals.

The consortium intends to work with leading card associations, other vendors and industry standards organisations in the United States and internationally to finalise and adopt the specification.
KeywordsE-COMMERCE

Comments: (0)

Comment on this story (membership required)
Log in to receive notifications when someone posts a comment

Finextra news in your inbox

For Finextra's free daily newsletter, breaking news flashes and weekly jobs board, sign up now.

Related blogs

Create a blog about this story (membership required)

Related stories

23 July, 2002
17 July, 2002
16 July, 2002
09 July, 2002
20 June, 2002

Related company news

 

Related company information

ACI Worldwide

Featured job

to £90k base, double OTE
London, UK

Find your next job