23 November 2017
visit www.avoka.com

Thales upgrades payments HSM software

19 May 2008  |  2394 views  |  0 Source: Thales

Thales, a leader in information systems security, today announced the launch of the latest version of its payment Hardware Security Module (HSM) software aimed at organisations within the global banking community.

The new version offers enhanced security of key exchange between different parties in the payments network, as well as greater flexibility in how outsourced payment processors manage their payment HSMs and better security for local key management. Furthermore, version 3.0 is fully backward compatible, enabling existing customers to easily upgrade, minimising disruptions to existing applications and systems.

Version 3.0 introduces support for the ANSI TR-31 interoperable key block format for key exchange. This brings compliance with ANSI X9.24, which replaces the older ANSI X9.17 standard. The TR-31 format also enhances security for key exchange between different parties in the payment network, including those using other vendors' HSMs that support TR-31. TR-31 is specified in the latest MasterCard and Visa backed PCI security requirements for exchanging keys with point of sales devices and ATMs.

The introduction of Thales key blocks for local storage under the Local Master Key (LMK) provides greater security through better control of the use of cryptographic keys. At the same time, the binding and integrity protection provided by key blocks make them resistant to a range of theoretical 'command manipulation' attacks. The combination of Thales and TR-31 key blocks creates a secure environment for local key storage and distribution.

The final enhancement addresses the increasing trend by banks to outsource their card acquiring and issuing activities. As payment processing outsourcers and bureaux serve many customers, they are under pressure to assure them that their keys are being kept secret and therefore separate from other customers' keys. The multiple LMK functionality within Thales HSM 8000 version 3.0 enables outsourcers, for the first time, to maintain cryptographic separation of all their clients' keys on the same HSM. Such functionality not only enhances security but also provides outsourcers with greater flexibility in termrms of HSM management as they can securely use a number of client keys on the same HSM and take on new clients without security concerns.

Paul Meadowcroft, Head of Transaction Security for the Information Systems Security activities at Thales, says: "As increasing computing power is available to enable criminals to attack systems, this latest functionality ensures payment HSM security stays two steps ahead of the fraudsters. We are making the upgrade process for existing customers as simple as possible by allowing a gradual migration to the new version. Once upgraded, customers will benefit from a state-of-the-art hardware security module which provides better key security and greater flexibility. As the market leader for payment HSMs and an active contributor to ANSI X9 and other standards bodies, we aim to lead industry requirements such as TR-31, to ensure our customers continue to receive the highest levels of protection."

With 70 percent of global transactions secured by Thales HSMs, the introduction of TR-31 and Thales key blocks, and support for multiple LMKs on a single payment HSM further enhances Thales's position as a leading provider of advanced security solutions.

Comments: (0)

Comment on this story (membership required)

Related blogs

Create a blog about this story (membership required)
visit www.vasco.comvisit www.solutions.lexisnexis.comvisit www.capgemini.com

Top topics

Most viewed Most shared
Ripple boss predicts central bank adoption of blockchainRipple boss predicts central bank adoption...
20926 views comments | 33 tweets | 36 linkedin
AmEx partners Ripple and Santander for blockchain-enabled cross-border paymentsAmEx partners Ripple and Santander for blo...
12414 views comments | 15 tweets | 42 linkedin
Barclays warns of unprecedented online fraud this ChristmasBarclays warns of unprecedented online fra...
10156 views comments | 17 tweets | 35 linkedin
Sepa instant payments goes liveSepa instant payments goes live
9246 views comments | 45 tweets | 77 linkedin
ING brings data privacy to blockchain transactionsING brings data privacy to blockchain tran...
8298 views comments | 25 tweets | 35 linkedin

Featured job

Find your next job