Security for Mobile as POS
Android, iOS, Windows based Smart Mobile devices acting as “Smart POS” with user centric payment applications have emerged as the de-facto standard of rapidly growing, high volume, evolving mobile payments across the world.
The necessity to ensure standards based security of the transactions from these devices, providing protection to the sensitive payment data as collected on these devices and the merchants’ systems dealing with the transactions are very critical for end to end security. Payments from Smart POS are typically based on REST/JSON, HTTPS/JSON, HTTPS/XML based messaging protocols. The ability of payment routing infrastructure systems to handle these protocols and route these payments with standards-based security to the existing Authorization Servers with suitable protocol translation is key to seamless deployment of these payment devices, and faster adoption.
NewNet offers enhanced payment security solutions for providing security of payment transactions from Smart POS terminals together with support for the specific messaging protocols. STC application in the public or private cloud along with CloudHSM delivers the fundamental security capabilities needed to enable safe and reliable transport of financial transactions, security verification, multi-level security for the payment transactions which requires high levels of standards based data encryption, as payment traverses over many network types. Cloud native, API driven, smart UI based, quick integration capable and leveraging virtualized CloudHSM for the best in security & rapid deployment.
Key Functions
STC works in close conjunction with the CloudHSM in the public/private cloud environments for accomplishing the security requirements for Mobile as POS. CloudHSM is a FIPS 140-2 Level 2, 3 certified virtualized cryptographic module in the cloud. The solution enables Mobile Devices, Mobile Payment Apps, Smart POS for high security payments usages for Payment Providers, Acquirers, Retail Chains, Gig Economy Providers.
The key security functions are:
- Secure Key Loading to Smart Devices
- HTTPS/TLS based data exchange
- P2PE Client for Data Encryption
- Tokenization for Merchant Datastore
- Secure REST/JSON API interface
- High Security Key Management
Featured Resources
Whitepaper – Payments with Smart Mobiles as Point Of Sales Terminals and Security
Payment devices have undergone rapid transformation. With the latest PCI standards to support PIN entry on smart devices, millions of mobile devices are now open to become payment terminals. The key requirements for the floodgates to open include smart, user friendly and exciting payment application tailored for the respective payment user interactions, ergonomic end user device designs, and intelligent security solution to ensure the overall security of payments through these devices.