玉山科技 AsiaPeak  
 


  中文首頁
  最新消息

  解決方案

  產品

  硬體加密模組(HSM)

>網路型 HSM

>單機型(PCIe卡) HSM

>USB介面 HSM

>Payment HSM

>KMIP金鑰管理

  PGP加密

>PGP加密原理

>電子郵件加密

>網路磁碟機加密

>硬碟加密

>企業郵件加密環境建置

>企業資料加密整合

  OpenPGP加密

>PGP加密伺服器

>PGP加密指令集與API

>PGP for Java API

   電子時戳

  儲存/資料庫/網路加密

>Storage/Tape加密器

>Data at Rest 加密

>網路加密器
   檔案傳輸管理(MFT)

>檔案加密傳輸服務

>檔案傳輸管理員

>檔案傳輸代理服務

  資源

  連絡我們

 English Version

Payment HSM

金融(信用卡/支付)專用加密器

payShield 9000


The hardware security module that secures the world's payments

The Thales payShield 9000 is a payment hardware security module (HSM) that provides the cryptographic protection needed for Automated Teller Machine (ATM) and Point of Sale (POS) credit and debit card issuance and transactions. The cryptographic functionality and management features meet or exceed the card application and security audit requirements of the major international card schemes, including American Express, Discover, JCB, MasterCard, UnionPay and Visa. It is deployed as an external peripheral for mainframes and servers running card issuing, mobile provisioning and payment processing software applications for the electronic payments industry.

Key Benefits

  • Delivers comprehensive, certified security specially designed for cards and mobile secure elements
  • Provides off-the-shelf support for all major payment applications
  • Maximizes business continuity with high resilience features
  • Reduces the cost of compliance with a choice of software options tailored for issuers, processors, and acquirers
  • Offers a range of scalable, high-performance models

產品規格

Key management standards supported

  • Thales Key Block support (compliant with ANSI X9.24;superset of X9 TR-31)
  • X9 TR-31 Key Block support
  • RSA Remote Key Transport
  • DUKPT
  • Master/Session Key Scheme
  • Racal Transaction

Cryptographic algorithms supported

  • DES and Triple-DES key lengths 112 bit, 168 bit
  • AES key lengths 128 bit, 192 bit, 256 bit
  • RSA (up to 2048 bits)
  • FIPS 198-1, MD5, SHA-1, SHA-2

Performance options

  • Range of performance options up to 1500 Triple-DES PIN block translates / second using key blocks
  • Multi-threading to optimize performance


Host connectivity

  • Asynchronous (v.24, RS-232)
  • TCP/IP & UDP (10/100/1000 Base-T) – dual ports for resilience
  • FICON

Certifications / validations

  • Cryptographic module certified to FIPS: 140-2 Level 3, 46, 81, 180-3, 186-3, 198
  • PCI HSM
  • APCA
  • MEPS
  • NIST SP800-20, SP800-90(A)

Financial services standards supported

  • ISO: 9564, 10118, 11568, 13491, 16609
  • ANSI: X3.92, X9.8, X9.9, X9.17, X9.19, X9.24, X9.31, X9.52, X9.97
  • X9 TR-31, X9 TG-3/TR-39, APACS 40 & 70, AS2805 Pt 14

Card payments support

  • A merican Express/MasterCard/VISA PIN and Card Verification functions
  • EMV 3.X and 4.X transactions and messaging (inc. PIN Change)
  • Remote Key Loading to NCR, Diebold and Wincor-Nixdorf ATMs
  • MasterCard On-behalf Key Management (OBKM)
  • Integration with all major payment authorization and switching applications

Management facilities

  • Graphical User Interface (GUI) option for standard PC hardware over Ethernet - local and remote modes supported
  • Key Management Device (KMD) option to form keys from components
  • Console interface for “dumb” terminals
  • Clustering using Thales Security Resource Manager (SRM) application
  • SNMP
  • Utilization statistics, health check diagnostics and error logs

Security features

  • Multiple master keys option enabling cryptographic isolation
  • Two-Factor Authentication of security officers using smart cards
  • Dual physical locks and/or smart cards control authorization levels
  • Tamper-resistance exceeding requirements of PCI HSM and FIPS 140-2 Level 3
  • Detection of cover removal in addition to alarm triggers for motion, voltage and temperature
  • Device ‘hardening’ - ability to disable functions not required by the host application
  • Audit trails

 

payShield9000

 


請與我們連絡: (02)77128295

 

Google

玉山科技 版權所有 © Copyright AsiaPeak 2006, All Rights Reserved