Excerpted from the ControlScan white paper, “Terminal Encryption for Security and PCI Compliance.” When the PCI Security Standards Council (SSC) released the first version of the PCI Point-to-Point Encryption (P2PE) standard in 2011, its goal was to help merchants obtain a path to compliance that … Read more
Since 2011, the PCI Point-to-Point Encryption (P2PE) Standard has provided a clear path to security and compliance for card-present and mail order/telephone order (MOTO) merchants. The P2PE standard is based on secure encryption and decryption of account data at each end of the transaction, rather … Read more
Point-to-point Encryption (P2PE) is an awesome tool for securing retailers’ payment card data. ControlScan highly recommends it in every environment where it’s feasible and cost effective to do so. (We operate security infrastructure in many retail environments with integrated POS systems, where P2PE is either … Read more
The PCI Council just released version 2.0 of the P2PE (Point-to-Point Encryption) Solution Requirements and Testing Procedures. Quick background: P2PE is the process of encrypting a card number in the hardware at the time of the swipe and keeping it encrypted all the way to … Read more
What? You are probably aware that chip cards (EMV) will ultimately replace magnetic stripe cards. You are also likely aware that if your business accepts credit cards then you must be able to accept EMV cards by October, 2015, or you may have to pay … Read more
Understanding EMV’s capabilities with the concepts of data security and PCI compliance. Many merchant acquirers, payment processors and Independent Sales Organizations (ISOs) have been reaching out to business owners to alert them of America’s 2015 migration from magstripe (i.e., “swipe”) credit/debit cards to EMV (i.e., “chip”) payment cards. … Read more