Embed Size (px)
Citation preview
Point To Point Encryption
Point-to-point encryption is a credit card fraud prevention measure, providing and additional protection layer on top of SSL. Sometimes point-to-point encryption allows a merchant to get out of PCI scope, and this is one of the reasons why some companies are willing to use the approach. The main aspects to be considered before implementation of some particular encryption solution concern decryption and encryption mechanisms. Decryption logic can be implemented either via software, or via hardware security module (HSM). Encryption logic can be implemented either inside or outside of a payment terminal.The best thing to do if you need to minimize the path, which unencrypted cardholder data has to travel, is to encrypt the data as close to the point of card entry (or point of swipe) as possible, and decrypt it on the payment processor’s end (or payment gateway’s end).
Point To Point Encryption
The two most significant advantages of point-to-point encryption (P2PE) are as follows. If card data, transmitted from the terminal to the POS application (and on, to the payment gateway), is encrypted, the merchant application does not handle card numbers and the merchant’s PCI scope is reduced. Also point-to-point encryption provides an additional credit card fraud protection mechanism.
Point To Point Encryption
Point To Point Encryption
Consider the diagram below to understand better how point-to-point encryption works and what benefits can be obtained from its implementation.
Point To Point Encryption
If you have any questions feel free to contact us any time. We will be glad to provide you with answers
unipaygateway.com
