Bluefin Announces Issuance of the Company’s 5th Japanese Patent for Systems and Methods for Facilitating Decryption of Payloads Received From Encryption Devices

Share Article

Patent expands Bluefin’s global intellectual property coverage of its proprietary P2PE platform

“Over 130 platforms have integrated our PCI P2PE solution across Europe, Canada, Latin America & Caribbean, and the United States. We are very excited to now be granted our fifth patent in Japan,” said Ruston Miles, Bluefin Founder and Advisor.

Bluefin, the leading provider of payment security technologies including PCI-validated Point-to-Point Encryption (P2PE) solutions for contactless payments in retail, hospitality, healthcare, and higher education, has announced the issuance of Patent No. 6691170 on core intellectual property in Japan.

The patent covers systems and methods for facilitating the decryption of payloads received from encryption devices. As part of PCI-validated P2PE solutions, encryption is done immediately upon swipe, tap, key or dip in a P2PE approved device, and decryption is only done in hardware outside of the merchant’s environment.

The intellectual property includes a system with an encryption device connected to a device management system, where the device management system receives payloads from the device and facilitates decryption of the payloads based at least in part on a serial number associated with the encryption device included in the encryption device payload.

“Hackers are using malware and other cyberattack vectors to breach cardholder data at unprecedented levels globally, especially during the current time of COVID-19. P2PE’s immediate encryption in both contactless and contact transactions is the primary defense for merchants, enterprises and organizations against this growing threat,” said Ruston Miles, Bluefin Founder and Advisor.

As the leading PCI-validated P2PE solution provider, Bluefin developed their own proprietary online device management system called the P2PE Manager® for clients to monitor the complete lifecycle of a payment device. This includes key injection, device shipping and tracking for chain-of-custody, device state and attestation management, and a record of every decryption performed by every device.

Bluefin is also the only PCI-validated P2PE provider to offer Decryptx®, a stand-alone solution for processors, payment gateways and software vendors that enables these companies to provide Bluefin’s P2PE solution on their platform, with no change to the client’s processing relationship. The P2PE Manager, together with Decryptx, provides a complete and validated P2PE platform for Bluefin partners.

“Bluefin’s patented P2PE platform empowers processors, payment gateways and software vendors to integrate this important security protection into their own systems quickly. Over 130 platforms have integrated our PCI P2PE solution across Europe, Canada, Latin America & Caribbean, and the United States. We are very excited to now be granted our fifth patent in Japan,” said Miles.

In addition to its suite of 25 U.S., Japanese and European patents, Bluefin has another 15 additional patents pending for encryption and payment security innovations. The company’s P2PE network currently includes over 130 connected partners operating in 32 countries, with over 100 devices/applications and 13 Key Injection Facilities (KIFs), as well as remote key injection services (RKI).

Bluefin recently released its 6th white paper, The Global Race to Secure Payment and Consumer Data by Merchants. The white paper details data privacy regulations, including GDPR and CCPA, and the technologies to ensure payment and data security – encryption, tokenization and EMV. The white paper is available for download.

About Bluefin

Bluefin specializes in payment and data security technologies that protect point-of-sale (POS) and online transactions. Our security suite includes PCI-validated point-to-point encryption (P2PE) for contactless retail, call center, mobile and unattended payments, and our ShieldConex® data security platform for the protection of personally Identifiable Information (PII), Personal Health Information (PHI), and payment data entered online. The company’s partner network currently includes over 130 processors, payment gateways and ISV’s operating in 32 countries, which provide Bluefin’s P2PE solutions direct to merchants, enterprises, healthcare organizations and more. Bluefin is a Participating Organization (PO) of the PCI Security Standards Council (SSC) and is headquartered in Atlanta, with offices in Waterford, Ireland. For more information, please visit

Share article on social media or email:

View article via:

Pdf Print

Contact Author

Danielle Duclos
Email >
Visit website