“We are very excited about extending P2PE Manager to include Remote Key Injection (RKI),” stated Ruston Miles, Bluefin. “This will enable retailers to upgrade their devices in the field to fully Certified P2PE without the downtime and expense of returning devices to a KIF."
ATLANTA (PRWEB) September 26, 2018
Leading payment security provider Bluefin today announced the additions of several new enhancements to the company’s patented P2PE Manager®, a 100% online management system for PCI-validated point-to-point encryption (P2PE) device management, chain of custody and annual PCI compliance reporting.
To remain compliant with the P2PE standard, merchants must track their payment devices, maintain chain of custody, and report on device attributes such as status, location and device integrity. Bluefin introduced the P2PE Manager in 2014, in conjunction with PCI validation for their P2PE solution in March 2014, to provide a simple to use, online management system that would help merchants reduce the complexity of compliance by using a single source P2PE program management system.
The P2PE Manager is part of Bluefin’s PCI P2PE solution package, allowing merchants and Bluefin partners to monitor the complete device lifecycle that includes key injection, shipping, device state, custodians, transactions and much more.
The Manager addresses PCI chain of custody requirements and automatically logs all records needed to generate reports for PCI compliance assessments, eliminating the use of spreadsheet-based manual tracking. Today, the Manager works with all major device manufacturers and is integrated to 8 Key Injection Facilities (KIFs) and growing.
“The PCI SSC requires that merchants that adopt and implement a PCI-validated P2PE solution report on device chain of custody. This means that they must know the shipping details, location of devices, and device state,” stated Ruston Miles, Chief Strategy Officer, Bluefin. “This can be a very difficult and time consuming process for merchants without a formalized tracking system – especially for those in geographically diverse locations. That is why we created our proprietary P2PE Manager and continue to enhance the system’s capabilities.”
The new enhancements ease integration with Bluefin’s Decryptx solution while also providing new capabilities for the tracking and facilitation of Remote Key Injection (RKI) of devices.
Bluefin has developed and released a hosted parser which can be used in conjunction with Decryptx. The parser is meant to simplify and speed integration to the Decryptx platform, helping to accelerate PCI-validated P2PE acceptance for processors, payment gateways and software vendors.
Bluefin has also added capabilities to track and facilitate RKI of devices. RKI allows for devices already deployed in the field to be injected onsite with secure P2PE keys rather than taken out of service and shipped to a KIF for injection.
“We are very excited about extending P2PE Manager to include Remote Key Injection (RKI),” stated Ruston Miles. “This will enable retailers to upgrade their devices in the field to fully Certified P2PE without the downtime and expense of returning devices to a KIF. P2PE Manager will track the RKI process to the device level by serial number to ensure that the proper configuration, software, and P2PE keys are injected on devices.”
Bluefin’s P2PE Manager, along with the company’s Decryptx product, is covered by several U.S. and Japanese patents.
Ruston Miles will speak on the panel “Proliferation of Point-to-Point Encryption (P2PE)” today at the PCI North America Community Meeting, along with Bill Bolton, Vice President, Information Technology, The HoneyBaked Ham Company and Dan Fritsche, Vice President, Solution Architecture, Coalfire. The panel will detail the real-life experience for validating and implementing P2PE solutions with merchants, gateways, processors and independent software providers.
Bluefin provides the leading payment security platform that supports payment gateways, processors and ISV’s in more than 25 countries. Bluefin’s secure payment platform is key to the holistic approach to data security. Designed to complement EMV and tokenization, Bluefin’s PCI-validated Point-to-Point (P2PE) solutions provide a solid security defense against current and future data breaches. Bluefin supports point of sale solutions for retail, mobile, call center and kiosk/unattended environments, and secure Ecommerce technologies. Bluefin is a Participating Organization (PO) of the PCI Security Standards Council (SSC) and is headquartered in Atlanta, with offices in New York, Chicago, Tulsa and Waterford, Ireland. For more information, please visit https://www.bluefin.com/.