PRZOOM - /newswire/ -
Singapore, Singapore, 2010/07/14 - The DS3 ATK for EMV CAP, the chip authentication standard adopted by MasterCard and Visa, is a collection of libraries and firmware module for the SafeNet ProtectServer HSM that enables the user to build an EMV CAP Token.
Data Security Systems Solutions Pte Ltd (“DS3”), a leading data security provider and integrator, today announced the general availability of Authentication Toolkit integrated with ProtectServer hardware security modules (HSM) of SafeNet, Inc., a global leader in information security.
The DS3 Authentication Toolkit (ATK) is a suite of modular components to enable strong authentication using industry-standard algorithms and protocols. The DS3 ATK suite is already being used by world leading financial institutions and enterprises to secure their applications ranging from internet to mobile banking platforms to B2B transaction portals to enterprise remote access VPNs.
The DS3 ATK for EMV Chip Authentication Program (CAP), the chip authentication standard adopted by MasterCard and Visa, is a collection of libraries and firmware module for the SafeNet ProtectServer HSM that enables the user to build an EMV CAP Token Generation Service (CTGS) to generate CAP tokens for SMS transmission as well as CAP Token Validation Server (CTVS) to verify MasterCard CAP/AA4C and Visa DPA one-time-password tokens used for user authentication or transaction verification.
“By using the toolkit with SafeNet ProtectServer Gold and ProtectServer External HSM, the toolkit allows the user to implement the CTVS as a standalone authentication module or a network-based shared authentication service,” said Mr. Humphrey Chan, Vice President of APAC, SafeNet. “Higher performance can be achieved through additional HSM in a linear fashion.”
In addition to scalable standalone or network-based architecture, the DS3 ATK suite for EMV CAP also offers tamper-protected secure key operations.
“The sensitive key and cryptographic operations are implemented as a Firmware Module (FM) within the FIPS-certified SafeNet ProtectServer HSM. This ensures that the master keys and session keys used during verification are protected from compromise,” added Mr. Tan Teik Guan, CEO of DS3. “Together with the SafeNet HSM, the DS3 ATK for EMV CAP will form a critical component in securing the eCommerce and credit card transactions on the Internet.”
SafeNet ProtectServer Gold is a tamper-protected PCI HSM that provides high performance, secure cryptographic processing in server systems, and supports applications requiring high performance symmetric and asymmetric cryptographic operations. The ultimate level of protection is afforded to sensitive cryptographic processing that often operates within the less secure environment of servers. The FIPS 140-2 level 3 validated, tamper-protected security safeguards against physical attacks on SafeNet ProtectServer HSM to obtain sensitive information. Upon detection of a physical attack, the complete internal key storage memory is erased. Further, cryptographic keys are never exposed outside the HSM in clear form.
The DS3 ATK toolkit for EMV CTVS and CTGS can be used to support user login 2-factor authentication, and secure transaction authorization. Application areas include internet or mobile banking login and transaction authorization for eBanking, and payment authorization and credit/debit card payments via 3DSecure (verified by Visa and SecureCode) for eCommerce.
The DS3 ATK toolkit for EMV CTVS and CTGS is certified by MasterCard CAP, and verified to be compliant to Visa DPA.