Table of Contents
- Introduction
- The Global Cyber War is Already Underway
- “What a Revoltin' Development This Is!”
- Merchant Incentives
- Security Guiding Principles
- End-to-End Encryption Defined
- A Note on Encryption and Cryptographic Engineering
- Encryption Approaches
- Preserve that Format
- Key Management
- It's in the Details
- Vendors
- Heartland Payment Systems
- Step 1 - Vertical Integration
- Step 2 - The New POS Terminal
- Step 3 - Don't Break the Middle
- Step 4 - Tying (Most of) the Ends Together
- PCI Compliance, Liability Shift and a Pile of Straw
- VeriShield Protect - VSP
- Semtek
- The Service Provider Play - Transaction Network Systems
- Propay - Another Service Provider
- MagTek and Magensa
- Hypercom
- Enterprise Encryption Software
- Standards - All Deliberate Speed
- ASC X9
- Secure POS Vendor Alliance - SPVA
- Conclusions
- Give ‘Em a Carrot
- Cyber Security Takes Aggressive Collaboration
- We Need Encryption Standards
- What's It Going to Cost?
- End-to-end vs. Point-to-Point, You Choose, You Define
- The Asymmetric Payments Ecosystem
- Encryption is not Authentication
Table of Figures
- Figure 1: The Matryoshka Doll Problem
- Figure 2: Estimated Tier 1 Merchant PCI Cost Savings with E2EE
- Figure 3: Encryption Security Zones
- Figure 4: Encryption Flow through Zones
- Figure 5: TNS network deployment of VeriShield Protect
- Figure 6: No Shortage of Global Security Standards
- Figure 7: Where Ends Meet
|
Related Report
|
View Cart
