Key Injection (Point of Interaction)

• Provides secure encryption of payment data at the POI
• Supports both DUKPT and Master/Session methodologies and key loading, while enabling customers to load and support EMV keys.
• Terminal-specific functionality is also supported through the KeyBRIDGE injection dashboard for each supported device.
• Custom wiring diagrams detail all of the necessary features and functions of KeyBRIDGE-certified point-of-interaction terminals so that users have all of the necessary details to properly load each device.
• Use of secure encryption methodologies and cryptographic key operations, including key generation, distribution, loading/injection and administration

• Full support for all key types, including but not limited to DUKPT (PIN, MAC, or Data), standard E2E keys, KEKs, Master Session methods as well as alternative derivation techniques.
• Manages unlimited Key Encryption Keys (KEKs)
• Retrieval of the secure data requires dual control access from two key custodians assigned to the group to which the secret data is associated.

• The platform streamlines key injection operational efficiency while automatically capturing all relevant audit log details that can be exported and validated
• Enables remote audit management & detailed key inventory
• Provides Audit Logs including date & timestamp, a unique audit ID,POI terminal details, Key Serial Number – KSI & DID portion only (injection only)
• Communicates Status: Pass or Failure

Remote Key Delivery- Supporting the remote distribution of keys to deployed (POI) terminals

Included simulator allowing for evaluation and integration testing to benchmark the best possible solution for each specific case

• Useful for centralized use cases without a requirement of scalability or remote accessibility and existing legacy infrastructure
• Defined total cost of ownership
• Complete control on hardware and software, including configuration and upgrades
• Secured uptime in areas with insatiable internet connectivity
• Preferred choice in industry-segments where regulation imposes restrictions

• Strategic architectural fit & risk management for your high value assets 
• Provides flexibility, scalability and availability of HSM-as-a-service
• Ideal for a multi-cloud strategy, supporting multi-cloud deployments & allows for migration flexibility
• Allows you to seamlessly work with any Cloud Service Provider
• Easy-to-use remote management and on-site key ceremony service option
• Full control over data through encryption key life-cycle and key administration
• Secured data privacy through Bring-Your-Own-Key procedures