Presentation is loading. Please wait.

Presentation is loading. Please wait.

Universal Transaction Gateway® (UTG®), 4Go®, and i4Go® are covered by one or more of the following U.S. Pat. Nos.: 7770789, 7841523, 7891563.

Published byShon Burns Modified over 9 years ago

Similar presentations

Presentation on theme: "Universal Transaction Gateway® (UTG®), 4Go®, and i4Go® are covered by one or more of the following U.S. Pat. Nos.: 7770789, 7841523, 7891563."— Presentation transcript:

1 Universal Transaction Gateway® (UTG®), 4Go®, and i4Go® are covered by one or more of the following U.S. Pat. Nos.: , ,

2 Introductions: About Shift4 Corporation
World’s Largest Independent, Card-Present Gateway Initiated first gateway connection (to Envoy) 40,000+ customers, 100,000+ merchant locations More than 750 million transactions annually (over 50 billion dollars) Bank- and processor-independent gateway; direct to American Express Fully redundant data centers, connectivity, and networks 24/7 automated software, hardware, connectivity, and power grid monitoring Connections to 99% of merchant banks in North America and the Caribbean Real-time online reporting with pre-settlement auditing capability First payment gateway certified with PCI Data Security Standards (PCI DSS) Member #1 tied to PCI Council

3 Credit Card Industry Credit Card 101
Banks, Processors (Acquirers), MSP’s ISO’s Unregulated, profiteering business structure (make money when merchant makes mistakes or follows rules) Hidden, fluctuating and penalty fees Realities of Auto-settle Fee Changes every April and October PIN Debit and Bin Management

4 Credit Card Industry PCI DSS (Payment Card Industry Data Security Standard) 911 and Homeland Security CISP/ DSOP/ SDP/ DISC PAPB to PA DSS

5 University at Buffalo – Campus Dining & Shops
Concerns Campus Concerns Security Breach Bank Fees Loss of Meal Plan and SVC Sales

6 University at Buffalo – Campus Dining & Shops
Environment 45 Micros Workstations targeted for Credit Card acceptance Additional 7 Micros for vendors 24 locations 2 additional remote locations in Spring 2012 Complex Campus LAN

7 University at Buffalo – Campus Dining & Shops
Challenges Older Servers Non-encrypted Micros version Older ws4 Micros terminals Reports from campuses of up to six second delays Public, non-secured Micros and ports Hundreds of employees to train

8 University at Buffalo – Campus Dining & Shops
Our Process Hired Trustwave for Gap Analysis Maintained support hours Purchased online PCI tools Resulted in a greater understanding of PCI Upgraded to encrypted Micros version Purchased a robust server Upgraded printers to IDN (made the terminals “wicked fast”) Replaced all Micros workstations to WS5

9 University at Buffalo – Campus Dining & Shops
Our Process – cont. Training Programs University created mandatory online PCI course and assessment. Custom How-to online class and assessment Required that all cashiers, managers and staff pass both prior to working. Physical Security Locking wall plates Locking Ethernet Cables

10 University at Buffalo – Campus Dining & Shops
Our Process - cont. Private VLAN Contracted with Shift4 Easy Integration No noticeable delays Low incidence of problems Cost Over $180,000 in upgrades, contracts and fees Per transaction costs above credit card fees

11 “PCI DSS requirements are applicable if a Primary Account Number (PAN) is stored, processed, or transmitted. If a PAN is not stored, processed, or transmitted, PCI DSS requirements do not apply.” —PCI DSS Preface

12 Payment Workflow

13 Review of Solution: Shift4 Secure Suite
TrueTokenization® Technology and terminology invented by Shift4 in 2004; first-to-market in 2005 Eliminates long-term storage of data – They can’t steal what you don’t have.® Replaces cardholder data (CHD) with a randomly generated, unique, alphanumeric value, called a TrueToken Token is transactional; token does not equal card # Tokens are managed by Shift4 not processor Have processed over 4 billion tokenized transactions

14 Review of Solution: Shift4 Secure Suite
4Go for Micros (Micros 3700, 9700) No CHD is stored in the POS application Supports format preserving token only PA-DSS-validated application that intercepts CHD before it enters the POS Previously validated PABP 4Go is patented technology (U.S. Pat. Nos: , , ) Secure Offline Stand-In (SOS) Supported on WS 4’s, 5’s, KW270’s Micros and Tokenization Simphony 1.6 Simphony 2.5

15 Payment Workflow

16 “Encrypted data may be deemed out of scope if, and only if, it has been validated that the entity that possesses encrypted cardholder data does not have the means to decrypt it.” - FAQ Article 10359, PCI DSS

17 Credit Card Industry P2PE
SRED (Secure Reading and Exchange of Data) Compliant Devices HSM (Hardware Security Manager) vs. software based Certifications (2 of 3 released by PCI) Key management (gateway or processor) Debit/ Signature Capture Device IP Communication to UTG Device is controlled by Shift4’s UTG Ingenico Tellium Line (being finalized)

18 Standard Process Flow with Third-Party Device

19 Credit Card Industry EMV (EuroPay Mastercard Visa)
Visa TIP (Technology Innovation Program): Chip and Signature (Visa) Contactless (E.g.NFC such as Google Wallet, ISIS) Deadlines October 1, Device Manufacturers April 1, Processors October 2015 – Merchants Ramifications of not supporting “the party that is the cause of a chip-on-chip transaction not occurring (i.e., either the issuer or the merchant’s acquirer) will be financially liable for any resulting card-present counterfeit fraud losses.” What does this mean to you? Benefits of PIN debit (ROI) Bin Management

20 What’s on Your Mind?

21 Daniel Montellano Director of Strategic Business Development Keith Curtachio Director of IT- University of Buffalo Thank You! Universal Transaction Gateway® (UTG®), 4Go®, and i4Go® are covered by one or more of the following U.S. Pat. Nos.: , ,

Download ppt "Universal Transaction Gateway® (UTG®), 4Go®, and i4Go® are covered by one or more of the following U.S. Pat. Nos.: 7770789, 7841523, 7891563."

Similar presentations

Weighing the Risks and Benefits of Online Financial Transactions

Weighing the Risks and Benefits of Online Financial Transactions
National Bank of Dominica Ltd. 2011 Merchant Seminar Facilitator: Janiere Frank Fraud & Compliance Analyst June 16, 2011.

National Bank of Dominica Ltd Merchant Seminar Facilitator: Janiere Frank Fraud & Compliance Analyst June 16, 2011.
Mobile Payment Security The Good, the Bad and the Ugly

Mobile Payment Security The Good, the Bad and the Ugly
PCI DSS for Retail Industry

PCI DSS for Retail Industry
MARTAs Road to PCI Compliance 1 Presenter: Yolanda Curtis, PMP AFC Project Manager.

MARTAs Road to PCI Compliance 1 Presenter: Yolanda Curtis, PMP AFC Project Manager.
Protecting Your Customers’ Card Data ASTRA Presentation 05.14.2013 Brian Chapman and Peter O’Rourke.

Protecting Your Customers’ Card Data ASTRA Presentation Brian Chapman and Peter O’Rourke.
Your hotel cannot afford invalid credit cards, no shows and cancellations …So… We have addressed your need for a simple and elegant solution regarding.

Your hotel cannot afford invalid credit cards, no shows and cancellations …So… We have addressed your need for a simple and elegant solution regarding.
1 Credit card operation and the recent CardSystems incident HONG KONG MONETARY AUTHORITY 4 July 2005.

1 Credit card operation and the recent CardSystems incident HONG KONG MONETARY AUTHORITY 4 July 2005.
Credit Card Compliance Regulations Mandated by the Payment Card Industry Standards Council Accounting and Financial Services.

Credit Card Compliance Regulations Mandated by the Payment Card Industry Standards Council Accounting and Financial Services.
© 2012 Presented by: Preparation For EMV Chip Technology Keith Swiat.

© 2012 Presented by: Preparation For EMV Chip Technology Keith Swiat.
© Vendor Safe Technologies 2008 B REACHES BY M ERCHANT T YPE 70% 1% 9% 20% Data provided by Visa Approved QIRA November 2008 from 475 Forensic Audits.

© Vendor Safe Technologies 2008 B REACHES BY M ERCHANT T YPE 70% 1% 9% 20% Data provided by Visa Approved QIRA November 2008 from 475 Forensic Audits.
Credit / Debit Card Electronic Payments Industry Update on Convenience Fees, Utility Program and More! Presented by: Presented by: Michael Hodge, Regional.

Credit / Debit Card Electronic Payments Industry Update on Convenience Fees, Utility Program and More! Presented by: Presented by: Michael Hodge, Regional.
Presented by : Vivian Eberhardt, Supervisor Cash and Credit Operations

Presented by : Vivian Eberhardt, Supervisor Cash and Credit Operations
Data Security Standard. What Is PCI ? Who Does It Apply To ? Who Is Involved With the Compliance Process ? How We Can Stay Compliant ?

Data Security Standard. What Is PCI ? Who Does It Apply To ? Who Is Involved With the Compliance Process ? How We Can Stay Compliant ?
Payment Card Industry (PCI) Data Security Standard (DSS) Compliance Commonwealth of Massachusetts Office of the State Comptroller March 2007.

Payment Card Industry (PCI) Data Security Standard (DSS) Compliance Commonwealth of Massachusetts Office of the State Comptroller March 2007.
Joe SimonettiT-FLEx Workshop T-FLEx October Workshop The Future of Fare Collection Bank Card Transactions & Merchant Processing Joseph Simonetti October.

Joe SimonettiT-FLEx Workshop T-FLEx October Workshop The Future of Fare Collection Bank Card Transactions & Merchant Processing Joseph Simonetti October.
Geneva, Switzerland, 4 December 2014 Evolving Payments into The Digital World Richard Smith, Vice President, MasterCard Customer Fraud Management

Geneva, Switzerland, 4 December 2014 Evolving Payments into The Digital World Richard Smith, Vice President, MasterCard Customer Fraud Management
EMV’s Impact on U.S. Retailers – It’s Coming! Presented by: Chris Francis VP, Market Development February 21, 2014.

EMV’s Impact on U.S. Retailers – It’s Coming! Presented by: Chris Francis VP, Market Development February 21, 2014.
Why Comply with PCI Security Standards?

Why Comply with PCI Security Standards?
PCI and how it affects College Stores… ROBIN MAYO | PCIP ECOMMERCE MANAGER EAST CAROLINA UNIVERISTY.

PCI and how it affects College Stores… ROBIN MAYO | PCIP ECOMMERCE MANAGER EAST CAROLINA UNIVERISTY.

Similar presentations

Ads by Google