BS PAYONE P2PE Solution Successfully PCI Certified

4. April 2019

Photo from left to right: Marc-André Faber (P2PE Project Manager BS PAYONE), Dietmar G. Matzke (P2PE Coordinator BS PAYONE), Ulrich Krug (Operations Manager Scheme Reporting & Controlling BS PAYONE), Dr. Manfred Ferstl (P2PE Assessor usd AG)

BS PAYONE GmbH now offers merchants their first POS solution using P2PE encryption (Point-to-Point Encryption). This technology encrypts credit card data from the point of interaction to their end point, minimizing security risks in payment transactions. In January, the PCI Security Standards Council (PCI SSC) confirmed the validation of the “BS PAYONE P2PE Solution” by usd AG and added it to its official list of certified solutions.

Preparations for BS PAYONE’s certification project with usd began in 2017 in the form of preliminary studies and workshops and entered into the implementation phase in November 2018. On 28 January 2019 the PCI SSC confirmed the validation of the BS PAYONE P2PE Solution by usd.

Dr. Manfred Ferstl, P2PE Assessor and Lead Auditor at usd AG, sums up the challenges of the project: “This project we successfully completed together was quite complex and therefore required some preparation time. In addition to internal adaptations we had to make following the switch to new hardware, we also had to coordinate the suppliers of P2PE-compliant hardware and software and to tweak the logistical processes of the terminals to meet the new requirements. Thanks to the superb collaboration with BS PAYONE both on a personal and a professional level, however, we were able to master all challenges and finish the project on time.”

“The results are more than worthwhile,” adds Marc-André Faber, P2PE Project Manager at BS PAYONE. “Our goal as a leading payment provider is to always offer our customers the highest possible security level while still ensuring simple processing. P2PE, as a secure method of validating PCI compliance, is therefore of central importance to this goal, not only for our customers. We are very proud to have achieved the certification of the BS PAYONE P2PE Solution within the scheduled time frame with the professional support of usd AG”.

Also interesting:

Top 3 Vulnerabilites in System Pentests

Top 3 Vulnerabilites in System Pentests

During their penetration tests (pentests), our security analysts at usd HeroLab repeatedly uncover vulnerabilities that pose significant risks to corporate security. They increasingly encounter the same vulnerabilities. Our blog series "Top 3 Vulnerabilities" presents...

DORA Deep Dive: Reporting of ICT-Related Incidents

DORA Deep Dive: Reporting of ICT-Related Incidents

The Digital Operational Resilience Act (DORA) requires major ICT-related incidents to be reported to the German Federal Financial Supervisory Authority (BaFin) from January 2025. Why should you take a close look at this requirement now? Where in DORA is this...

Categories

Categories