payShield hardware security modules help Kashing empower independent companies, meet PCI DSS compliance
London, UK. 7th December 2017: Thales, a leader in critical information systems, cybersecurity and data security, announces Kashing Ltd., a provider of digital payment services for independent merchants, is deploying the Thales payShield 9000 hardware security module (HSM) to secure its online e-commerce and mPOS card reader.
Using Thales HSMs to support end-to-end encryption of the payment data, Kashing developed a highly secure mPOS solution that allows merchants of all sizes to accept face-to-face, telephonic and (in the case of the popular tourist attraction King Arthur’s Labyrinth) online card payments. With the payShield 9000, Kashing also fulfills the Payment Card Industry Data Security Standard (PCI DSS) compliance requirements for the processing, storage, and transmission of account data.
Designed specifically for payment applications, payShield 9000 secures devices running card issuing and payment processing applications. Its hardened, tamper-resistant platform provides the cryptographic protection required for ATM, POS, credit and debit card issuance, and processing.
To safeguard the integrity of each transaction, Kashing created an architecture with payShield 9000 that utilizes point-to-point encryption of all sensitive information. The payer, payee and all transaction details remain protected from the original point-of-sale through to back-end processing.
In addition to its encryption capabilities, payShield 9000 also enabled Kashing to:
- Attain PCI DSS compliance and achieve a qualified security assessor (QSA) designation from the PCI Security Standards Council
- Pursue aggressive growth targets unhindered by security concerns
- Access comprehensive remote administration and development capabilities
- Offer security transparency to a customer base possessing minimal technical knowledge
Gert Horne, CSO and co-founder, Kashing says:
“Thales has been extremely instrumental in Kashing attaining PCI DSS compliance. The ability to perform end-to-end encryption and key management across all in-motion and at-rest data addresses significant components of the standard. Throughout our evaluation period we were continually impressed by the performance of the payShield HSM and the excellent technical support we received. From many perspectives – especially any involving integrity, availability, scalability and quality of service – Thales inspires us in the design and creation of our own environment.”
Peter Galvin, VP of Strategy at Thales eSecurity says:
“As the payments industry continues to evolve to encompass innovative mobile commerce solutions, so must the security technologies protecting it. As a payment technology leader, Thales is working with innovators such as Kashing to deliver the same high levels of security to the mobile world as have become commonplace in the traditional in-store fixed terminal environment.”
Find out more about how Thales is helping Kashing by reading the case study: https://www.thalesesecurity.com/resources/case-studies/thales-payshield-provides-core-protection-kashings-payment-solutions
For industry insight and views on the latest data security trends check out our blog. You can follow Thales eSecurity on Twitter, LinkedIn, Facebook and YouTube.
About Kashing
Kashing was established with the sole purpose of helping independent businesses to do more and provide the attentive customer service that is hard to find in the payments industry today. It believes the current payment service providers are underserving independent business, and operates on a membership basis to provide a range of payment and financial services across all channels. This means their customers deal with one provider, solely. Kashing is a team of payments industry experts with specialisms in risk management, data protection security and product development, focused on providing payment services for independent businesses.
About Thales eSecurity
Thales eSecurity is the leader in advanced data security solutions and services that deliver trust wherever information is created, shared or stored. We ensure that the data belonging to companies and government entities is both secure and trusted in any environment – on-premises, in the cloud, in data centres or big data environments – without sacrificing business agility. Security doesn’t just reduce risk, it’s an enabler of the digital initiatives that now permeate our daily lives – digital money, e-identities, healthcare, connected cars and, with the internet of things (IoT), even household devices. Thales provides everything an organisation needs to protect and manage its data, identities and intellectual property, and meet regulatory compliance – through encryption, advanced key management, tokenisation, and privileged-user control and high-assurance solutions. Security professionals around the globe rely on Thales to confidently accelerate their organisation’s digital transformation. Thales eSecurity is part of Thales Group.
Industry insight and views on the latest key management trends can be found on the Thales eSecurity blog at blog.thalesesecurity.com.
Follow Thales eSecurity on Twitter @Thalesesecurity, and on LinkedIn, Facebook and YouTube.
