Hosted Secure Tokenization Module

Transcription

1

2 Hosted Secure Tokenization Module

3 Agenda Tokenization Definition Tokenization Explained Tokenization Benefits Ultra Infrastructure Diagram Ultra Token Management Ultra Benefits Ultra Performance Ultra Data Security Ultra Support Typical Project Effort Typical Implementation Guideline Ultra Investment - ROI Questions & Contact

4 Tokenization Definition A token is essentially an alias / surrogate or substituted data value which cannot be used to derive the original identity data The Ultra HSTM provides a substitute token for any given original Primary Account Number (PAN) or sensitive Personal Identifiable Information (PII) value. Within a secure closed system, the replacement token provides a reference to the original data element; which allows Ultra to retrieve the original PAN/PII for a specified token. The original and replacement elements are not related in any way mathematically or cryptographically so the original PAN/PII cannot be determined outside of the appliance from the token.

5 Tokenization Explained Tokenize Untokenize A B B A C ULTRA HSTM Device Data relationship between PAN/PII (A) and token (B) is maintained in an encrypted data storage (C) on the HSTM device. PAN/PII Value A Token B Tokenize: The tokenize process provides a replacement token for the actual PAN/PII (A) specified. If the actual PAN/PII has been processed before, Ultra will recognize this fact and return the original substituted token (B). Untokenize: For a reverse operation (untokenize), the lookup function will retrieve the actual PAN/PII (A) for any given tendered or substitute token (B). If the substitute token has not been issued, an audit event is logged and the configured exception action is taken PAN Primary Account Number PII Personal Identifiable Information, i.e., sensitive or exposed data such as DOB, Gov. ID, SSN, Acc. No., PIN No., Tel. No., etc.

6 Tokenization Explained B C A Token Configuration: The Ultra HSTM can be configured to provide a token without retaining any digits of the original PAN/PII (B) The Ultra HSTM can be configured to retain the leading, trailing, or both digits of the original PAN/PII The substituted token retains the trailing digits (number of digits is configurable) (C) D The substituted token retains the leading digits (number of digits is configurable) (D) E The substituted token retains the leading and trailing digits (number of digits is configurable) (E)

7 Tokenization Benefits Risk reduction for business processes by totally removing sensitive data In the event of a token being compromised it will be limited to that token only, and not all secure data (as in the case with just data encryption) Ongoing cost benefit with PCI scope reduction (*) PCI safe processing, securing and protecting customer data (a significant business impact!) Allows simplified security policy management Business can easily show a reasonable ROI by ongoing cost reduction. (*) System allows for seamless integration with existing as well as new systems / processes The central token vault reduces storage points of all sensitive data (Tokenization as Data Security Model) thereby reduce the scope of attack It is flexible in configuration and allows for format preserving token data, thereby minimizing changes to existing systems Sensitive data is both replaced and encrypted reduces fraud possibilities

8 Ultra Infrastructure 5 1 Firewall 5 Application Servers Ultra HSTM 4 Application Databases 2 Secure Zone 3 3 Ultra HSTM Ultra HSTM Management Console CryptoServer LAN Administration Tool Untokenized PAN/PII Data Synchronized Data Between Ultra Servers Tokenized Data SSH Secure Communication Except for the PAN / PII value entering the secure zone, the values will never again be exposed to users / applications outside the secure zone. 1. PAN/PII data enters secure zone through firewall 2. PAN/PII data is processed by client s application servers and submitted to Ultra HSTM s for tokenization 3. PAN/PII data is tokenized on Ultra HSTM and submitted back to application servers 4. Token is now stored in client s database in place of PAN/PII data 5. From this point forward only the tokenized data is used by applications and systems accessing data personal data is now securely replaced

9 Ultra Token Management Enigma appliance provides three major real time tokenization functions: Conversion of identity data to tokens Conversion of tokens back to identity data Deletion of identity and token data when it is no longer required. The Ultra HSTM can be configured and customized in such a way as to create multiply levels of additional security and to fully embrace all features and functionality of the Sophos / Utimaco security device. Any sensitive data (PII) can be further protected by swapping such data out for a token, which is meaningless even when intercepted by external parties.

10 Ultra Benefits Ultra HSTM is a black box unit, which requires minimum access and maintenance. It has a sophisticated API which allows one to easily interface from any external financial (front-end processors) or non financial system Ultra HSTMs are set up for active/active failover and replication between 2 or more devices to ensure fault tolerance and high availability API interface between S1 Postilion / ACI Worldwide and Ultra HSTM already developed for quick integration. Simple but sophisticated API for rapid development, flexibility and integration. Partnership with a large international developer and vendor of security hardware and software (Sophos Inc.) Sophos Inc. provides endpoint, encryption, web and with centrally controlled security to compliment the entire organization Source Code Securely lodged and accessible at Iron Mountain facilities if needed.

11 Ultra Performance Processing Speed For a minimum of 10 million stored data elements: Realtime Transactions <= seconds Batch Process Transactions <= seconds Data Capacity Token appliance database is scalable and capable of storing/accessing in real time all unique PAN s processed by client during a seven (7) year period Token Transaction Volume Up to 5 million+ transactions per day

12 Ultra Data Security Ultra HSTM device and HSM are integrated into a single hardened device to prevent tampering (physical and electronically) All identity data between Ultra HSTM and applications are secured through SSH and connections authenticated with certificates All identity data values are encrypted when written to the Ultra HSTM data storage PCI compliant key management functionality is provided via an internal HSM (Sophos Utimaco CryptoServer) In the event of an encryption breach an on-demand key rotation key be executed and all secure data will be re-encrypted under the new key

13 Ultra Support Client operational /support requirements (< 1hr /week) Review logs for warnings and errors Ensure data backups and storage FMH support requirements First line of support (local through reseller) Review device state and resources weekly Ensure backups are taken as per schedule Second line of support (US support team) Provide support to first line of support and client Review and resolution of errors and device defects

14 Typical Project Effort Task Effort Resources Device installation Network and token configuration Cryptographic configuration Client specific customization (if required) (typically between 4 to 8 weeks) Integration with client applications (Ultra API integration) Conversion of PAN/PII data to tokens 2 Days FMH Ultra Specialist Client Infrastructure Engineer TBD based on customizations Development by client 1 Day / 10 mil Tokens FMH Ultra Dev Engineer(s) Client BA / Dev Engineer Client BA / Dev Engineer(s) FMH Ultra Specialist (support) FMH Ultra Specialist Client BA / Dev Engineer Testing (Test/Dev Environment) 20 Days FMH Ultra Specialist Client BA / Dev Engineer(s) Testing (Pre-Prod Environment) 10 Days FMH Ultra Specialist Client BA / Dev Engineer(s) Production Startup 5 Days FMH Ultra Specialist Client BA / Dev Engineer(s) Typical project (no product customization) would require one FMH Ultra Specialist for implementation. FMH professional services can be contracted to assist with client application integration if so required by client. Customization effort will be determined based on client requirements.

15 Typical Implementation Timeline Client Specific Customization API Integration with Client Application }Development Work Testing (Test/Dev Env) Device Install Testing (Pre-Prod Env) Device Install Device Install Token Conv Approximately 9 weeks Prod Startup Full Production * Timeline illustrated is a guideline only. Implementation timeline will depend on client environment, number and extent of customizations and the number of client interfaces.

16 Ultra Investment - ROI A typical data security breach cannot really be quantified in financial terms i.e. Loss of loyalty and customer s due to trust/integrity issues Overall data breach remediation cost (time / productivity loss) will be directly related to the number of records affected (could be in excess of $200 per data element breached) For most retailers and financial institution there is an ongoing PCI / Security Assessment process. Typical cost is between $200K and $500K annually. The Ultra token device reduces the scope of security audit, thereby directly reducing both risk and ongoing cost. Ensures customer trust and Executive / Management Peace of Mind (Priceless!)

17 Other Questions? Contact us by or Phone Today!