SIN 133 Issue 9 June 2017

Similar documents
Suppliers' Information Note. BT MegaStream 622, BT MegaStream Aggregate (STM4) Service Description

SIN 158 Issue 3.6 May 2018

SIN 396 Issue 3.1 January 2016

Suppliers' Information Note. BT LAN Extension Service Service Description

Suppliers' Information Note. BT International MegaStream (2Mbit/s) Service Description

SIN 496 Issue 1.2 September 2015

BT ISDN 30 (DASS) Service Description

Suppliers' Information Note. BT LAN Extension Service Service Description

SIN 459 Issue 1.6 August 2016

SIN 508 Issue 1.2 August 2016

Suppliers Information Note. Synchronisation Recommended Settings for Customer Premises Equipment

SIN 510 Issue 1.1 August 2016

Suppliers' Information Note. BT International Megastream 155. Service Description

SIN 462 Issue 1.4 August 2016

SIN 513 Issue 1.1 January 2016

Suppliers Information Note. BT MediaNet Plus Network Service. Interface Characteristics & Withdrawal Notification

Suppliers' Information Note BT CHANNEL EXTENSION SERVICE Service Description

OPENREACH WHOLESALE EXTENSION SERVICE 622 (WES622) AND WHOLESALE END TO END EXTENSION SERVICE 622 (WEES622) Service & Interface Description

SIN 495 Version 1.3 March 2019

SIN 481 Issue 1.3 August 2016

Suppliers' Information Note. BT FrameStream. Service Description

OPENREACH BACKHAUL EXTENSION SERVICES 10 (BES 10) Service & Interface Description

OPENREACH BACKHAUL EXTENSION SERVICES 100 (BES 100) Service & Interface Description

Suppliers Information Note

Suppliers' Information Note. Optical Spectrum Extended Access 6500 (OSEA 6500) Service & Interface Description

Suppliers Information Note. 21CN Optical Solution. Service & Interface Description

Customer Interface Publication: KCOM (Hull) CIP019

Customer Interface Publication: KCOM (Hull) CIP010

SIN 519 Issue 2.0 December 2018

SIN 503 Issue 1.4 December 2018

Suppliers' Information Note BT LAN EXTENSION SERVICES 1, 2, 10 & 10 LOCAL REACH (LES 1, 2, 10 & 10LR) Service Description

) /24 /& 0!#+%4 -/$% 4%2-).!, %15)0-%.4 "9!. )3$. $!4!.%47/2+3!.$ /0%. 3934%- #/--5.)#!4)/.3 05",)# $!4!.%47/2+3 ).4%2&!

Customer Interface Publication: CIP025

Technical Characteristics of the KCOM Group PLC Intelligent Network Customer Controlled Call Management service

Technical Characteristics of the Supplementary Services available on the Single Analogue Line Interface

ITU-T Y IP access network architecture

Technical Characteristics of the Fixed Line Short Message Service Interface

Virtual Private Networks (VPNs)

Private Voice & Data Extra Annex to BT One Phone Schedule

Suppliers' Information Note. L2TP Interface For BT IPstream. Interface Characteristics

KCOM Group PLC IPLine Internet Access Service Description and Technical Characteristics

Integrating the Hardware Management Console s Broadband Remote Support Facility into your Enterprise

Network Services Internet VPN

Customer Interface Publication: CIP034. Ethernet Assured Service Description and Technical Characteristics

Configuring Dial-on-Demand Routing

622Mb Edgeless L2TP BT Central Product For BT IPstream. Interface Characteristics

BT IPstream Connect Office, BT IPstream Connect Home, BT IPstream Connect Max & BT IPstream Connect Max Premium Products

EUROPEAN prets TELECOMMUNICATION November 1998 STANDARD

Study Guide. Module Three

BT ISDN 2. (Using limited ETSI Call Control) SERVICE DESCRIPTION and WITHDRAWAL NOTIFICATION

NetPro. from Wireless Logic. Available on a per SIM license basis. No CAPEX. Retain your Airtime Contracts with your existing providers

User Guide IP Connect CSD

User Guide IP Connect GPRS Wireless Maingate

SIN 492 Issue 1.9 November 2018

LMEnet. Market Participant Connectivity Guide. Please respond to: Technical Account Management LME.COM

ETSI EN V7.0.2 ( )

Customer Interface Publication: KCH CIP009. Technical Characteristics of the kbit/s (155Mbit/s) digital leased line

Wide-Area Networking Overview

Virtual private networks

INTERNATIONAL TELECOMMUNICATION UNION

BT One Cloud Cisco UK Schedule to the General Terms

Network Services Enterprise Broadband

Virtual Access GW7010 ADSL Router

Network Services. Mobile Xpress

Customer Interface Publication: CIP0016

BTnet Resilient Extra White Paper for BT People and Prospective Customers

A typical WAN structure includes the following components.

4. INFOPATH Packet Switching Service 4.1 General

Virtual Private Networks

Network Services BT MPLS (Marketed as IP Connect Global)

Configuring Virtual Asynchronous Traffic over ISDN

Virtual Access GW7225AM-3G ADSL Router

Module Three SG. Study Guide. Exam Three Content Areas. Module Three. Chapter Seven, Backbone Networks

Customer Interface Publication: KCH CIP001. Public Switched Telephone Network (PSTN) Technical Characteristics of the Single Analogue Line Interface

Configuring a GSM (3G) modem on a GW2040 Series Router

Introduction to Information Technology Turban, Rainer and Potter John Wiley & Sons, Inc. Copyright 2005

Remote Connectivity for SAP Solutions over the Internet Technical Specification

SIN 385 Issue 3.0 October 2015

When placing an order for BT SIP Trunks customers are requested to sign this document to acknowledge that;

X.25 Substitution. Maintaining X.25 services over a fully supported NGN/IP infrastructure. The Challenge. How it Works. Solution

Suppliers' Information Note. IP Connect UK. Service Description. British Telecommunications plc

NICC ND 1411 V1.3.1 ( )

WAN technology which are to be discussed:

Custom Connect. All Area Networks. customer s guide to how it works version 1.0

Customer Managed Connectivity - Milan

Antelope Consulting FINAL, JULY Appendix K: Glossary

HOW TO CONFIGURE AN IPSEC VPN

Customer Interface Publication: KCH CIP018. Technical Characteristics of the Telex Interface

FIXED SERVICE SCHEDULE ISDN 2 SERVICE. The following additional terms and conditions apply to the provision of the ISDN 2 Service.

EUROPEAN ETS TELECOMMUNICATION November 1996 STANDARD

DVB Interaction Channel through the Public switched Telecommunications System (PSTN) / Integrated Services Digital Network (ISDN)

BCRAN. Section 9. Cable and DSL Technologies

Schedule 2g(b) additional terms for VPN Branch service 1. SERVICE DESCRIPTION

Suppliers' Information Note. BT Broadband Voice and Hosted VoIP. Service Description

WAN Technologies CCNA 4

Introduction to Network Technologies & Layered Architecture BUPT/QMUL

TECHNICAL REPORT. CPE Architecture Recommendations for Access to Legacy Data Networks. DSL Forum TR-032. May 2000

Preserve 802.1Q Tagging with 802.1P Marking over ATM PVCs for xdsl Uplinks

Glossary. xii. Marina Yue Zhang and Mark Dodgson Downloaded from Elgar Online at 02/04/ :16:01PM via free access

Service Description Safecom Customer Connection Version 3.5

Transcription:

SIN 133 Issue 9 June 2017 Suppliers' Information Note For The BT Network The BT Cardway Service SERVICE DESCRIPTION Each SIN is the copyright of British Telecommunications plc. Reproduction of the SIN is permitted only in its entirety, to disseminate information on the BT Network within your organisation. You must not edit or amend any SIN or reproduce extracts. You must not remove BT trade marks, notices, headings or copyright markings. This document does not form a part of any contract with BT customers or suppliers. Users of this document should not rely solely on the information in this document, but should carry out their own tests to satisfy themselves that terminal equipment will work with the BT network. BT reserves the right to amend or replace any or all of the information in this document. BT shall have no liability in contract, tort or otherwise for any loss or damage, howsoever arising from use of, or reliance upon, the information in this document by any person. Due to technological limitations a very small percentage of customer interfaces may not comply with some of the individual characteristics which may be defined in this document. Publication of this Suppliers' Information Note does not give or imply any licence to any intellectual property rights belonging to British Telecommunications plc or others. It is your sole responsibility to obtain any licences, permissions or consents which may be necessary if you choose to act on the information supplied in the SIN. This SIN is available in Portable Document Format (pdf) from: http://www.btplc.com/sinet/ Enquiries relating to this document should be directed to: sinet.helpdesk@bt.com. British Telecommunications plc Registered Office 81 Newgate Street LONDON EC1A 7AJ Registered in England no.1800000

CONTENTS 1. INTRODUCTION... 3 2. DESCRIPTION OF THE BT CARDWAY SERVICE... 3 2.1 GENERAL... 3 2.2 BT CARDWAY PRODUCT OPTIONS... 4 2.2.1 Dial... 4 2.2.2 MPLS... 5 2.2.3 Internet VPN... 6 2.2.4 Internet TLS... 7 2.2.5 X.25... 8 3. TECHNICAL SPECIFICATION... 8 3.1 IP MESSAGE SUPPORT... 10 3.1.1 TCP Header Length... 10 3.1.2 Network Parity... 10 4. SERVICE AVAILABILITY... 11 5. ABBREVIATIONS... 11 7. REFERENCES... 12 8. HISTORY... 14 SIN 133 Issue 9 British Telecommunications plc Page 2 of 14

1. Introduction This Suppliers Information Note (SIN) describes the BT Cardway service. The service offers a means of accessing card company hosts in order to obtain automatic authorisation for credit card transactions. 2. Description of the BT Cardway service 2.1 General BT Cardway is a PCI-DSS compliant secure, flexible network that provides connectivity options for the delivery of all types of card payments, currently delivering in excess of 4 billion financial transactions per annum. Transactions that originate from Point of Sale (PoS) terminals, Smart Phones, ATM s or Host Servers can be securely delivered to Acquiring Banks, Payment or other processors globally, conformant to the latest Payment Card Industry Data Security Standards (PCI-DSS). The BT Cardway service has been designed to help merchants and acquirers alike overcome the complexity of implementing card industry security standards. BT Cardway provides a secure payment network environment for anyone accepting payment card transactions. Figure 1 Cardway Network SIN 133 Issue 9 British Telecommunications plc Page 3 of 14

2.2 BT Cardway product options 2.2.1 Dial The BT Cardway PSTN/ISDN Dial Service provides dial-up merchant connectivity to deliver transactional data to the acquiring host. The service utilises BT inbound services numbering (shared or customer exclusive numbers) to provide connectivity for payment card authorisations from customer devices connected via PSTN and ISDN lines into the Cardway service dial access nodes. 2.2.1.1 PSTN Support The BT Cardway network provides the TPAD functionality for PSTN dial-up Point of Sale (POS) terminal and EPoS (Electronic Point of Sale) connections. 2.2.1.1.1 Analogue PSTN dial up for transactions is available via modems conforming to CCITT V.21, V.22, V.22bis, V.23, V.32, V.32bis, V.34 & V.90 standards. SIN 133 Issue 9 British Telecommunications plc Page 4 of 14

2.2.1.2 ISDN Support 2.2.1.2.1 0800i - X.25 over the B-channel Support for ISDN B Channel dial-up operation is provided at a maximum data rate of 64 Kbps, where the ISDN Terminal Adapter provides X.25 and TPAD functionality. 2.2.1.3 Digital ISDN dial up for transactions is available via modems conforming to CCITT V.110 & V.120 standards, including support for GSM mobile circuit switched calls. 2.2.2 MPLS Both merchants and acquirers connect to BT Cardway via BT MPLS connections as shown in the diagrams below. Acquirers would always take a resilient connection. 2.2.2.1 Standard SIN 133 Issue 9 British Telecommunications plc Page 5 of 14

The standard service is delivered using a single circuit with no resilience or redundancy. 2.2.2.2 Secure Plus The Secure Plus service is delivered using dual circuits with diverse routing into each Customer site i.e. two diversely routed circuits per site. 2.2.2.3 Split Site Secure Plus The Split Site Secure Plus service is delivered using two (or more) diversely routed circuits into two (or more) Customer sites i.e. one circuit per site. 2.2.3 Internet VPN SIN 133 Issue 9 British Telecommunications plc Page 6 of 14

The BT Cardway VPN Service provides internet connected merchants with secure connectivity to deliver transactional data to their acquiring host. The service utilises the merchant s standard internet connectivity to route into the BT Cardway shared internet gateways to provide connectivity for payment card authorisations from Merchant terminals and servers. Transactions are routed over secure, encrypted IPSec tunnels that are established between the Merchants Internet connection router and the BT Cardway ingress firewall that interfaces the BT Cardway Internet Gateway with the public Internet. 2.2.4 Internet TLS The BT Cardway TLS (Transport Layer Security) Service provides internet connected merchants with secure connectivity to deliver transactional data to their acquiring host. The service utilises the merchants standard internet connectivity to route into the BT Cardway shared internet gateways to provide connectivity for payment card authorisations from customer devices supporting the TLS 1.2 standard for encryption and transaction security. TLS sessions are established between the Merchant device (IP terminal or server) and are terminated within the BT Cardway network on the ingress firewall that provides the interface between the BT Cardway Internet Gateway and the public Internet. Transmitted data is encrypted using custom algorithm s with BT trustwise certificates. The connection is reliable because each message transmitted includes a message integrity check using a message authentication code to prevent undetected loss or alteration of the data during transmission. SIN 133 Issue 9 British Telecommunications plc Page 7 of 14

2.2.5 X.25 The BT Cardway X.25 Service provides X.25 connectivity for merchants or acquirers/processors to deliver transactional data to the acquiring host as described in SIN 295 Error! Reference source not found.. The service utilises the BT Newnet X.25 access service network to provide connectivity for X.25 payment card authorisations from customer devices to connect into the BT Cardway Core network. Gateway nodes are provided at multiple locations, geographically distributed around the UK. 3. Technical Specification The network supports terminals using a number of different access methods. For Dial access BT uses the codes t3, t24, t24+, x and i to identify PSTN/ISDN interfaces. The technical characteristics of each are shown in the table below. The terminal must dial the appropriate PSTN number for the access method used. Access method Access Modem standard Protocol t3 PSTN V.21 APACS30/40 t24 PSTN V.22 bis APACS30/40 t24+ PSTN V.22 bis APACS30/40 * x PSTN V.22 bis, V.42 LAPM X.28 # i ISDN N/A X.25 Note 1 GSM V110 APACS30/40 MPLS (IP Ethernet, ADSL N/A IP, BGP, XOT, optional headers: bin2, SIN 133 Issue 9 British Telecommunications plc Page 8 of 14

Connect) BTnet (Internet Connect UK) bin3, bin4, vap, asc4, asc5, bcd2, bcd4, bin2e, bin3e,bin4e and mbit Ethernet, ADSL N/A IP, BGP, XOT, optional headers: bin2, bin3, bin4, vap, asc4, asc5, bcd2, bcd4, bin2e, bin3e,bin4e and mbit Table 1 Access and Protocols V.21, V.22 bis, V110, V.42, X.25 and X.28 are Recommendations published by the International Telecommunications Union (ITU-T ) APACS30 and APACS40 are standards published by the Association for Payment Clearing Services. With the introduction of Chip and Pin cards the APACS30 & 40 standards are now part of the APACS 70 standard. * The t24+ service uses a modified form of the APACS30 and APACS40 standards where the maximum size of each data block is increased from 128 to 2048 bytes. All other protocol features are unchanged. # The Visa II protocol, used by the current ATMs on Cardway, is transported using the X28 protocol. The Cardway Delivery Connection uses the X.25 protocol via an interface as described in SIN 57 [Error! Bookmark not defined.] for the 64 Kbits per second Kilostream X.21 interface or via MPLS. For MPLS this can either be BT Cardway shared customer access MPLS where Multiple VPN connections are supported on an Ethernet access by configuring the access as an IEEE 802.1q VLAN trunk with each VPN using an individual VLAN associated with a VLAN ID. The VLAN ID associated with each VPN connection will be allocated by BT at the time of subscription. Dedicated customer access MPLS is when the customer provides his own circuit and router into the BT core site. Whether shared or dedicated connection compatible CPE will connect to an IP network which will allow an MPLS VPN to be established as described in SIN 385 0. Data is encrypted using IPSEC tunnels. The BT Cardway Network makes no assumptions as to the physical connectivity to the CPE, other than that it conveys an MPLS VPN over IPv4. Terminal designers would need to be able to design a compatible terminal with respect to appropriate RFCs/Standards. For Internet connection compatible CPE will connect to an IP network which will allow a VPN over Ipv4 to be established and data is encrypted using IPSEC or TLS. Note 1. The GSM service is provided through dialup of the Cardway access number using mobile GSM transaction terminals. The firewall specific Protocols, Encryption, Authentication and Cryptography that the network supports is shown in the table below. SIN 133 Issue 9 British Telecommunications plc Page 9 of 14

Protocols Timers Encryption Authentication Cryptography IPSEC, TLS Key Lifetime (secs) 28800 AES256, 3DES SHA256 Diffie-Hellman Group 5 3.1 IP Message Support The merchant and acquirer gateway devices (ACP s) have the capability to support various message headers and parity settings. 3.1.1 TCP Header Length The following are valid entries to specify the length of the message in the header for TCP messages. Options None Mbit bin2 bin3 bin4 VAP ASC4 ASC5 Bcd2 Bcd4 Bin2E Bin3E Bin4E None defined 3.1.2 Network Parity Same as none with MBIT support enabled (default) Two-byte header containing the packet length as a binary value Three-byte header containing the packet length as a binary value Four-byte header containing the packet length as a binary value Four-byte header containing the packet length in the first two bytes. The other two bytes are padded with 0 s Four-byte header containing the packet length in ASCII format Example: A value of 37 will be represented as 0037 and in hex as (30, 30, 33, 37). Five-byte header containing the packet length in ASCII format. Example: A value of 37 will be represented as 00037 and in hex as (30, 30, 30, 33, 37). Two-byte header containing the packet length as a bcd value Four-byte header containing the packet length as a bcd value Two-byte header containing the packet length plus the header length as a binary value. Three-byte header containing the packet length plus the header length as a binary value. Four-byte header containing the packet length plus the header length as a binary value. This option governs the network parity of outgoing TCP/IP traffic. Options Transpare nt Transparent pass-through (default) SIN 133 Issue 9 British Telecommunications plc Page 10 of 14

7E1 8N1 8N1E Set parity to 7E1 for outgoing data and strip off parity bit for incoming data. Strip off parity bit for outgoing data Strips off parity bit for outgoing data and set parity to 7E1 for incoming data 4. Service Availability For further information on service availability and tariffs, please contact: Ciara Twohill, BT Cardway Product Manager Tel: 0131 551 3873 or E-Mail ciara.twohill@bt.com 5. Abbreviations ADSL APN ATM APACS BGP FTP GPRS GSM IEEE IP IPSEC ISDN LAPM MPLS PSTN RFC SIN TLS VLANs VPN XOT Asymmetric Digital Subscriber Line Access Point Name Automatic Teller Machine Association for Payment Clearing Services Border Gateway Protocol File Transfer Protocol General Packet Radio Service Global System for Mobile IEEE 802.1q, Recommendations for Virtual LANs Internet Protocol Internet Protocol Security Integrated Services Digital Network Link Access Protocol for Modems Multi Protocol Label Switching Public Switched Telephone Network Request for Comment (IETF) Suppliers Information Note Transport Layer Security Virtual Local Area Networks Virtual Private Network X25 over TCP SIN 133 Issue 9 British Telecommunications plc Page 11 of 14

7. References ITU-T Recommendations V.21 300 Bits Per Second Duplex Modem Standardized For Use In The General Switched Telephone Network V.22 bis 2400 Bits Per Second Duplex Modem Using The Frequency Division Technique Standardized For Use On The General Switched Telephone Network And On Point-To-Point 2 Wire Leased Telephone-Type Circuits V.42 Error-Correcting Procedures For DCEs Using Asynchronous-To Synchronous Conversion X.25 Interface Between Data Terminal Equipment (DTE) And Data Circuit- Terminating Equipment (DCE) For Terminals Operating In The Packet Mode And Connected To The Public Data Networks By Dedicated Circuit X.28 DTE/DCE Interface For A Start-Stop Mode Data Terminal Equipment Accessing The Packet Assembly/Disassembly Facility (Pad) In A Public Data Network Situated In The Same Country V110 RFC 1613 RFC 791 V110 ISDN protocol technology, making use of the ISDN subset capabilities of GSM handsets Cisco Systems X.25 over TCP (XOT) Internet Protocol Suppliers Information Notes [1] SIN 295 X.25 Service Description [2] SIN57 BT KiloStream X.21 Interface, Service Description [3] SIN 385 IP Connect UK Service Description Standards published by the Association for Payment Clearing Services: APACS30 APACS40 APACS70 Specification For A Credit Authorisation Terminal Acquirers' Interface Requirements For Electronic Data Capture Terminals Redrafting of a number of previous APACS standards IP related information IP Bin header An optional IP header that defines the IP packet length as a binary or ASCII value. XOT X25 over TCP. Cisco related protocol catered for by the Cardway product line. X.25 Over TCP (XOT) enables you to send X.25 packets over a TCP/IP network instead of a Link Access Procedure, Balanced (LAPB) link. XOT also allows you to tunnel X.25 traffic through an IP network. SIN 133 Issue 9 British Telecommunications plc Page 12 of 14

MPLS VPN Multiprotocol Label Switching (MPLS) is a protocol for speeding up and shaping network traffic flows. MPLS allows most packets to be forwarded at Layer 2 (the switching level) rather than having to be passed up to Layer 3 (the routing level). Each packet gets labelled on entry into the service provider's network by the ingress router. All the subsequent routing switches perform packet forwarding based only on those labels they never look as far as the IP header. Finally, the egress router removes the label(s) and forwards the original IP packet toward its final destination. A customer VPN used as a secure path across the BT MPLS network. For information on where to obtain these referenced documents please see the document sources list at http://www.btplc.com/sinet/ SIN 133 Issue 9 British Telecommunications plc Page 13 of 14

8. History Issue Date Changes Issue 1 November 1988 First published. Issue 2 December 1998 Issue 2.1 June 2003 Format Updated. Section on Terminal Equipment Approvals removed. Private circuit replaced by Cardway Delivery Connection with interface defined by reference to SIN 57. Issue 3.0 July 2004 GSM access added. Issue 4.0 July 2006 IP/MPLS facility added Issue 4.1 August 2007 Contact information amended in Clause 4, Service Availability Issue 5.0 December 2008 Information on GPRS and IP connectivity now included Issue 6.0 February 2011 General amendments. Addition of the Cardway PPP service. Issue 6.1 May 2011 Minor editorial improvements Issue 7 October 2014 Updates and amendments Change SINet site references from http://www.sinet.bt.com to http://www.btplc.com/sinet/ Issue 8 February 2016 Updates and amendments Issue 9 June 2017 Updates and amendments. Section 2 updated to include the following: - MPLS access in section 2.2.2 - Internet VPN in Section 2.2.3 - Internet TLS in section 2.3.4 Section 3 updated to reflect all BT Cardway access types and associated protocols in particular Section 3.1 added to cover the IP message types New contact details added to Section 4 - END - SIN 133 Issue 9 British Telecommunications plc Page 14 of 14

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback