Thales secures mobile point-of-sale solution for Kashing, UK-based payments provider
payShield hardware security modules help Kashing empower independent companies, meet PCI DSS compliance
Thales, a leader in critical information systems, cybersecurity and data security, announces Kashing Ltd., a provider of digital payment services for independent merchants, is deploying the Thales payShield 9000 hardware security module (HSM) to secure its online e-commerce and mPOS (mobile point of sale) card reader.
Using Thales HSMs to support end-to-end encryption of the payment data, Kashing developed a highly secure mPOS solution that allows merchants of all sizes to accept face-to-face, telephonic and (in the case of the popular tourist attraction King Arthur’s Labyrinth) online card payments. With the payShield 9000, Kashing also fulfills the Payment Card Industry Data Security Standard (PCI DSS) compliance requirements for the processing, storage, and transmission of account data.
Designed specifically for payment applications, payShield 9000 secures devices running card issuing and payment processing applications. Its hardened, tamper-resistant platform provides the cryptographic protection required for ATM, POS, credit and debit card issuance, and processing.
To safeguard the integrity of each transaction, Kashing created an architecture with payShield 9000 that utilizes point-to-point encryption of all sensitive information. The payer, payee and all transaction details remain protected from the original point-of-sale through to back-end processing.
In addition to its encryption capabilities, payShield 9000 also enabled Kashing to:
- Attain PCI DSS compliance and achieve a qualified security assessor (QSA) designation from the PCI Security Standards Council
- Pursue aggressive growth targets unhindered by security concerns
- Access comprehensive remote administration and development capaibilities
- Offer security transparency to a customer base possessing minimal technical knowledge
Gert Horne, CSO and co-founder, Kashing says:
“Thales has been extremely instrumental in Kashing attaining PCI DSS compliance. The ability to perform end-to-end encryption and key management across all in-motion and at-rest data addresses significant components of the standard. Throughout our evaluation period we were continually impressed by the performance of the payShield HSM and the excellent technical support we received. From many perspectives – especially any involving integrity, availability, scalability and quality of service – Thales inspires us in the design and creation of our own environment.”
Peter Galvin, VP of Strategy at Thales eSecurity says:
“As the payments industry continues to evolve to encompass innovative mobile commerce solutions, so must the security technologies protecting it. As a payment technology leader, Thales is working with innovators such as Kashing to deliver the same high levels of security to the mobile world as have become commonplace in the traditional in-store fixed terminal environment.”
Find out more about how Thales is helping Kashing by reading the case study: