PCI, EMV, PTS and more

Fraudsters are proving to be resourceful as they develop new ways to target protected data. As a result, the certification of electronic payment systems is becoming stricter every day. Atos Worldline solutions comply with the most stringent international and local security standards.

Secure POS Vendor Alliance

Atos Worldline is a General Member of the Secure POS Vendor Alliance.

The SPVA's mission is to enhance the security elements of payment solutions, protecting cardholder information at merchants and acquirers against security breaches. The SPVA focus lies on a standardized implementation of existing security standards, security of the payment device lifecycle, and security threat analysis and intelligence.

This membership enables us to take an active part in the definition and approval of standards for common interfaces to payment devices, ensuring the most secure compatibility for your payment applications. Visit the SPVA website

PCI PED

The PCI Security Standards Council, overseen by the major payment brands worldwide, sets standards and reviews the claims manufacturers make about their devices. Atos Worldline terminals have been evaluated by an independent laboratory, which certifies that they meet the most recent industry security standards set for PIN entry devices (PEDs).

The PCI PED Security Requirements cover both online and offline PIN entry devices. The requirements look at:

  • Physical security, checking the device is able to withstand any physical tampering aimed at finding out the key, or planting a bug
  • Logical security, making sure the device cannot be prompted to disclose an encryption key

The requirements also review how secure the device management is. This involves checking the security arrangements for production, control, transport and storage prior to initial key loading.

MasterCard PTS

The objective of the MasterCard POS Terminal Security Evaluation Program (PTS Program) is to enhance the security of transactions originating at wireless and IP-enabled POS payment terminals.

The standards introduced require wireless and IP-enabled POS terminals to support the encryption of transaction data between the terminal and the acquirer host, using protocols approved by MasterCard.

The Atos Worldline SSL-enabled terminals have been PTS-certified by a MasterCard-approved laboratory.

EMV

EMV is the worldwide standard for interoperability of chip cards and chip-capable terminals for authenticating credit and debit card payments.

Atos Worldline implements EMV at every level of its end-to-end system, including hosts, card issuing and terminals. This in-depth experience has given us a unique perspective on the development of products and solutions that meet EMV requirements.

  • The Atos Worldline range of payment terminals - XENTA, XENTISSIMO and XENTEO - are fully EMV-compliant
  • The C-ZAM/SMASH and the C-ZAM/SPIN terminals were among the first in the world to be EMV-compliant
  • The range of Atos Worldline DEP hardware security modules fully supports EMV requirements

The Atos Worldline range of terminals and hardware security modules also comply with local certifications. For a detailed overview, please visit our certification page.