New technologies are emerging, and the movement is towards the cutting-edge technologies and new inventions of using the solutions in payment industries where the devices, readers and cloud are in-sync to provide the solutions to end customers using software development kit (SDK) and platforms to leverage cloud-based services.
Usually, in NFC system user credentials are stored in Secure Element (SE) on mobile device. During personalization the data is downloaded to Secure Element over-the-air (OTA). Physical presence of Secure Element in the device creates dependencies and becomes expensive for entities involved in an NFC eco-system to make it less efficient and difficult to implement quick to market solutions. For example, an application issuer like Bank would need to have to interface and make agreements with several Secure Element issuers to have their customer credentials to be present in Secure Element.
With Host Card Emulation (HCE) becoming acceptable to payment industry majors including VISA and MasterCard, the management of the Secure Element which was the complex and challenging piece in NFC solution deployments has been simplified. With the credentials being now managed in the Cloud environment, security credentials managed on a secure server instead of Secure Element on mobile device. Credentials are downloaded to mobile wallet during provisioning and replenished based on business rules for security reasons.
Secure cloud-based Digital Issuance model can create a truly competitive pricing landscape, with the support for multiple network and device configurations like offline tokens benefiting Consumers, Issuers and Mobile Network Operators (MNOs). Because this is an advantage it is already adopted by MNOs, providing Issuers with a faster, more secure and easier way to manage essential card holder credentials.
Girmiti software has the expertise to develop suite of HCE solution based on PNO Cloud Based Digital Issuance Specifications and Certify.
With tokenization of the card’s details, the card details can be persisted in mobile device and can be used to perform transactions just like the payment using a card stored in secure element
Stored credentials and keys are replenished based on business and security rules.
Additional security can be implemented for Cloud based credentials using one timecard number generation, limited use keys and CDCVM for transactions.
Girmiti Software has expertise in building HCE in Cloud solution using Java, IBM Worklight and using standards, specifications from VISA and MasterCard specific to cloud-based payments.
Girmiti Software has implemented the following HCE in Cloud server features for our customers:
Follows the VISA and MasterCard HCE specifications
Support Chip and MSD paths and this is configurable as a parameter
Integrated with a tokenization server and uses tokens instead of PAN in the mobile device for increased security
Periodic replenishment of Cryptographic Keys & tokens and other velocity parameters for security
Support offline data authentications CDA, fDDA
Configurable Cardholder Verification Method list - Online PIN, Signature, Consumer Device CVM and No CVM
Account status verification during transaction processing
Support different Account profiles
Support Account status update by cardholder or card issuer
Connects to HSM for cryptographic operations
Provision to interface multiple tokenization servers
Provision to interface with multiple card issuance platforms
Different MIS reports
We also have relevant experience to help our customers and partners to have the HCE Solutions certified by Card Payment Schemes/PNOs, processors with respect to their business segments. Our Team helps and works closely with our customers to understand the existing scope, current business scenarios, flows of the existing systems, to provide the consulting solutions to Build, Architect, Enhance Features, Design, Develop, Test, Automate, Deploy, UAT.
Know more about our technology services Read more....
For more information please contact us email@example.com