BuntSoft | All posts tagged 'SMPLink™'

Merchants Breached Because of Lenient Security Protocols

by Caitlin Bunt 8. April 2011 16:00

Merchants need to learn from the security mistakes of other companies when securing their sensitive data.  Many companies become lenient with their security protocols over time.  Unfortunately, many merchants won’t maintain their security until they or another company suffers a major breach. 

 

Well, here are some security wake up calls to alert every merchant…

  

These articles report breaches that were preventable through secure practices.  Lucky for you, the merchant, there are many steps you can take today to prevent yourself from getting breached.  All of the following practices are required for compliance with current PCI PA-DSS standards.

 

Important Practices for PCI Compliance

 

 

 

 

 

 

Protect Cardholder Data: Switch to a Tokenization System

Most security breaches occur at the merchant level where data is stored. SMPLink™ works exclusively with TransactionVault® to remove the risk of exposure by taking the data off the merchant system and storing it in its own secure location and then returning a token of representation.  This token is useless to hackers attempting to steal or compromise credit card data.

 

Build and Maintain a Secure System

Do NOT use vendor-supplied defaults for system passwords or other security parameters. Use and regularly update antivirus software.  All other programs and applications connected to the computer or network should be verified for security before installation. 

 

Regularly Monitor and Test Networks

Track and monitor all access to network resources.  Regularly test security systems and processes.  Keep all network security up-to-date.

 

Change Passwords Regularly

Require your employees to change their passwords regularly.  Be sure to enforce the use of strong passwords.

 

Limit Administrator Account Access

The computer administrator account should be limited to only those whose job absolutely requires access to it.  All other persons requiring computer access should be assigned a unique log in ID.

 

Educate Your Staff

      Teach your employees about secure practices and protecting cardholder data. 

 

If you follow the above steps, you are on your way to preventing breaches and being compliant. 

 

 

 

 

More information on PCI Security can be found here 

 

Bunt Software is the maker of SMPLink™; a PA-DSS validated credit card interface software developed specifically for Panasonic System Manager Pro (SMP) users that integrates seamlessly with Merchant Link's TransactionVault® - a system that stores sensitive cardholder data in a secure vault - not on your back office computer.

 

There is ONLY one PA-DSS compliant credit interface for the Panasonic System Manager Pro (SMP) point-of-sale system:  SMPLink 

 

SMPLink™ has now successfully processed over 3.2 million transactions!

 

Find SMPLink™ on the PCI Council List of Validated Payment Applications.

Payment Application Best Practices is dead. Now is the time for someone to take a stand!

by Don Bunt 2. March 2011 06:25

 

The first universal standard protecting credit card data is now dead.

 

Visa developed the Payment Application Best Practices (PABP) in 2005 to provide software vendors guidance in developing payment applications that help merchants and agents mitigate compromises, prevent storage of sensitive cardholder data and support overall compliance with the PCI Data Security Standard (PCI DSS).

 

The PCI Security Standards Council has announced that PABP validated applications will expire today.  

 

The six year old PABP standard has been superseded by the much more secure “Payment Application – Data Security Standard” or PA-DSS. The PA-DSS was created in 2008 and is now on version 2.0.

 

Merchants using software validated against the PABP standard should have long ago moved to more secure systems. Unfortunately, they have not. 

 

What good are all of the new standards and new software, if no one is forced to use them?

 

Will the PCI Council force merchants to use the new standards?

Will Visa, Mastercard, American express or the other card brands?

How about the banks and processors?

The restaurant brands or franchisors?

 

Mr. Merchant, Who will stand by you when you have a breach and you are running an expired payment application?

 

Bunt Software is the maker of SMPLink™; a PA-DSS validated credit card interface software developed specifically for Panasonic System Manager Pro (SMP) users that integrates seamlessly with Merchant Link's TransactionVault® - a system that stores sensitive cardholder data in a secure vault - not on your back office computer.

 

SMPLink™ is the ONLY PA-DSS compliant credit interface for the Panasonic System Manager Pro (SMP) pos system.

 

Find SMPLink™ on the PCI Council List of Validated Payment Applications.

PCI Council approves the SMPLink™ PA-DSS Validation as it passes 1.5 Million Transactions

by Don Bunt 23. February 2011 16:19

  

Seven months after the original validation was completed by Halock Security Labs, the PCI council has approved the SMPLink PA-DSS validation.

 

Find SMPLinkon the PCI Council List of Validated Payment Applications.

 

Merchants using the Panasonic System Manager Pro (SMP) software alone to process credit transactions will be in big trouble soon. The SMP software was validated against the old PABP v1.4 rule set. The Panasonic validation expired in November of 2010. In fact, the PCI council has announced that on March 2, 2011, it will expire all PABP v1.4 applications. 

The good news is that SMPLink is now processing over 30,000 transactions daily and is installed in hundreds of sites comprised of 28 different concepts. The SMPLink™ software is stable and reliable.

 

NOW ... THE RACE IS ON TO GET PCI COMPLIANT.

 

SMPLink™ is the ONLY PA-DSS compliant credit interface for the Panasonic System Manager Pro (SMP) pos system.

 

SMPLink™ integrates seamlessly with Merchant Link's TransactionVault® - a tokenization system that stores sensitive cardholder data in a secure vault - not on your back office computer.

According to Sue Zloth of the PCI Special Interest Group (SIG) on tokenization, “Devaluing your data with tokens” is one of the best ways to secure payment transactions and to help reduce scope for PCI. 

Merchant Link TLS Shutdown

Because of PCI compliance, Merchant Link has shut down support for SSL v3 and Early TLS versions on July 1, 2018. Any sites with SMPLink versions 1 & 2 are not able to process credit cards. Upgrade to SMPLink version 3 today!

Month List

About Bunt Software

Bunt Software is the maker of SMPLink™, a PA-DSS validated credit card interface software developed specifically for Panasonic System Manager Pro (SMP) users that integrates seamlessly with Merchant Link's TransactionVault® - a system that stores sensitive cardholder data in a secure vault - not on your back office computer.

 

Bunt Software develops innovative software solutions on a project or time & material basis. Our turnkey software development services include Commercial Product Development, as well as Software Architecture, Design and Development.

 

Our experience and expertise spans a wide array of industries/markets, including:

 

·     Retail

·     Financial

·     Manufacturing

·     Telecommunications

·     Security 

 

 

Copyright © 2017 Bunt Software Incorporated. All Rights Reserved.