The PersonalisedPIN™ System is a robust customer card management system and includes various features specific to the PIN encoding and reading of Magnetic/Chip cards process.
MillenTech's PersonalisedPIN™ solution is secure, efficient, flexible and is a cost effective system that can be customised to meet your specific needs and requirements.
The system includes an interfacing DC420™ Controller with a patented Unified Command Structure (UCS) that permits the integration and sharing of disparate devices into a control systems application known as; Intelligent Device Integration System (IDIS). This controls peripheral devices and facilitates device sharing.
Whilst the system is device agnostic, we do recommend “best of breed” secure card reader/encoding and encrypting PINPad equipment.
MillenTech's PersonalisedPIN™ solution is secure, efficient, flexible and is a cost effective system that can be customised to meet your specific needs and requirements.
The system includes an interfacing DC420™ Controller with a patented Unified Command Structure (UCS) that permits the integration and sharing of disparate devices into a control systems application known as; Intelligent Device Integration System (IDIS). This controls peripheral devices and facilitates device sharing.
Whilst the system is device agnostic, we do recommend “best of breed” secure card reader/encoding and encrypting PINPad equipment.
Some of the functions of the MillenTech PersonalisedPIN software include:
- PIN a “new” card - for instant issue of new cards (allowing customers instant access to accounts).
- Change a ”Known” PIN - Uses current PIN as proof of identity before allowing the customer to change the PIN;
- Change a “Forgotten” PIN - requires photo proof of identity (passport, photo driver’s license) to validate that the card does belong to the client;
- PIN Verify - to prove that the customer knows the PIN of a card;
- Read a Card - read the track data stored on the card to provide a fast and unconfirmed method of identifying the card and customer accounts.
- PIN without Card - for delayed personalised card usage. The customer selects their PIN at a branch, and a new personalised (with name) card is later forwarded to the customer with the PIN that they selected.
PersonalisedPIN delivered within the branch offers:
- You have total customer engagement and can deal with any questions throughout the process and satisfy any fear this technology may cause.
- The branch is a controlled environment that is safe and secure.
- Within the branch all functions that a CSP solution offers can be used (forgotten PIN, instant issue and PIN Verify)
- This total engagement model will allow the teller to offer additional banking services.
ATM interface has significant risk and drawbacks.
- Open and unprotected environment that is normally exposed to the street elements.
- Like all ATM’s they are always open to “Shoulder surfing”.
- Should a new customer need help they could ask a queuing member of the public.
- Not completing the total card activation or PIN change process correctly caused by first time use and pressure of a long impatient queue.
- Limit the CSP options from the system (Lost card, forgotten PIN-Instant issue)
EMV ready solutions:
MillenTech's PersonalisedPIN solution incorporates EMV certificated hardware (EMV level 1) and application kernel software (EMV level 2) under our best of breed program.
PCI (Payment Card Industry):
MillenTech understands the PCI industry measurements to ensure safe handling of sensitive information and improve cardholders confidence, is a result of the combined efforts of major credit card associations. Conformance to these new standards is important.
PCI PED (Payment Card Industry PIN Entry Device):
PCI PED is evaluated against the PCI security requirements: online, offline or both. The test focuses on PIN Security testing as well as Triple DES capability compliance. The PED Testing and Approval Program ensures that the device meets a prescribed level of security, especially focusing on PIN compromise.
Key Management:
MillenTech understands the key management methods defines functions pertaining to the PersonalisedPIN™
MillenTech's PersonalisedPIN solution incorporates EMV certificated hardware (EMV level 1) and application kernel software (EMV level 2) under our best of breed program.
PCI (Payment Card Industry):
MillenTech understands the PCI industry measurements to ensure safe handling of sensitive information and improve cardholders confidence, is a result of the combined efforts of major credit card associations. Conformance to these new standards is important.
PCI PED (Payment Card Industry PIN Entry Device):
PCI PED is evaluated against the PCI security requirements: online, offline or both. The test focuses on PIN Security testing as well as Triple DES capability compliance. The PED Testing and Approval Program ensures that the device meets a prescribed level of security, especially focusing on PIN compromise.
Key Management:
MillenTech understands the key management methods defines functions pertaining to the PersonalisedPIN™
- Delivering encryption Keys
- Using Keys for PIN encryption
- Changing Keys
- Injecting and Initial Key or Master Key into PIN pad via RSA methodology
- Transporting Keys securely
- Protecting Keys during transportation and destroying keys
We operate with Key management schemes as:
- Mater/ Session Key
- Key Initialisation via RSA methodologies
- Key Initialisation
- Derived Unique Key Per Transaction (DUKPT)
- Unique Key Per Transaction (UKPT)
- AS2805 Transaction Key Method and Unique Key Per Terminal.
- One Way Function (OWF)