Beyond just Payments - PSD2’s impact beyond the Payments Industry

PSD2 is being touted as the biggest game changer to ever hit the payments industry in Europe. And not without good reason. PSD2 mandates banks to share customer account data with third parties (ones authorised by the customer), so that they can offer services to the customers while using the bank’s core systems as a backend. It gives the customer more control over her data and more options to choose from various service providers. 

Read more

State of Symmetric & Hash Algorithms after Quantum Computing

The recent trends in information technology and communications have emerged as one of the main technological pillars of the modern age. The importance of cryptography has gained importance due to the requirement of security services (confidentiality, integrity, authenticity, and non-repudiation) in data storage/transmission. Quantum computing, first introduced as a concept in 1982, has now become a nightmare for the currently deployed cryptographic mechanism. Extensive research has been done on quantum platforms to resolve complex mathematical problems, which are intractable for traditional computing platforms. The formalization of such quantum computing platforms poses serious threats to the cryptographic algorithms. This article informs the reader about the implications/repercussions of quantum computing on the present cryptography in detail.

Read more

How HSMs support secure multi-tenancy?

 As business grew, so did the threat of compromise or theft of data.  To address these risks, both software methods and hardware devices were produced to secure networks, systems and data.  HSMs are dedicated devices, incorporated with both logical and physical protection mechanisms, designed to provide separate, secure operating environments where confidential or sensitive information could be treated without risk of exposure.   

Read more

Making Blockchain Technology Secure and Auditable

Modern society and commerce are based on trust and digital identities. Companies and organizations build a reputation for being trustworthy. Consequently, the trust in their products is based on the trust in the organization.

Read more

eIDAS: The Advantages of QES as compared to AES

Advanced and Qualified Electronic Signatures are electronic signatures that comply with EU Regulation 910/2014 on eIDAS electronic transactions in the European internal market. They enable long-term verification of electronic signatures. Today, we explain the difference between Qualified and Advanced Electronic Signatures, both in terms of legal status and technical requirements.

Read more

“Ability” – Best Practices For Encryption Key Management

Data encryption is a significant component of an organization’s response to emerging security threats and regulatory compliance mandates. Most of the organizations have already implemented controls by encrypting data, but find that managing the associated encryption keys throughout their lifecycle quickly becomes a problem.

Read more

Leveraging PSD2, The FinTech Edition

FinTechs aim to bring the data, tech and UX (user experience) centric approach of technology firms into the mainstream financial services sector. Banks are no strangers to voluminous data, but technology firms have succeeded by using that data to spot patterns and predict customer behavior in a way that has given them market dominance. By using similar principles and tailoring their product offerings accordingly, FinTech firms have successfully created a sub-niche for themselves in the payments industry.

Read more

Sector Specific Case Studies for eIDAS (Part 1)

With eIDAS, the European Commission has provided a powerful yet flexible toolset for developers, consultants and companies to build tools to cater to their specific needs. Each sector of the economy, right from financial services to retail or logistics, has a unique set of requirements but eventually they all can create helpful solutions using the eIDAS apparatus. In this series, we look at some sector specific case studies on how companies can leverage the new and more powerful tools that have been made available to them.

Read more

eIDAS & Strong Customer Authentication – Securing Europe’s Digital Payments Landscape

September 2019 will usher in a new paradigm in terms of online payment security and trust. September is the month when the requirements for Strong Customer Authentication (SCA) under the Revised Payment Service Directive (PSD2) will go live in the European Economic Area. Most payment processors and service providers are already working on implementing the same as the Regulatory Technical Standards (RTS) for Strong Customer Authentication were defined and adopted in 2017 itself.

Read more

Ready to take off?

Download our HSM simulator!

Register for free