There are 1.6 million ATMs in use worldwide,
each one housing a unique master encryption security key that
facilitates secure communication between the ATM and the operating
system. However, time can erode security requiring that the
security key must be changed at frequent intervals.
each one housing a unique master encryption security key that
facilitates secure communication between the ATM and the operating
system. However, time can erode security requiring that the
security key must be changed at frequent intervals.
Performed manually changing security keys is an
arduous task requiring at least two people to physically visit each
ATM where each generates and deploys a portion of the new key. If,
for example, the triple data encryption standard (DES) is used this
requires 64 keystrokes, adding to the risk of human error.
arduous task requiring at least two people to physically visit each
ATM where each generates and deploys a portion of the new key. If,
for example, the triple data encryption standard (DES) is used this
requires 64 keystrokes, adding to the risk of human error.
The solution is remote distribution of security
keys to ATMs and while it is one that has been in existence for
some time it is a solution that Postilion believes it has taken to
a new level.
keys to ATMs and while it is one that has been in existence for
some time it is a solution that Postilion believes it has taken to
a new level.
Postilion is the self-service banking and
payment processing technology development unit of US based S1
Corporation. Worldwide 100,000 ATMs and 500,000 POS terminals
already run on Postilion solutions.
payment processing technology development unit of US based S1
Corporation. Worldwide 100,000 ATMs and 500,000 POS terminals
already run on Postilion solutions.
“Postilion has taken remote key distribution a
step further by making it available for machines of all four major
ATM manufacturers,” Mark McMurtrie, Postilion marketing director
for all regions except North America, told EPI. This, he added, is
particularly important for banks operating a mixed ATM estate. The
ATM manufacturers are NCR, Triton, Diebold and Wincor
Nixdorf.
step further by making it available for machines of all four major
ATM manufacturers,” Mark McMurtrie, Postilion marketing director
for all regions except North America, told EPI. This, he added, is
particularly important for banks operating a mixed ATM estate. The
ATM manufacturers are NCR, Triton, Diebold and Wincor
Nixdorf.
Postilion’s solution addresses security and
total cost of ownership, two key issues facing banks and
independent ATM deployers, explained Eben Esterhuyse, Postilion’s
senior product manager for ATMs and fraud prevention.
total cost of ownership, two key issues facing banks and
independent ATM deployers, explained Eben Esterhuyse, Postilion’s
senior product manager for ATMs and fraud prevention.
Because the manual installation of new security
keys is a time consuming process banks often delay the procedure
for as long as possible, often a year or more, said Esterhuyse. The
longer the delay between key changes, the greater the risk of
criminal attacks using so called “brute force” tactics to break the
encryption code.
keys is a time consuming process banks often delay the procedure
for as long as possible, often a year or more, said Esterhuyse. The
longer the delay between key changes, the greater the risk of
criminal attacks using so called “brute force” tactics to break the
encryption code.
Postilion’s remote loading solution, which is
fully automated, reduces the down-time during key changes and
permits the frequency of key changes to be increased, Esterhuyse
continued.
fully automated, reduces the down-time during key changes and
permits the frequency of key changes to be increased, Esterhuyse
continued.
“This not only results in cost savings, but
also strengthens the level of security, as people can often be the
weak link in the security chain,” McMurtrie stressed.
also strengthens the level of security, as people can often be the
weak link in the security chain,” McMurtrie stressed.
In addition, he noted that the solution
facilitates the use of longer keys, a significant deterrent against
fraud. Notably, encryption algorithms of up to 256 keys have been
developed.
facilitates the use of longer keys, a significant deterrent against
fraud. Notably, encryption algorithms of up to 256 keys have been
developed.
In an environment where ensuring consumer
confidence in security, lowering costs and maximising service
availability are paramount, the demand for Postilion’s remote key
loading solution is “taking off very quickly,” said
McMurtrie.
confidence in security, lowering costs and maximising service
availability are paramount, the demand for Postilion’s remote key
loading solution is “taking off very quickly,” said
McMurtrie.
Postilion is also actively involved in
assisting banks and independent ATM operators enhance other aspects
of their customer service offerings.
assisting banks and independent ATM operators enhance other aspects
of their customer service offerings.
One area involves what McMurtrie termed
“improving the card holder experience” by, for example, ensuring
that a card holder can apply the same process at all ATM’s deployed
by a bank domestically or internationally.
“improving the card holder experience” by, for example, ensuring
that a card holder can apply the same process at all ATM’s deployed
by a bank domestically or internationally.
He explained that one approach is
personalisation, a solution that enables a cardholder to specify
specific aspects of the service required. These will be
automatically recognised by an ATM and could include a choice of
language or the need or not to dispense a receipt.
personalisation, a solution that enables a cardholder to specify
specific aspects of the service required. These will be
automatically recognised by an ATM and could include a choice of
language or the need or not to dispense a receipt.
In addition to greater customer satisfaction
this also increases efficiency by reducing time spent at the ATM,
said McMurtrie.
this also increases efficiency by reducing time spent at the ATM,
said McMurtrie.
Another ATM innovation gaining in popularity is
dynamic currency conversion that enables a cardholder to pay in
their currency of choice.
dynamic currency conversion that enables a cardholder to pay in
their currency of choice.
Foreign currency specialist Travelex is, for
example, experiencing a good take of dynamic currency conversion in
locations that are heavily used by travellers such as airports,
said McMurtrie.
example, experiencing a good take of dynamic currency conversion in
locations that are heavily used by travellers such as airports,
said McMurtrie.
Go deeper with GlobalData
