Implementation of the technological chain for EMV card production

MasterCard International presents MasterCard PayPass. This is a new “contactless” card solution that offers holders a simple and reliable payment method. MasterCard MasterCard PayPass the cardholder does not need to insert it into the terminal or pass it through a reader. To make a payment, you just need to bring your card to a special wireless terminal with PayPass. The product is convenient to use in places where the speed of service is especially important, but it is traditionally paid in cash: in restaurants, cinemas, and gas stations.
How MasterCard PayPass works
MasterCard MasterCard PayPass has a built-in chip and antenna. Pay PayPass-terminal, so that the necessary information is transmitted wirelessly. In this way, cardholders avoid having to hand the card over to the merchant or use the terminal. The customer’s account data is sent directly to a special reader and processed by the highly reliable MasterCard payment system. MasterCard MasterCard PayPass payment confirmation occurs within a few seconds.
The transfer of information from PayPass cards from Mastercard takes place on a radio frequency in accordance with the IS0#14443 standard. Chip-Chip, MasterCard, MasterCard contactless chip MasterCard (EMV / is07816).
In North America, most purchases are made online, so authorization usually uses information stored on the magnetic stripe (data on track 2, in certain cases — on track 1).
In regions with a wide distribution of smart em EMV purchases, Pay PayPass, MasterCard MasterCard M / Chip. The main difference is that you do not need to contact a terminal to transmit payment data, such as when you pass a card through a reader. Pay, Pay PayPass, MasterCard, MasterCard, MasterCard MasterCard M/Chip.
The company is implementing a MasterCard global standard that will allow you to order tickets, ensure loyalty programs, make purchases online, make debit, credit and contactless payments. ISO ISO 7816 ISO ISO 14443 Fel Felica (which only apply in Hong Kong, Japan and Singapore).
Unlike MasterCard PayPass competitors ‘ standards are not international, MasterCard MasterCard PayPass Is the Best choice for international acceptance networks for all payment channels.
The Advantages Of The MasterCard PayPass
The advantage of PayPass technology is that all parties involved in the payment process, such as cardholders, merchants and financial organizations, note its favorable characteristics.
PayPass provides consumers with:
speed and ease of payment, thus improving the overall level of service;
a sense of security, as the cardholder never lets go of it for a second;
improved quality of reporting to companies.
PayPass allows merchants to:
provide fast customer service-increase profits as consumers spend more using cards rather than cash;
to ensure the reliability of transactions for fast food;
attract new customers and strengthen their loyalty.
PayPass allows financial organizations participating in the payment system to:
increase total turnover by servicing non-cash payments;
to cooperate with the enterprises of fast service;
increase the loyalty of account holders to card programs.

Market analysis
MasterCard has conducted a large-scale study that found that 63% of consumers will “definitely” or “possibly” use A MasterCard PayPass card as soon as it appears in their Bank. They also stated that this card will allow them to reduce the use of cash by more than 2 times (by 53%). Consumer reviews indicate that Russia is perceived as an” innovative “product that is” pleasant ” to use and easier to shop with.
For more information, contact your MasterCard representative in your area or send an email request [email protected]

Opening the door to the world of EMV
The joint Russian-German enterprise “ORGA ZELENOGRAD” was established in February 1996 and is currently one of the largest enterprises in the domestic market of information and settlement technologies that produces all types of plastic cards for global telecommunications, banking and identification systems.
In 2004, after completing the stages of the international audit, the international payment systems Visa and MasterCard international announced the successful certification of the company “ORGANA ZELENOGRAD” for compliance with international norms and standards for the processes of implantation of modules and personalization of Bank cards with a magnetic stripe and a microprocessor.
The closed production of Bank cards (with a magnetic stripe and a microprocessor), which is available to ORGA ZELENOGRAD as part of the orga group of companies, brings the company to the forefront among the suppliers of Bank cards of international payment systems Visa international payment system and MasterCard international. Modern production facilities, high scientific and technical potential of the company, combined with a rich experience in technical consulting and implementation of large-scale projects — are part of a successful step-by-step system of EMV-migrations.

Modern personalization equipment that allows you to quickly and efficiently perform any operations for graphic and electrical personalization of smart cards and printing PIN conversions. The smart card personalization system meets the latest industry standards and thus allows you to personalize complex multi-app cards of global platforms. The cycle of personalization processes for Bank and multiapplication cards in the person-Bureau of the company “ORGANA ZELENOGRAD” meets the most modern requirements for ensuring information security. Banks-Global (VSDC, M/Chip, Java applets of the customer) Global global. Platform, Visa and MasterCard.
The company offers the production and personalization of Bank cards of all types-plastic cards with a magnetic stripe, Bank cards EMV – cards of “economy class” under the General name EMV – g-Lite, Java-C cards with EMV applications pre-installed in Rome.
Or orga EMV Lite y — simple, affordable and with style!
Among the modern products offered by manufacturers of smart cards for payment systems is orga EMV Lite y, which is characterized by unique operational parameters. Orga EMV Lite y is implemented on the basis of the most modern technologies. 1B-bit processor and mask, both VSDC and M / Chip, makes this card unique in its segment.

™ Main characteristics of the org EMV Lite g microprocessor card:
• One mask for visa and MasterCard applications,
• 1B-bit processor,
64 Byte ROM byte,
2 to bytes of RAM,
Authentication Of Static Data,
Additional applications:
EMV Lite Y-has a built – in application for secure data storage (smartyplus), which can be used for implementing loyalty programs.
The EMV Lite y personalization concept follows a standardized approach to personalization, MasterCard MasterCard, Visa, and EMVCo.
Specification of personalization of EMV cards VI. 0,
M / Chip 4 Common Personalization Specification,
General technical requirements for personalization for VSDC,
Support For Global Platform Scenarios.
Microprocessor card 5m art Fox — the whole world in one crystal!
Smart SmartFox is an excellent product for implementing various marketing schemes. A highly secure, multiapplication platform with pre-installed applications of Visa and MasterCard payment systems determines a wide range of card functionality and prospects for its use in global and local banking payment systems.
Main characteristics of the SmartFox microprocessor card:
ROM 160 Byte bytes,
• Powerful 16-RIS RISC processor,
6 bytes of RAM,
3DES, SHA1/MD5, RSA-cryptography,
Configuration of 2.0.1 JavaCard 2.1.1 and global platform 3 with PC-skoka.
M / Chip 4 Select (ROM),
PSE 2.2 (ROM),
Additional applications, Java Java (EEPROM).
Standard personalization:
EMV V1. 0 card personalization specification,
M / Chip 4 General Personalization Specification,
General technical requirements for personalization for VSDC.
In 2001, the company launched a new complex for the production of telecommunications, banking, identification and settlement plastic smart cards. Technological lines designed to produce more than 25 million smart cards per year meet the highest level of industrial organization of labor, even by European standards.
In addition to the banking market, the company’s products are also in demand in other areas where modern advances in information technology provide customers with additional competitive advantages: in providing GSM communication services, in government identification systems, in loyalty marketing programs developed in retail and service networks, in access control systems, information protection, cashless payments, e-Commerce, and mobile banking.
The company’s staff consists of 150 highly qualified specialists, mainly graduates of MIPT and MIET. Among them are fourteen candidates of science. In December 1998, the company’s activities (design, development, production, service, management) were certified by DQS for compliance with the international quality standard ISO 9001, and in January 2003 — for compliance with the DIN EN IS0-9001: 2000 standard. In 2003, the company obtained licenses from the FSB Center for licensing, certification and protection of state secrets.
The reliability and financial stability of the company is annually confirmed by a reputable international auditor, ZAO PricewaterhouseCoopers Audit.

Comprehensive solution for personalization of smart cards of international payment systems
Solution features
Real personalization of real multi-functional cards — independent development and independent loading of various applications into the card.
Implementation of the full technological chain for issuing EMV cards, including application data preparation, smart card personalization and testing.
Managing the personalization process of any cards with a chip (G = O, T = 1, PCbusr …) on the entire line of DataCard equipment.
Ability to support various types of cards — proprietary (static) and open OS.
The ability to use the same personalization application on any personalization device (from PC/SC reader and desktop embosser DC-150I to DC-9000/9000E and Maxsys complexes).
Support for input files of any format and any industrial DBMS.
Independent of the back office system used.
Simple script development — you only need to be able to work with a specific card and you don’t need to know anything about a specific personalization device or cryptographic device.
Availability of prepared scripts for personalization of certified static cards from about 10 manufacturers and Global Platform cards.

The possibility of post-issue — creation, activation and personalization of applications after personalization of the card.
The integrated smart card personalization solution includes the following components:
Smart Data Center-data preparation system for personalization of EMV-compatible smart cards;
Smart Card Personalization Environment — SCPE)-a smart card personalization server used to manage the chip personalization process;
the program is personalization of the chip running part no SCPE;
EMV-Insight is a hardware and software package for testing personalized cards.
In case of card personalization, desktop devices use the komak program that controls their operation and interacts with the SCPE server when writing data to the smart card chip.
In the process, all of these components use a single cryptopedia.
Card data prepared in the existing back office banking system is received at the input of the Smart Data Center EMV data preparation system, which provides:

interaction with any back-office system, which allows processing input data in various formats;
flexible reallocation of functions between the back office system and the system for preparing personalized data;
adding constants and calculated values to data from the input stream;
multi-functionality thanks to support for multiple data sources for various applications that can be personalized on the smart card;
generation of secret values in accordance with the requirements of EMV 2000, VSDC and M / Chip;
generation of data for cards of different issuers (multi-currency);
support for different parameter sets for different BIN;
support for a wide range of cryptographic devices used for generating secret values and keys.
creating different data groups for personalization of smart cards;
import the data from the Visa Personalization Assistant;
support for various output data formats: XML, Visa Common Perso v 1.5, EMV Common Perso v 1.0, etc.
Smart Data Center operates in two modes: interactive and batch.
Interactive mode provides the following features:
using graphical tools for editing parameters of configuration objects and CVM List rules;
description of configuration objects in the form of a tree;
defining bit values as a set of “checkboxes”.
testing the resulting configuration;
processing of input tasks.
Batch mode provides:
batch processing of input data;
error logging;
automatic or semi-automatic data preparation process.
If the back office system does not provide the formation and transmission of an encrypted PIN block, this task can be solved using an additional software product —
PIN generation and printing system (MSDP Manager), which is used to calculate the necessary parameters of the magnetic stripe and provides:
pin code generation, PVV values;
import a PIN code to external systems using a transport key;
generating CVV, CVV2, and iCVV values.
generating IBM Offset values;
calculating the PIN code for a given IBM Offset value;
printing PIN envelopes;
saving the generated values in the database.
The core of the solution is the smart card personalization server
Smart Card Personalization Environment (SCPE): SCPE supports Datacard’s entire line of personalization devices — from the DC-150i desktop embosser, designed to produce up to 50-100 cards per day, to the high-performance DC-9000 and Maxsys conveyor devices that enable card personalization at speeds of up to several thousand cards per hour.
SCPE features:
independence of smart card personalization applications from the type of personalization device used;
ability to manage personalization procedures for smart cards of one or different types on multiple personalization devices simultaneously;
scalability of the system-connecting new or additional personalization hardware does not require changing the personalization application;
using script technology to develop smart card personalization applications to speed up the development, implementation, integration, and support of personalized solutions;
support for most types of memory cards and ISO 7816 compliant cards;
a set of applications that run in the SCPE environment and are designed to personalize common native cards and cards that meet the GlobalPlatform specifications;
support for smart cards from various manufacturers.
The chip personalization program does not depend on the type of personalization runs under the control of the SCPE server and is activated when the card personalization task is started on the device. The program contains three components;
ActiveScriptProcessor script interpretation module;
a script that performs personalization procedures for a particular type of application and / or card;
a KeyCompass subsystem that provides execution of cryptographic algorithms used for personalization of a particular type of smart card and / or application, as well as managing encryption keys for a specific cryptographic device (for example, Eracom Protectserver Orange).
Issued cards can be tested on the EMV-Insight software and hardware testing complex, which includes two chip reader-write devices and Java service cards for storing keys. The complex checks the cards using the following parameters:
availability and correctness of data;
correct SDA calculation;
working correctly with the PIN;
the correctness of the implementation of risk treatments.
The complex provides emulation of the Bank’s terminal and authorization center, as well as dynamic application management (performing blocking or unblocking operations, changing PIN, using the Issuer’s scripts).
EMV-Insight provides the following features:
support for standard EMV applications (VSDC, M/Chip,…);
defining local applications built using EMV technology;
flexible configuration of terminal parameters;
support for master keys and / or card keys;
statistical emulation of the transaction flow with the definition of input and output parameters;
the distortion data for the simulation of error situations;
executing custom commands using a script.

Hypercom Corporation was established in 1978 in Australia and has gone all the way from a small private company to a multinational Corporation with four head offices on different continents and a large number of regional offices in various countries of the world. Currently, the company’s head office is located in Phoenix (Arizona, USA). Hypercom will be 27 years old in 2005. the experience gained during this time allows the Corporation to lead the technological progress in the field of electronic payments, and technological developments and solutions make Hypercom a leader in ensuring the security of financial transactions, including the leaders in EMV technologies. This is confirmed by the award of the “VISA Chip Vendor of the Year 2003” title by Hypercom Corporation in the field of advanced development, as well as the award of the “Market Engineering Company of the Year 2002, Year 2003″title by the consulting company Frost & Sullivan two years in a row.
Hypercom’s manufacturing facilities are located in the United States and Hong Kong. The company also has a division of Hypercom Financial Terminals for the production of PIN keyboards in Sweden.
The history of Hypercom in Russia began in 1995 with the supply of equipment through one of the company’s distributors. The successful start of sales and the great potential of the Russian market led to the opening of a representative office of the Corporation in Moscow in 1996. At first, the representative office had only one person, currently the Moscow office of Hypercom (Zelenograd) employs more than 50 people. They include software developers for POS terminals, terminal network management systems, network controllers, as well as personnel who sell and support clients in the CIS and Baltic countries.
Today, Nuregsosh Corporation remains the only provider of a comprehensive solution for creating a payment infrastructure for plastic cards, providing guaranteed and managed delivery of EFT (electronic funds transfer) transactions from POS terminals and ATMs to the Bank’s processing center. The complete solution consists of POS terminals, IEN/NAC network controllers, Term-Master Suite terminal management software, and HyperView View controller management software.
POS terminals are Hypercom
The new generation of Hypercom terminals of the Optimum series is the first line of devices developed by the European division of Hypercom specifically for the European markets. Previously, there were many series of POS terminals offered around the world that combine all the specific requirements for such devices in various geographical markets. Thus, for a long time Hypercom supplied equipment with the same functionality for all countries and continents, often with excessive functionality for many markets.
The main products of the Optimum series are the Optimum T2100 and Optimum M2100 POS terminals with wireless connectivity. In addition to POS terminals, there are new PIN pads of the P1100 and Optimum P2100 series, which differ from each other in a set of technical options and scope of application. For example, the p1100 PIN pad is designed to accept chip cards and enter a PIN code. In turn, the Optimum P2100 is positioned by the company as the most effective module for upgrading cash registers for receiving EMV cards. This PIN pad is equipped with a 32-bit processor, has a built-in cryptoprocessor, a protected memory area, and magnetic and chip card readers. In addition, 12 MB of Optimum P2100 memory can be used for downloading additional software applications, including those required for working with multifunctional EMV cards. It should also be noted that both pinpads support the 3DES and RSA encryption algorithm.

Technical features of the Optimum series
It should be noted that the technical features of the new Optimum POS terminals differ significantly from other Hypercom device lines. In particular, in Optimum terminals, the company used not only a new generation of processors, but also a new memory architecture.
Thus, the technical core of the terminal is a 32-bit RISC processor based on the ARM 7 architecture, operating at a frequency of 66 MHz.
As standard, the new POS terminals have a memory area of 12 MB. This amount of memory is sufficient to use the device not only for receiving magnetic stripe cards and EMV cards, but also in the broader framework of additional systems such as loyalties, prepaid services, etc. All POS terminals in the Optimum series have 3 SIM slots and a built-in PIN pad. The devices are equipped with a built-in security module that supports the latest encryption standards (including support for 3DES and RSA), a reader for magnetic and chip cards, a 64×128-pixel graphic display with improved illumination, and a high-speed thermal printer — 16 lines/s.
The Optimum T2100 POS terminal uses a new thermal printer with SureLoad technology, thanks to which the receipt tape is loaded by placing it in a special tray without the need to refill it through the terminal’s printer. Traditionally, when developing new devices, Hypercom specialists pay special attention to their telecommunications capabilities. This approach remains relevant for devices of the Optimum series. In addition to the traditional analog modem with FastPOS technology and data transfer speeds of up to 56 KB/s (V. 90), the POS terminals of Optimum have added the possibility of GPRS/ GSM wireless communication and Bluetooth radio frequency technology (for the POS terminal of Optimum M2100). Wireless communication options, and above all Bluetooth, are intended for use primarily in restaurants and cafes: thanks to the mobility of the device, the customer does not have to let the card “out of sight”when calculating the card. In addition, the terminal is able to work in an Ethernet network over the TCP / IP Protocol.

This unique set of telecommunications capabilities provides users of the Optimum series with extensive opportunities to connect POS terminals at almost any point of sale using various data transfer channels.
The new Optimum line stands out from other Hypercom product lines in its appearance. In addition to their compact and ergonomic design, Optimum devices feature a simpler and more intuitive user interface. This was done specifically so that acquiring banks could minimize the necessary retraining of employees of trade and service enterprises to work with new POS terminals.
In the upper part of the terminal keyboard, there are “scroll” keys that are used to select additional options and move through the submenu screens. The rest of the keyboard is represented by traditional numeric keys and the “enter”, “clear” and “cancel”buttons.
In General, the keyboard and logic of working with Optimum terminals are in many ways similar to the already familiar mobile phones. At least in comparison with terminals with a large number of keys, the new devices favorably differ in the simplicity of the interface, which should undoubtedly please users.
All delivered equipment is certified for compliance with EMV Level 1, and software-EMV Level 2 and provides high reliability and security of financial transactions.
New technologies for wireless communication applications for Hypercom POS terminals
At the moment, wireless technologies are becoming more and more relevant when conducting transactions using plastic cards. Hypercom offers several varants for solving such problems. The Optimum n12100 terminal can be equipped with a built-in GSM/GPRS or Bluetooth module.
In order to ensure reliable operation over GPRS, the M2100 implements automatic redundancy over a switched (CSD — circuit switched data) GSM channel.

The first network configuration option that does not require special network equipment in the processing center.
When conducting a financial transaction, the terminal initially opens a GPRS session and establishes a TCP connection to the host’s SSL server. With a good connection, the transaction takes 10-15 seconds. If there is no connection via GPRS, the terminal establishes a dial-up channel at the specified phone number, connects to the operator’s Internet gateway, and establishes a TCP connection with the same SSL server. In this case, the transaction is completed in 30-40 seconds.
The cost and duration of CSD transactions can be reduced if you do not use the operator’s Internet gateway, but install GSM modems directly on the territory of the processing center
Optimum 2100 SSL client
Base station
The Internet

Processing center network
At some points, the percentage of GPRS failures is too high or the quality of the GSM signal is insufficient. In such cases, we recommend using the Hypercom Optimum M2100-Bluetooth terminal.
Smart Bluetooth base station
There are a number of retail and service companies that operate in areas with weak or absent GSM/GPRS signal levels. The optimal solution for such points is to use the Hypercom M2100 terminal, which communicates with the base station via Bluetooth. The base station contains an analog modem that connects to the telephone line. You can connect up to three mobile terminals to a single base station. The main distinctive feature of the Hypercom base station is the ability to simultaneously conduct transactions on all connected terminals without additional time costs.

Optimum 2100 Bluetooth
Intelligent base station

Let’s assume that a card was inserted at the first terminal, the amount and PIN code were entered. After processing the card, the terminal establishes a Bluetooth connection with the base station and requests a phone number. The base station starts dialing. At this point, a similar request is received from the second terminal and written to the queue. After connecting to the processing center, both terminals simultaneously send transactions, and the base station broadcasts them to a common channel. The host responds to both terminals in any order. Each host response will be sent to the terminal that the response is intended for. The modem connection will be terminated by the base station after the last terminal closes the Bluetooth connection.
The proposed solution not only reduces transaction time, but also reduces the load on the modem pool.
Hypercom NAC and IEN communication equipment
From the very beginning of its activity the company Hypercom engaged in the development and production of specialized communication controllers NAC(IEN). In contrast to conventional network controllers that are focused on working with large amounts of data, NAC/IEN are communication controllers that are specially designed to meet the requirements of building networks of POS terminals and ATMs. Compared to the widely used X. 25 PAD, which supports the X. 25 data network, NAC and IEN operate over protocols such as TCP/IP (Ethernet network), Frame Relay, ISDN, on the one hand, and terminal dial-up (dial-up), on the other. In particular, it is possible to implement support for the incoming digital telephone channel E1. The synchronous SDLC Protocol is used for transmitting transactions because SDLC provides the best way to achieve reliability and speed of delivery over telephone lines, while it carries address information that allows flexible message routing. SDLC also uses a reliable mechanism (CRC) to verify the truth of the information received, which is especially important in the case of noisy telephone lines.

Advantages of a comprehensive approach
Unlike its competitors, which in most cases supply their POS terminals in tandem with third-party telecommunications equipment, Hypercom Corporation is still the world’s only provider of integrated solutions for accepting cards in retail and service enterprises, including network controllers, POS terminals, and software for managing terminals and controllers of its own production.
Due to the use of proprietary network controllers, the data transfer speed between the terminal and the host increases significantly, i.e. the time for conducting a client transaction decreases. Thus, the quality of customer service of the Bank significantly increases, and the number of customers of a retail outlet or Bank branch per day increases.
An important role in the complex solution is played by the system for remote loading of software and parameters into terminals — TermMaster Suite. In addition to remote management of the terminal network, TermMaster Suite allows the Bank to create a database of terminals that stores the settings of each individual device. Using this database, Bank employees will be able to quickly check the device settings, draw conclusions about the network configuration as a whole, and plan their actions to make changes.
As a rule, update processes are started at night, so as not to interfere with the full day-to-day operation of stores. In this case, the Bank’s engineer can configure the TermMaster Suite so that the update process starts automatically without his participation and without the need for personal presence at the workplace. Thus, the employees of the trade and service enterprise-cashiers and operators-do not break away from performing their direct duties.