Patent expands Bluefin’s global intellectual property coverage of its proprietary P2PE platform
August 12, 2020 – Atlanta, GA – Bluefin, the leading provider of payment security technologies including PCI-validated Point-to-Point Encryption (P2PE) solutions for contactless payments in retail, hospitality, healthcare, and higher education, has announced the issuance of Patent No. 6691170 on core intellectual property in Japan.
The patent covers systems and methods for facilitating the decryption of payloads received from encryption devices. As part of PCI-validated P2PE solutions, encryption is done immediately upon swipe, tap, key or dip in a P2PE approved device, and decryption is only done in hardware outside of the merchant’s environment.
The intellectual property includes a system with an encryption device connected to a device management system, where the device management system receives payloads from the device and facilitates decryption of the payloads based at least in part on a serial number associated with the encryption device included in the encryption device payload.
“Hackers are using malware and other cyberattack vectors to breach cardholder data at unprecedented levels globally, especially during the current time of COVID-19. P2PE’s immediate encryption in both contactless and contact transactions is the primary defense for merchants, enterprises and organizations against this growing threat,” said Ruston Miles, Bluefin Founder and Advisor.
As the leading PCI-validated P2PE solution provider, Bluefin developed their own proprietary online device management system called the P2PE Manager® for clients to monitor the complete lifecycle of a payment device. This includes key injection, device shipping and tracking for chain-of-custody, device state and attestation management, and a record of every decryption performed by every device.
Bluefin is also the only PCI-validated P2PE provider to offer Decryptx®, a stand-alone solution for processors, payment gateways and software vendors that enables these companies to provide Bluefin’s P2PE solution on their platform, with no change to the client’s processing relationship. The P2PE Manager, together with Decryptx, provides a complete and validated P2PE platform for Bluefin partners.
“Bluefin’s patented P2PE platform empowers processors, payment gateways and software vendors to integrate this important security protection into their own systems quickly. Over 130 platforms have integrated our PCI P2PE solution across Europe, Canada, Latin America & Caribbean, and the United States. We are very excited to now be granted our fifth patent in Japan,” said Miles.
In addition to its suite of 25 U.S., Japanese and European patents, Bluefin has another 15 additional patents pending for encryption and payment security innovations. The company’s P2PE network currently includes over 130 connected partners operating in 32 countries, with over 100 devices/applications and 13 Key Injection Facilities (KIFs), as well as remote key injection services (RKI).
Bluefin recently released its 6th white paper, The Global Race to Secure Payment and Consumer Data by Merchants. The white paper details data privacy regulations, including GDPR and CCPA, and the technologies to ensure payment and data security – encryption, tokenization and EMV. The white paper is available for download.