Patent expands Bluefin’s intellectual property coverage of its proprietary P2PE Decryption as a Service platform
December 11, 2019 – Atlanta, GA – Bluefin, the leading provider of payment security technologies including PCI-validated Point-to-Point Encryption (P2PE) solutions for retail, hospitality, healthcare, and higher education, has announced the issuance of a patent on core intellectual property in the U.S.
U.S. Patent No. 10,505,906, Systems and Methods for Decryption as a Service Via a Configuration of Read-Only Databases, is a continuation of U.S Patent No. 9,531,684, issued in December 2016, and broadens claims around firmware transmittal.
The patent covers scalable systems and methods for decrypting thousands of transactions per second. The patent also covers the systems and methods for parsing data from devices (payment terminals), device authentication and validation, key management, and decryption in a hardware security module (HSM). The patent further relates to a point-to-point encryption management system configured to receive information from a multitude of point of interaction devices (payment terminals).
“Decryptx and P2PE Manager enable payment and software providers to quickly and easily offer PCI-certified P2PE through their own proprietary platforms directly to their clients,” said Ruston Miles, Bluefin’s Chief Strategy Officer. “This eliminates the need for providers to become certified themselves. To date, 121 payment gateways, processors and software providers have selected Bluefin’s P2PE platform making it the largest certified P2PE network in the world.”
As a leading PCI P2PE solution provider, Bluefin developed their own proprietary online device management system called the P2PE Manager for clients to monitor the complete lifecycle of a payment device. This includes key injection, device shipping and tracking for chain-of-custody, device state and attestation management, and a record of every decryption performed by every device. The P2PE Manager, together with Decryptx, provides a complete and validated P2PE platform for Bluefin partners.
In addition to its suite of 18 U.S., Japanese and European patents, Bluefin has another 18 additional patents pending for encryption and payment security innovations. The company’s P2PE network currently includes over 120 connected partners operating in 30 countries, with over 100 devices/applications and 14 Key Injection Facilities (KIFs), as well as remote key injection services (RKI).
Earlier this year, Bluefin released a new white paper, authored by Verizon Enterprise Solutions, on the Value of Point-to-Point Encryption in Point-of-Interaction (POI) Environments. Readers can learn more about the POI threat landscape how PCI P2PE protects cardholder data (CHD), while exploring the evolution of P2PE, the differences between certified and non-certified encryption solutions, benefits of PCI-validated P2PE solutions in POI and point-of-sale (POS) environments, and the roles of tokenization, EMV and P2PE in protecting payment data. The white paper is available for download.