White Papers

Formulating a Complete Payment and Data Security Approach

Bluefin’s white paper overviews the rules and regulations governing payment and sensitive data, the considerations when choosing a security approach, and how tokenization can be combined with encryption to secure every data point – with a specific discussion around Bluefin’s P2PE and ShieldConex® solutions.

Formulating a Complete Payment and Data Security Approach
P2PE in POI Environments: Scope, Cost, Benefits and Implementation

P2PE in POI Environments: Scope, Cost, Benefits and Implementation

Our 2019 P2PE white paper, authored by Verizon Enterprise Solutions, explores the point-of-sale threat landscape and how PCI-validated Point-to-Point Encryption (P2PE) protects cardholder data (CHD), while discussing the evolution of P2PE, the differences between certified and non-certified encryption solutions, benefits of PCI-validated P2PE solutions in POI and point-of-sale (POS) environments, and the roles of tokenization, EMV and P2PE in protecting payment data.

Using Bluefin’s ShieldConex® for Data Protection: Foregenix Review

The protection of sensitive data, whether cardholder data, Personally Identifiable Information (PII), or Personal Health Information (PHI) is of primary concern for companies globally – to the point where implementation of data protection is often subject to regulatory oversight. Bluefin commissioned Foregenix to review the company’s ShieldConex® solution and document how tokenization can assist an organization’s security goals, and how ShieldConex provides a flexible and comprehensive approach to securing numerous data elements while providing continued utility of the data.

Using Bluefin’s ShieldConex® for Data Protection
Nacha and PCI Payment Security: Navigating the Crossover in Compliance with 2021 Nacha Data Regulations

Nacha and PCI Payment Security: Navigating the Crossover in Compliance with 2021 Nacha Data Regulations

Nacha’s April 2020 Data Security Policy supplement will require protection of data at rest – specifically Account Numbers – in June 2021 for ACH Originators and Third-Parties with more than 6 million ACH payments annually, and June 2022 for ACH Originators and Third-Parties with more than 2 million ACH payments annually. This paper reviews the updated ACH supplement and how it will apply to your organization. The paper also addresses how ACH rules compare to PCI requirements, and how organizations can address the new rules and requirements utilizing tokenization.

Impact of PCI P2PE – Bluefin White Paper Authored by Coalfire Systems Inc.

This P2PE white paper white paper details how P2PE aligns with the PCI DSS compliance framework in order to simplify merchant compliance effort and how the associated cost savings may be measured from this scope reduction. The white paper also discusses how a merchant or enterprise can model its own compliance costs in order to evaluate the total cost of ownership (TCO) and return on investment (ROI) for PCI-validated P2PE.

Impact of PCI P2PE – Bluefin White Paper Authored by Coalfire Systems Inc.
The Rise in Ransomware | Preparing for a Potential Attack

The Rise in Ransomware | Preparing for a Potential Attack

One of the biggest threats to companies of all sizes and industries is ransomware. According to Verizon, ransomware makes up 27% of malware attacks and new ransomware variants have grown by 46%, while ransomware demands have risen 100% from 2019 to Q1 2020. While it is vital that companies consistently back up their files so that systems can be restored in the event of a ransomware attack, it is equally important that all data in the files – whether payment or personal data – is encrypted or tokenized. Download our new P2PE white paper to learn more about the latest ransomware threat vectors, ransomware tactics and how to protect your data with Bluefin’s PCI-validated point-to-point encryption (P2PE) and ShieldConex® data security platform.

ShieldConex® Data Privacy Platform: Addressing U.S. and Global Privacy Laws

This brief reviews current and emerging data privacy laws – including GDPR and CCPA – their definition of “personal data,” and the repercussions when companies and organizations fail to protect consumer information. It also discusses how Bluefin’s ShieldConex® data privacy platform, which is designed to secure PII, PHI and financial information, helps address these laws.

ShieldConex® Data Privacy Platform