Welcome!

News Feed Item

403 Labs Assesses First U.S.-Based P2PE Solution Accepted by the PCI SSC

PayConex(TM) P2PE Encryption Solution to Help Protect Credit Card Data, Reduce Malicious Hacking

NAPERVILLE, IL--(Marketwired - March 19, 2014) -  With guidance from 403 Labs, the security and compliance division of Sikich LLP, the first U.S.-based point-to-point encryption (P2PE) solution, PayConex P2PE, has been introduced by the firm's client, Bluefin Payment Systems.

A P2PE solution encrypts credit card data from the point it is swiped into a system until the point it reaches the solution provider. Because of the level of security a P2PE solution provides, standards are rigorous and have been difficult to meet. Bluefin's solution, which was assessed by 403 Labs, was recently accepted by the standards body for the payment card industry (PCI), the PCI Security Standards Council (PCI SSC).

"Bluefin recognized that its partners and merchants were interested in enhancing security while reducing compliance scope," said D.J. Vogel, Partner, Security and Compliance Practice Leader at Sikich. "Their hard work and initiative paid off, allowing them to be the first-to-market solution in North America."

The Nilson Report stated that global credit, debit and prepaid card fraud resulted in losses of $11.27 billion in 2012, an increase of more than 14 percent over the prior year. Therefore, solutions like Bluefin's PayConex P2PE will become more critical, particularly for retailers. According to an official statement by Bluefin, PayConex P2PE will reduce the potential for malicious hacking and fraud, as well as reduce the PCI Data Security Standard (PCI DSS) compliance burden for merchants.

403 Labs worked closely with Bluefin's team to provide consultation and guidance for building the solution infrastructure and operations necessary to complete the rigorous assessment process. The assessment conducted by 403 Labs involved in-depth testing and a thorough review of Bluefin's hardware, software and encryption methods, as well as numerous associated practices and policies.

"Becoming the first North American PCI-validated solution P2PE was new ground for all of us," said Ruston Miles, Chief of Product Innovation, Bluefin Payment Systems. "Without the guidance of 403 Labs on interpreting these standards, and its commitment to powering through the mountains of materials associated with the testing, achieving this goal would have been exponentially more difficult."

In early 2014, Sikich significantly grew its information security practice after its merger with 403 Labs. Visit the Sikich website for more information about the information security services the firm offers.

About Sikich
Sikich LLP, a leading accounting, advisory, investment banking, technology and managed services firm, has more than 600 employees throughout the country. Founded in 1982, Sikich now ranks as one of the country's Top 35 Certified Public Accounting firms and is among the top 1% of all enterprise resource planning solution partners in the world. From corporations and non-profits to state and local governments, Sikich clients can use a broad spectrum of services and products that help them reach long-term, strategic goals.

403 Labs, the security and compliance division of Sikich, is a full-service information security and compliance consulting practice specializing in performing compliance audits, computer security assessments, penetration tests and computer forensic investigations. 403 Labs is an Approved Scanning Vendor (ASV), a Qualified Security Assessor (QSA), a Payment Application Qualified Security Assessor (PA-QSA), a QSA and PA-QSA for Point-to-Point Encryption (QSA (P2PE) and PA-QSA (P2PE) and a PCI Forensic Investigator (PFI) certified to perform the requirements of the Payment Card Industry Data Security Standard (PCI DSS) and the Payment Application Data Security Standard (PA-DSS).

Visit www.sikich.com to discover how you can elevate performance in your organization.

Securities are offered through Sikich Corporate Finance LLC, a registered broker dealer with the Securities Exchange Commission and a member of FINRA/SIPC.

More Stories By Marketwired .

Copyright © 2009 Marketwired. All rights reserved. All the news releases provided by Marketwired are copyrighted. Any forms of copying other than an individual user's personal reference without express written permission is prohibited. Further distribution of these materials is strictly forbidden, including but not limited to, posting, emailing, faxing, archiving in a public database, redistributing via a computer network or in a printed form.

Latest Stories
Data is an unusual currency; it is not restricted by the same transactional limitations as money or people. In fact, the more that you leverage your data across multiple business use cases, the more valuable it becomes to the organization. And the same can be said about the organization’s analytics. In his session at 19th Cloud Expo, Bill Schmarzo, CTO for the Big Data Practice at EMC, will introduce a methodology for capturing, enriching and sharing data (and analytics) across the organizati...
DevOps at Cloud Expo, taking place Nov 1-3, 2016, at the Santa Clara Convention Center in Santa Clara, CA, is co-located with 19th Cloud Expo and will feature technical sessions from a rock star conference faculty and the leading industry players in the world. The widespread success of cloud computing is driving the DevOps revolution in enterprise IT. Now as never before, development teams must communicate and collaborate in a dynamic, 24/7/365 environment. There is no time to wait for long dev...
I'm a lonely sensor. I spend all day telling the world how I'm feeling, but none of the other sensors seem to care. I want to be connected. I want to build relationships with other sensors to be more useful for my human. I want my human to understand that when my friends next door are too hot for a while, I'll soon be flaming. And when all my friends go outside without me, I may be left behind. Don't just log my data; use the relationship graph. In his session at @ThingsExpo, Ryan Boyd, Engi...
SYS-CON Events announced today that Secure Channels will exhibit at the 19th International Cloud Expo, which will take place on November 1–3, 2016, at the Santa Clara Convention Center in Santa Clara, CA. The bedrock of Secure Channels Technology is a uniquely modified and enhanced process based on superencipherment. Superencipherment is the process of encrypting an already encrypted message one or more times, either using the same or a different algorithm.
The vision of a connected smart home is becoming reality with the application of integrated wireless technologies in devices and appliances. The use of standardized and TCP/IP networked wireless technologies in line-powered and battery operated sensors and controls has led to the adoption of radios in the 2.4GHz band, including Wi-Fi, BT/BLE and 802.15.4 applied ZigBee and Thread. This is driving the need for robust wireless coexistence for multiple radios to ensure throughput performance and th...
The Internet of Things can drive efficiency for airlines and airports. In their session at @ThingsExpo, Shyam Varan Nath, Principal Architect with GE, and Sudip Majumder, senior director of development at Oracle, will discuss the technical details of the connected airline baggage and related social media solutions. These IoT applications will enhance travelers' journey experience and drive efficiency for the airlines and the airports. The session will include a working demo and a technical d...
SYS-CON Events announced today the Enterprise IoT Bootcamp, being held November 1-2, 2016, in conjunction with 19th Cloud Expo | @ThingsExpo at the Santa Clara Convention Center in Santa Clara, CA. Combined with real-world scenarios and use cases, the Enterprise IoT Bootcamp is not just based on presentations but with hands-on demos and detailed walkthroughs. We will introduce you to a variety of real world use cases prototyped using Arduino, Raspberry Pi, BeagleBone, Spark, and Intel Edison. Y...
Fact is, enterprises have significant legacy voice infrastructure that’s costly to replace with pure IP solutions. How can we bring this analog infrastructure into our shiny new cloud applications? There are proven methods to bind both legacy voice applications and traditional PSTN audio into cloud-based applications and services at a carrier scale. Some of the most successful implementations leverage WebRTC, WebSockets, SIP and other open source technologies. In his session at @ThingsExpo, Da...
If you’re responsible for an application that depends on the data or functionality of various IoT endpoints – either sensors or devices – your brand reputation depends on the security, reliability, and compliance of its many integrated parts. If your application fails to deliver the expected business results, your customers and partners won't care if that failure stems from the code you developed or from a component that you integrated. What can you do to ensure that the endpoints work as expect...
Traditional on-premises data centers have long been the domain of modern data platforms like Apache Hadoop, meaning companies who build their business on public cloud were challenged to run Big Data processing and analytics at scale. But recent advancements in Hadoop performance, security, and most importantly cloud-native integrations, are giving organizations the ability to truly gain value from all their data. In his session at 19th Cloud Expo, David Tishgart, Director of Product Marketing ...
While DevOps promises a better and tighter integration among an organization’s development and operation teams and transforms an application life cycle into a continual deployment, Chef and Azure together provides a speedy, cost-effective and highly scalable vehicle for realizing the business values of this transformation. In his session at @DevOpsSummit at 19th Cloud Expo, Yung Chou, a Technology Evangelist at Microsoft, will present a unique opportunity to witness how Chef and Azure work tog...
Information technology is an industry that has always experienced change, and the dramatic change sweeping across the industry today could not be truthfully described as the first time we've seen such widespread change impacting customer investments. However, the rate of the change, and the potential outcomes from today's digital transformation has the distinct potential to separate the industry into two camps: Organizations that see the change coming, embrace it, and successful leverage it; and...
SYS-CON Events announced today that China Unicom will exhibit at the 19th International Cloud Expo, which will take place on November 1–3, 2016, at the Santa Clara Convention Center in Santa Clara, CA. China United Network Communications Group Co. Ltd ("China Unicom") was officially established in 2009 on the basis of the merger of former China Netcom and former China Unicom. China Unicom mainly operates a full range of telecommunications services including mobile broadband (GSM, WCDMA, LTE F...
Enterprise IT has been in the era of Hybrid Cloud for some time now. But it seems most conversations about Hybrid are focused on integrating AWS, Microsoft Azure, or Google ECM into existing on-premises systems. Where is all the Private Cloud? What do technology providers need to do to make their offerings more compelling? How should enterprise IT executives and buyers define their focus, needs, and roadmap, and communicate that clearly to the providers?
The Transparent Cloud-computing Consortium (abbreviation: T-Cloud Consortium) will conduct research activities into changes in the computing model as a result of collaboration between "device" and "cloud" and the creation of new value and markets through organic data processing High speed and high quality networks, and dramatic improvements in computer processing capabilities, have greatly changed the nature of applications and made the storing and processing of data on the network commonplace.