Welcome!

News Feed Item

403 Labs Assesses First U.S.-Based P2PE Solution Accepted by the PCI SSC

PayConex(TM) P2PE Encryption Solution to Help Protect Credit Card Data, Reduce Malicious Hacking

NAPERVILLE, IL--(Marketwired - March 19, 2014) -  With guidance from 403 Labs, the security and compliance division of Sikich LLP, the first U.S.-based point-to-point encryption (P2PE) solution, PayConex P2PE, has been introduced by the firm's client, Bluefin Payment Systems.

A P2PE solution encrypts credit card data from the point it is swiped into a system until the point it reaches the solution provider. Because of the level of security a P2PE solution provides, standards are rigorous and have been difficult to meet. Bluefin's solution, which was assessed by 403 Labs, was recently accepted by the standards body for the payment card industry (PCI), the PCI Security Standards Council (PCI SSC).

"Bluefin recognized that its partners and merchants were interested in enhancing security while reducing compliance scope," said D.J. Vogel, Partner, Security and Compliance Practice Leader at Sikich. "Their hard work and initiative paid off, allowing them to be the first-to-market solution in North America."

The Nilson Report stated that global credit, debit and prepaid card fraud resulted in losses of $11.27 billion in 2012, an increase of more than 14 percent over the prior year. Therefore, solutions like Bluefin's PayConex P2PE will become more critical, particularly for retailers. According to an official statement by Bluefin, PayConex P2PE will reduce the potential for malicious hacking and fraud, as well as reduce the PCI Data Security Standard (PCI DSS) compliance burden for merchants.

403 Labs worked closely with Bluefin's team to provide consultation and guidance for building the solution infrastructure and operations necessary to complete the rigorous assessment process. The assessment conducted by 403 Labs involved in-depth testing and a thorough review of Bluefin's hardware, software and encryption methods, as well as numerous associated practices and policies.

"Becoming the first North American PCI-validated solution P2PE was new ground for all of us," said Ruston Miles, Chief of Product Innovation, Bluefin Payment Systems. "Without the guidance of 403 Labs on interpreting these standards, and its commitment to powering through the mountains of materials associated with the testing, achieving this goal would have been exponentially more difficult."

In early 2014, Sikich significantly grew its information security practice after its merger with 403 Labs. Visit the Sikich website for more information about the information security services the firm offers.

About Sikich
Sikich LLP, a leading accounting, advisory, investment banking, technology and managed services firm, has more than 600 employees throughout the country. Founded in 1982, Sikich now ranks as one of the country's Top 35 Certified Public Accounting firms and is among the top 1% of all enterprise resource planning solution partners in the world. From corporations and non-profits to state and local governments, Sikich clients can use a broad spectrum of services and products that help them reach long-term, strategic goals.

403 Labs, the security and compliance division of Sikich, is a full-service information security and compliance consulting practice specializing in performing compliance audits, computer security assessments, penetration tests and computer forensic investigations. 403 Labs is an Approved Scanning Vendor (ASV), a Qualified Security Assessor (QSA), a Payment Application Qualified Security Assessor (PA-QSA), a QSA and PA-QSA for Point-to-Point Encryption (QSA (P2PE) and PA-QSA (P2PE) and a PCI Forensic Investigator (PFI) certified to perform the requirements of the Payment Card Industry Data Security Standard (PCI DSS) and the Payment Application Data Security Standard (PA-DSS).

Visit www.sikich.com to discover how you can elevate performance in your organization.

Securities are offered through Sikich Corporate Finance LLC, a registered broker dealer with the Securities Exchange Commission and a member of FINRA/SIPC.

More Stories By Marketwired .

Copyright © 2009 Marketwired. All rights reserved. All the news releases provided by Marketwired are copyrighted. Any forms of copying other than an individual user's personal reference without express written permission is prohibited. Further distribution of these materials is strictly forbidden, including but not limited to, posting, emailing, faxing, archiving in a public database, redistributing via a computer network or in a printed form.

Latest Stories
Internet of @ThingsExpo, taking place October 31 - November 2, 2017, at the Santa Clara Convention Center in Santa Clara, CA, is co-located with the 21st International Cloud Expo and will feature technical sessions from a rock star conference faculty and the leading industry players in the world. @ThingsExpo Silicon Valley Call for Papers is now open.
Regardless of what business you’re in, it’s increasingly a software-driven business. Consumers’ rising expectations for connected digital and physical experiences are driving what some are calling the "Customer Experience Challenge.” In his session at @DevOpsSummit at 20th Cloud Expo, Marco Morales, Director of Global Solutions at CollabNet, will discuss how organizations are increasingly adopting a discipline of Value Stream Mapping to ensure that the software they are producing is poised to ...
When NSA's digital armory was leaked, it was only a matter of time before the code was morphed into a ransom seeking worm. This talk, designed for C-level attendees, demonstrates a Live Hack of a virtual environment to show the ease in which any average user can leverage these tools and infiltrate their network environment. This session will include an overview of the Shadbrokers NSA leak situation.
SYS-CON Events announced today that delaPlex will exhibit at SYS-CON's @ThingsExpo, which will take place on June 6-8, 2017, at the Javits Center in New York City, NY. delaPlex pioneered Software Development as a Service (SDaaS), which provides scalable resources to build, test, and deploy software. It’s a fast and more reliable way to develop a new product or expand your in-house team.
DevOps is often described as a combination of technology and culture. Without both, DevOps isn't complete. However, applying the culture to outdated technology is a recipe for disaster; as response times grow and connections between teams are delayed by technology, the culture will die. A Nutanix Enterprise Cloud has many benefits that provide the needed base for a true DevOps paradigm. In his Day 3 Keynote at 20th Cloud Expo, Chris Brown, a Solutions Marketing Manager at Nutanix, will explore t...
Interested in leveling up on your Cloud Foundry skills? Join IBM for Cloud Foundry Days on June 7 at Cloud Expo New York at the Javits Center in New York City. Cloud Foundry Days is a free half day educational conference and networking event. Come find out why Cloud Foundry is the industry's fastest-growing and most adopted cloud application platform.
In his opening keynote at 20th Cloud Expo, Michael Maximilien, Research Scientist, Architect, and Engineer at IBM, will motivate why realizing the full potential of the cloud and social data requires artificial intelligence. By mixing Cloud Foundry and the rich set of Watson services, IBM's Bluemix is the best cloud operating system for enterprises today, providing rapid development and deployment of applications that can take advantage of the rich catalog of Watson services to help drive insigh...
Automation is enabling enterprises to design, deploy, and manage more complex, hybrid cloud environments. Yet the people who manage these environments must be trained in and understanding these environments better than ever before. A new era of analytics and cognitive computing is adding intelligence, but also more complexity, to these cloud environments. How smart is your cloud? How smart should it be? In this power panel at 20th Cloud Expo, moderated by Conference Chair Roger Strukhoff, pane...
DevOps is often described as a combination of technology and culture. Without both, DevOps isn't complete. However, applying the culture to outdated technology is a recipe for disaster; as response times grow and connections between teams are delayed by technology, the culture will die. A Nutanix Enterprise Cloud has many benefits that provide the needed base for a true DevOps paradigm.
As enterprise cloud becomes the norm, businesses and government programs must address compounded regulatory compliance related to data privacy and information protection. The most recent, Controlled Unclassified Information and the EU’s GDPR have board level implications and companies still struggle with demonstrating due diligence. Developers and DevOps leaders, as part of the pre-planning process and the associated supply chain, could benefit from updating their code libraries and design by in...
The 21st International Cloud Expo has announced that its Call for Papers is open. Cloud Expo, to be held October 31 - November 2, 2017, at the Santa Clara Convention Center in Santa Clara, CA, brings together Cloud Computing, Big Data, Internet of Things, DevOps, Digital Transformation, Machine Learning and WebRTC to one location. With cloud computing driving a higher percentage of enterprise IT budgets every year, it becomes increasingly important to plant your flag in this fast-expanding busin...
Existing Big Data solutions are mainly focused on the discovery and analysis of data. The solutions are scalable and highly available but tedious when swapping in and swapping out occurs in disarray and thrashing takes place. The resolution for thrashing through machine learning algorithms and support nomenclature is through simple techniques. Organizations that have been collecting large customer data are increasingly seeing the need to use the data for swapping in and out and thrashing occurs ...
SYS-CON Events announced today that DivvyCloud will exhibit at SYS-CON's 20th International Cloud Expo®, which will take place on June 6-8, 2017, at the Javits Center in New York City, NY. DivvyCloud software enables organizations to achieve their cloud computing goals by simplifying and automating security, compliance and cost optimization of public and private cloud infrastructure. Using DivvyCloud, customers can leverage programmatic Bots to identify and remediate common cloud problems in rea...
Most DevOps journeys involve several phases of maturity. Research shows that the inflection point where organizations begin to see maximum value is when they implement tight integration deploying their code to their infrastructure. Success at this level is the last barrier to at-will deployment. Storage, for instance, is more capable than where we read and write data. In his session at @DevOpsSummit at 20th Cloud Expo, Josh Atwell, a Developer Advocate for NetApp, will discuss the role and value...
SYS-CON Events announced today that Tintri, Inc, a leading provider of enterprise cloud infrastructure, will exhibit at SYS-CON's 20th International Cloud Expo®, which will take place on June 6-8, 2017, at the Javits Center in New York City, NY. Tintri offers an enterprise cloud platform built with public cloud-like web services and RESTful APIs. Organizations use Tintri all-flash storage with scale-out and automation as a foundation for their own clouds – to build agile development environments...