Many issuers globally have outsourced EMV smart card issuance due to its complexity compared to magnetic stripe card issuance, thereby relying on others to keep secure cardholder data and associated keys. With BCSS, you reduce risk dramatically by generating EMV data preparation files in-house and sending them securely to your card service bureau for production of the personalized cards.

Protect your mainframe magnetic stripe investmentThe EMV data prep module shields you from the complexity of EMV card issuance, allowing you to perform the data preparation function instead of outsourcing it. You can pre-process EMV card personalization files without a steep learning curve, while protecting your magnetic stripe investment.

Most issuers house their cardholder management system on legacy mainframes where they prepare data for magnetic stripe card issuance. The EMV module runs on all major operating systems including the IBM z/OS used by most issuers. It facilitates EMV data preparation using your existing magnetic stripe issuance platform and cardholder management system.

Producing smart cards in single and multi-application environments requires that you merge application data, cardholder data, keys

Prime Factors makes legacy-system EMV data preparation as easy and familiar as magnetic

stripe is today. Now you can control your most sensitive and proprietary information by gen-

erating cardholder data and keys in-house with the EMV data preparation module for the

Bank Card Security System (BCSS).

Simplify the complexity of EMV data preparation

and certificates from many sources. The EMV module pulls this data together and creates a file that you can securely send to the bureau of your choice. Any card personalization system, regardless of the IC card operating system and personalization equipment employed, can interpret the file for processing.

Overcome EMV’s biggest challenge – key managementEMV issuance requires generation and management of many more cryptographic keys than magnetic stripe issuance. The EMV module takes you painlessly beyond basic key management for security code and PIN generation to unique private and private/ public key pairs, secure messaging and application cryptograms. It streamlines and manages all of the additional intensive cryptographic functions needed to generate, import, export, distribute and protect keys.

Cut development costs with BCSSThe EMV data preparation module is an extension of BCSS, highly-specialized middleware that cuts costs by reducing the amount of programming required to develop and maintain a secure card issuance platform. BCSS provides software for key management, Thales HSM (hardware security module) integration and security code and PIN generation and verification for magnetic stripe and EMV IC cards.

Prime Factors 4725 Village Plaza Loop, Suite 100, Eugene, OR 97401-6677 (888) 963-6358 © 2013 Prime Factors, Inc.

User access &policy control

Communication & device

management

Key vault

FREE 30-DAY TRIAL

Download a fully functional version of BCSS at www.PrimeFactors.com.During your 30-day trial, experience the personalized support that separatesPrime Factors from the competition.

Prime Factors 4725 Village Plaza Loop, Suite 100, Eugene, OR 97401-6677 (888) 963-6358 © 2013 Prime Factors, Inc.

How the EMV data preparation module works:

Card Program Setup: This is where you define and set common batch parameters for applications to be personalized on the card. For EMV payment applications, this includes all risk parameter settings. Once a card program has been defined with risk parameters, it can be saved for future use.

Data Prep Server: Card program profiles are sent here to configure EMV data tag elements and provide BCSS specific cryptographic key requirements for each card program.

A single function call (CPPrep) generates EMV data tags and cryptographic keys for each card record. You need no knowledge of these data elements or the sequence they need to be executed to get all of the appropriate EMV data, keys and certificates for a defined card program. A single output file in XML format is returned that can be parsed into any format needed to pass on to the card personalization bureau.

EMV Applications Supported

Visa VSDC for contact cards, all operating system platforms Visa payWave contactless, all operating system platforms MasterCard M/Chip for contact cards, all operating system platforms MasterCard PayPass for contactless cards, all operating system platforms Discover D-PAS, all operating system platforms American Express contact, ExpressPay contactless, all operating system platforms JCB J/Smart, all operating system platforms

Bank Card Security System

Card Program Database

EMV Parameter

Settings

Thales payShield 9000

Library Calls

Get EMV (CPPrep) Card

Management System

Data Preparation

Server

CARD MANAGEMENTSYSTEM

DATA PREPARATIONSERVER

CARDPROGRAMDATABASE

GET EMV (CPPREP)

Thales payShield 9000

LIBRARY CALLS

Magnetic stripe functionality

EMV functionality

Here is the system architecture for BCSS and the EMV data preparation module:

How the EMV data preparation module works:

• Card Program Setup: This is where you define and set common batch parameters for applications to be personalized on the card. For EMV payment applications, this includes all risk parameter settings. Once a card program has been defined with risk parameters, it can be saved for future use in the card program database. • Data Prep Server: Card program profiles are sent here to configure EMV data tag elements and provide BCSS specific cryptographic key requirements for each card program.

• A single function call (CPPrep) generates EMV data tags and cryptographic keys for each card record. You need no knowledge of these data elements or the sequence they need to be executed to get all of the appropriate EMV data, keys and certificates for a defined card program. A single output file in XML format is returned that can be parsed into any format needed to pass on to the card personalization bureau.

EMV Applications Supported

• Visa VSDC for contact cards, all operating system platforms

• Visa payWave contactless, all operating system platforms

• MasterCard M/Chip for contact cards, all operating system platforms

• MasterCard PayPass for contactless cards, all operating system platforms

• Discover D-PAS, all operating system platforms

• American Express contact, ExpressPay contactless, all operating system platforms

• JCB J/Smart, all operating system platforms

EMV PARAMETER SETTINGS

CARD PROGRAM SETUP

API library