Square Reader Security
integrity of sensitive data are injected at the time of manufacture using a Square-proprietary
protocol. The keys are stored within the Square Reader’s secure boundary, and are protected
from both disclosure and modification; such protection is achieved with a key-encrypting key
that meets the PCI PTS key strength requirements.
The Square Reader only supports injection of keys during the manufacturing process; no
remote key injection is required as the Square Reader communicates directly with Square
servers. During the manufacturing process, Square’s key provisioning equipment
authenticates incoming readers. Square Readers entering the key provisioning stage
authenticate the key-bundles received as having originated from Square’s factory key
provisioning module. The Square Reader does not accept keys from any entity other than the
factory provisioning module.
Using the Square-proprietary protocol, the cryptographic keys are injected into new devices in
encrypted form. The Square keys are injected and maintained under Square control and the
details are transparent to the merchant.
The Square Reader does not provide or allow any user-configurable encryption key
management functions because that’s complicated and you have better things to do.
Thanks for reading!
© 2016 Square Inc. All Rights Reserved.
Version 1.00
9
Содержание Contactless and Chip Reader
Страница 1: ...Contactless and Chip Reader PCI Compliance Policy and Procedures Version 1 00 ...
Страница 4: ...Introduction Isometric top down view Front view 2016 Square Inc All Rights Reserved Version 1 00 2 ...
Страница 5: ...Introduction Side view Back view 2016 Square Inc All Rights Reserved Version 1 00 3 ...
Страница 6: ...Introduction 2016 Square Inc All Rights Reserved Version 1 00 4 ...
