|
Total Security
The MTT 1500
and Way Systems technology provides an end-to-end
solution for utmost security in mobile transaction processing. Though, it is transparent to you; be assured, it is always working offering the utmost security in Secure Card Processing.
MTT Hardware
The Way Systems Mobile Transaction Terminal (MTT) consists
of a hardware module attachment that connects to a GSM mobile
phone's Secure Identification Module (SIM) socket. Once
connected to the phone, the MTT provides a slot for the
mobile operator's SIM card and provides additional peripheral
such as smart card readers, a magnetic stripe card reader
and an infrared transceiver. The microprocessor within the
MTT routes data between the phone and manages the operations
of the peripherals. Utilizing SIM Application Toolkit (STK)
commands, programs embedded on the MTT control the user
interface of the phone, establish network connectivity,
and maintain complete control and security of mobile transactions.
SecureNet
Way Systems has developed SecureNet, a secure network of
mutually authenticated nodes (MTT's, SecureNet servers,
and application servers) that enables secure, encrypted
and authenticated transactions across wireless and wired
networks. SecureNet provides the following features:
Authenticates the identity of each node in the network.
Ensures secure connectivity between applications residing
on MTT's and those on Way's application servers, such as
Mobile Merchant Server.
Allows IT managers and administrators with appropriate
rights to remotely manage applications in a secure fashion.
Management functions include the ability to add, delete,
or update applications, administer version control of applications,
and set application execution rights.
SMAP
The Secure Mobile Application Platform (SMAP) is used
by developers and ISVs to generate and deploy their own
applications within SecureNet. Way provides an API of
class libraries that allows developers to take full advantage
of SecureNet features, including:
Authentication of both nodes and applications.
Secure virtual communication channels for nodes and
applications.
Freedom from the underlying physical network. Therefore
developers need not take into account physical network
nodes or connections when designing applications.
The SMAP development environment supports well known,
industry-standard programming languages, such as C++ and
Java, and widely used libraries.
Moreover, SMAP allows developers to interactively enter
and debug code on the target hardware. This eliminates
the often cumbersome step of developing and debugging
applications in emulation mode and then downloading and
testing them on the actual hardware.
Way's Mobile Security Model
Encryption
Each node in SecureNet contains a WAY Authentication Module
(WAM). For MTTs, the WAM is a SAM card which is inserted
in the backpack's SAM slot. Using the crypto coprocessor
of the SAM, transactions are encrypted using DES, 3DES,
or RSA. For SecureNet servers, the WAM is either a SAM
card accessed through a smart card reader or implemented
by the server software.
Authentication
SecureNet server is the root node in a SecureNet. All
SecureNet servers must register with a higher-level certificate
authority server (CA). Once the CA server certifies the
lower-level SecureNet server, the CA declares in effect
that other nodes or SecureNet servers can now trust the
identity of this lower-level SecureNet server. The certificate
conferred by CA server is used to authenticate a lower-level
SecureNet server.
The Way Systems SecureNet CA server is responsible for certifying
and authenticating all lower-level SecureNet servers, such
as those used by merchants, banks, or other Way customers.
The Way Systems SecureNet CA server, in turn, is certified
and authenticated by a higher level CA server, typically run
by an organization that oversees payment transaction standards
such as EMV. This multi-level certification process is known
as a trust hierarchy.
|
