Entrust Secures Payment Data for U.S. Retail Chain
When a leading U.S. retailer needed to safeguard customer payment data across 750 stores, they implemented Entrust nShield HSMs and CodeSafe software. Learn why.
Customer Profile
Located throughout the central United States, a large chain of stores and gas stations faced the challenge of protecting their customers' Primary Account Number (PAN) data. Operating in a highly competitive and regulated industry, they required robust security measures to protect their customers' data and enable compliance with PCI DSS and other data security regulations. The company was committed to safeguarding sensitive payment information throughout their 750 retail stores.
Business Challenge
The company had implemented a tokenization solution to protect customer credit card and PAN data but needed FIPS-compliant hardware-based security to meet industry standards for protecting sensitive payment information. Additionally, the large number of stores required a solution that could ensure seamless communication and integration across all locations, presenting a significant challenge in maintaining consistent security and compliance.
Solution
To address these security challenges and help meet compliance regulations, the company implemented Entrust nShield hardware security modules (HSMs) and used the Entrust CodeSafe software development kit (SDK) to integrate the solution with Voltage Security, a provider of encryption solutions.
Entrust nShield HSMs provide robust encryption and secure key management, ensuring that sensitive consumer data is protected. This integration provided a FIPS 140-2 Level 3 compliant solution, which meets rigorous security standards set by the U.S. government for cryptographic modules. The HSMs were deployed in an active high-availability format across three data centers located in Dallas and Oklahoma City.
Key aspects of the implementation included:
- Seamless Integration: Achieved seamless communication and integration across all retail stores.
- High Availability: High availability and reduced hardware requirements provided reliable operations.
- Robust Key Protection: Ensured robust key protection for all 750 stores' payment data.
Results
The integration of Entrust nShield HSM with Voltage, enhanced by the additional security layer provided by Entrust Codesafe solution, brought substantial advantages to the Retail Chain. These benefits included:
- Robust Payment Data Protection: The company achieved robust protection of customer credit card and PAN data.
- Operational Efficiency: Helped ensure compliance with industry standards through hardware security protection that meets FIPS standards.
- High Availability: High availability and reduced hardware requirements provided reliable operations.
The Retailer’s collaboration with Entrust has set a benchmark for secure and compliant payment data protection in the retail industry. By integrating seamless communication with high availability, the company has strengthened its security posture while ensuring operational efficiency.
Related Products
Entrust nShield HSMs
FIPS-certified, tamper-resistant devices for secure cryptographic processing, key generation and protection, encryption, key management, and more.
Entrust CodeSafe
Develop and execute sensitive code within a FIPS-certified nShield hardware security module.
CyberRes Voltage Technology Integration
CyberRes Voltage solutions integrate with Entrust nShield HSMs to enforce security policies and provide protected, tamper-resistant environment for encryption and key management.
Related Resources
Fill out the form to have one of our experts contact you to discuss how our solutions can serve you.