Documente Academic
Documente Profesional
Documente Cultură
Content
Objective ......................................................................................................................... 3
Completing the Integration Step by Step ..................................................................... 3
Step 1 Select an Integration Technique ................................................................... 3
Step 2 Signing the Development Agreement ........................................................... 4
Step 3 PCI DSS & PA DSS Requirements ............................................................... 4
Step 4 Technical Development ................................................................................ 4
Step 5 Certification ................................................................................................... 5
Step 6 Additional information required by PCI-SSC ................................................. 5
Step 7 Using PA DSS approved PSAMs .................................................................. 6
Step 8 Terminal logging ........................................................................................... 6
Other documents ............................................................................................................ 6
Objective
The objective of this guide is to describe all the steps needed in order to create an Electronic
Cash Register Integration (Merchant Application) to a Point payment terminal. It will guide you
to make the best choice of integration for your needs including how to fill in and sign the
Development Agreement. Additionally it will provide an overview of the PCI rules and a general
FAQ.
Point will also provide technical manuals with examples for all the various integration
techniques, which will offer an overview of the different approaches.
Typical time consumption for each development process using the different techniques:
PWE development takes from 1 week to several weeks.
OCX - development takes from 1 week to several weeks.
DLL development takes from 1 month to several months.
LPP development takes 6 months or more.
Please feel free to contact Points development department at udvikling@point.dk if you have
any questions regarding the different integration techniques.
Step 5 Certification
When the solution is complete it must be certified to make sure it meets all requirements for
Card Data security and that it functions correctly.Nets Certification is handled by Nets (formerly
PBS). Point can assist you with the right contact to Nets.
Encryption keys are changed anytime someone with knowledge of the keys leaves the
company or changes position
Your Point terminal allows transmission over public networks, e.g. Internet. To protect sensitive
data your Point terminal uses the PSAM chip provided by PBS. This chip uses triple DES
encryption with a unique key per transaction. To connect your Point terminal to public networks
you do not need to take any further action regarding encryption.
Before exchanging or updating the Nets PSAM, in order to remove any historical data stored by
previous versions of the PSAM it is absolutely necessary for PCI DSS compliance to remove the
historical data. This can be performed by going into the Menu, Option (4) Admin, Option(10) Slet
Datastore, Option (11) Flyt/Slet Advice.
It is very important for PCI-DSS compliance that all accounts allowing access to any PCs,
servers, and databases with payment applications and cardholder data must be unique. You
must not use generic or shared user accounts with unsecure stored passwords. The Point
solution does not hinder nor affects these requirements in any way.
Other documents
FAQ(s)
Frequently Asked Questions
Technical Guides
PointWare Expedient
PontTerminal OCX
FlexDriver DLL
Local Payment Protocol LPP