...

UniPayGateway

July 17, 2013

UniBroker Module

Key Takeaways

  • UniBroker as a Specialized PCI Compliance Solution: UniBroker, an open-source traffic broker, is specifically designed for PCI compliance, effectively filtering sensitive cardholder information from payment messages between UniPay gateways and their clients. Its deployment as a proxy server simplifies data security by handling sensitive data without complex user interfaces or persistent data storage.
  • Simplified Compliance and Audit Process: With its minimalistic design, UniBroker is an ideal candidate for PA-DSS compliance audits and certification. Its lack of a user interface and persistence layer makes it straightforward to present to PCI assessors, streamlining the compliance process.
  • Advanced Data Tokenization and Security: UniBroker functions as a proxy filter, applying tokenization to sensitive payment data and reverse tokenization for outgoing messages. This ensures that the UniPay payment application operates outside the PCI scope by not directly handling sensitive cardholder data, enhancing security and compliance.
  • Versatility and Integration: UniBroker supports various data formats and tokenization methods, including real-time and batch processing. Its architecture accommodates multiple input formats like XML and text files, and integrates with external tokenization services, offering flexibility while maintaining existing tokenization solutions.
  • Cost-Effective PCI Compliance: Utilizing UniBroker for PCI scope reduction and audit simplification can result in significant savings on annual audits and maintenance of payment systems. This makes it a cost-effective solution for entities involved in credit card processing seeking to adhere to PCI compliance standards.

 

UniBroker is a unique, open source PCI compliance solution, which, in a nutshell, is a traffic broker designed to filter out sensitive data, such as cardholder’s information, from the payment messages and data streams exchanged between UniPay payment gateway and its clients. It is deployed as a kind of proxy server between UniPay based payment solutions and any other applications that communicate with it.

UniBroker is a relatively small application, which has no user interface and no persistence layer. Consequently, it is extremely easy to present it to your PCI assessors and it is a perfect candidate for PA-DSS compliance audit and certification.

When deployed in your network, UniBroker will function as a proxy filter, which scans all incoming payment messages and applies tokenization on all sensitive data, replacing real values with tokens. It also filters all outgoing payment messages and applies reverse tokenization processing, by replacing tokens with actual data. As a result, UniPay payment application never “touches” any of the cardholder’s sensitive data and “falls” out of PCI scope.

UniBroker is a flexible PCI compliance solution. It is engineered to support real-time and batch data tokenization, and is capable of replacing sensitive data with encrypted/tokenized equivalent on both transactional and file levels. It is architected to support multiple input formats, which include raw HTTP posts, XML messages and XML files, delimited and fixed length text files, and it is capable of using various external tokenization services, allowing you to keep your preferred tokenization solution intact.

PCI compliance is a must for everyone in credit card processing field and PCI audit is, generally, an expensive and difficult process. Relying on UniBroker as your PCI compliance solution for PCI scope reduction and general PCI audit simplification, you can save thousands of dollars in annual audits and overall maintenance of your payment system.

Here are some of the features available to you through UniBroker PCI compliance solution:

  • Data Filtering
    • configurable filtering for formatted data streams (XML, csv, etc)
    • restful web service API for real-time data tokenization
    • real-time and batch extraction and tokenization of the sensetive data
    • real-time and batch extraction and detokenization of the sensetive data
  • Communications Handling
    • HTTPs and sFTP communication
    • PGP encryption and GZip support
    • secure key and password management
    • API for integration with external tokenization appliances and services

Useful articles to help you: