payment hsm payshield9000
TRANSCRIPT
Information Security Systems
> Thales Payment HSMsBernard FootProduct Manager
Information Security Systems
> The Family – past & present
<M
arch
201
1Our pedigree
� Created first Payment HSM – for Visa
� Market leader outside of US� HP Atalla is market leader in US – but weak elsewhere
� We are well known & respected
� 70% of world’s payments are protected by Thales HSMs
2
Intr
oduc
tion
to T
hale
s P
aym
ent H
SM
s –
Mar
ch 2
011
� 70% of world’s payments are protected by Thales HSMs� Atalla claim a similar thing!
� But that’s OK … each payment goes through multiple HSMs
� Over 12,000 units sold
� All major card applications work with Thales payment HSMs
<M
arch
201
1A history lesson
HSM 8000 (5,500)
payShield 9000 (300)
3
Intr
oduc
tion
to T
hale
s P
aym
ent H
SM
s –
Mar
ch 2
011
1988 ???1995 2003 2009
RG6000 (3,000)
RG7000 (7,000)
HSM 8000 (5,500)
We’ll be talking only
about payShield 9000
Information Security Systems
> How a Thales Payment HSM works
<M
arch
201
1How does a Thales HSM work?
� Attaches to a computer (“host”) as a peripheral
� Command/Response API (Application Programming Interface):� Host sends a command to HSM
� Asking for a function to be performed
� HSM sends response back to the host� Confirmation/error code, results, …
� These are simple messages sent by standard communications
5
Intr
oduc
tion
to T
hale
s P
aym
ent H
SM
s –
Mar
ch 2
011
� These are simple messages sent by standard communications� E.g. Ethernet
Host Computer
HSM
Command requesting a function
Response
<M
arch
201
1Command/Response API – Pro’s and Con’s
� With Command/Response, nothing is installed on host� So our HSMs work with any host
� No need to keep up with changes to Operating System
� A single command performs a complex function� We have about 300 available commands
6
Intr
oduc
tion
to T
hale
s P
aym
ent H
SM
s –
Mar
ch 2
011
� We have about 300 available commands
� Down sides:� Functionality limited to what we offer
� Less of a problem for payment card systems� “Gaps” can be filled by Custom Software
� Some customers like standard APIs - PKCS #11, CAPI
<M
arch
201
1
PIN BlockFormat B,
Key B
PIN Block format C, Key C
Reminder from last session - Card Payment Processing
Issu
er
Sw
itch
Authorisation
7
Intr
oduc
tion
to T
hale
s P
aym
ent H
SM
s –
Mar
ch 2
011
Key B
Acq
uire
rTransaction
PIN Block format A, Key A
<M
arch
201
1Examples of commands for transaction processing
� CA – convert a PIN Block from (format x, Terminal PIN key) to (format y, Zone PIN Key)
� DA - Verify a Terminal PIN using the IBM (or Diebold, Visa, Comparison) method
� CY – verify a Visa (or Mastercard, …) Card Verification Value
8
Intr
oduc
tion
to T
hale
s P
aym
ent H
SM
s –
Mar
ch 2
011
� DU – (For PIN change by customer) Verify an IBM PIN Offset and, if successful, generate the PIN Offset of the customer-selected PIN using the IBM 3624 method. The current and new PINs are supplied in an encrypted form.
<M
arch
201
1Thales API supported by the major industry software
9
Intr
oduc
tion
to T
hale
s P
aym
ent H
SM
s –
Mar
ch 2
011
<M
arch
201
1Physical Host interfaces
� payShield 9000:� Dual Gigabit Ethernet ports (TCP/IP & UDP) (from v1.1)
� Asynchronous
� FICON (new IBM fibre optic) - in development
� HSM 8000:
10
Intr
oduc
tion
to T
hale
s P
aym
ent H
SM
s –
Mar
ch 2
011
� Single 100Mbit Ethernet port (TCP/IP & UDP)
� Asynchronous
� ESCON (obsolete IBM fibre optic)
� SNA/SDLC (obsolete IBM network)
Information Security Systems
> A bit about the payShield 9000 …
<M
arch
201
1What the customer buys
� Hardware
� Base software package *
� Optional Licences
� Remote Management
� Custom software
� Accessories
12
Intr
oduc
tion
to T
hale
s P
aym
ent H
SM
s –
Mar
ch 2
011
� Accessories� Cabinets, spare keys, rack-mount
kits
� Professional services
� Support
* Base software licence for HSM 8000
<M
arch
201
1Layout of the payShield 9000
Secure CryptoSub-system
(TSPP)
4 USB ports4 Ethernet ports
Cover detectormicroswitches
LeftKeylock
Erase Button
Smart card reader
13
Intr
oduc
tion
to T
hale
s P
aym
ent H
SM
s –
Mar
ch 2
011
Main board
Dual PowerSupply Units
LEDs
2 USB ports
Keylock
Right Keylock
Restart ButtonTamper Labels go here
<M
arch
201
1Local Master Keys - LMKs
� The crucial secret� Stored in the Secure Cryptographic Module (TSPP)� No person has whole LMK – only components� Always deleted when the HSM is tampered
� Encrypts all the operational keys used by the HSM� Outside of the HSM, operational keys are never in the clear
� 2 types:
14
Intr
oduc
tion
to T
hale
s P
aym
ent H
SM
s –
Mar
ch 2
011
� 2 types:� Variant – older, less secure, used by nearly all customers� Key Block – new, more secure, little used – yet
� Multiple LMKs� HSM can have up to 10 LMKs� Managed by different security teams� Allows multiple clients/applications on one HSM� Makes refreshing of LMKs easier� Unique to Thales payment HSMs
<M
arch
201
1Hardware Options
� Range of performance modules� 20, 50, 220, 800, 1500* tps (transactions per second)
� Can be upgraded in the field
� Dual Power Supply Unit (PSU) *� Must be ordered at time of purchase
15
Intr
oduc
tion
to T
hale
s P
aym
ent H
SM
s –
Mar
ch 2
011
� Not hot swap: lets customer plan replacement of dead PSU
� Power Cord type
* Not available on HSM 8000
<M
arch
201
1About performance …
� Rated Performance relates to CA command (PIN Block Translation)� Most other commands run at same speed
� Some commands run slower (e.g. RSA Key Generation)� May depend on key length and payload
� All commands run faster on higher performance HSM
16
Intr
oduc
tion
to T
hale
s P
aym
ent H
SM
s –
Mar
ch 2
011
� Dual ports do not give additional performance
� Multiple threads/connections needed for full throughput� Up to 64 threads per Ethernet port (128 total)
� Maximum performance by 4-8 ports� Depends on HSM model and command
<M
arch
201
1Software licenses – Base packages
Each payShield 9000 must have one – and only one – Ba se Package
HSM9-PAC001
HSM 8000 base
HSM9-PAC010
Transaction Processing
HSM9-PAC020
Magnetic Stripe
HSM9-PAC030
EMV Issuers
Packages
17
Intr
oduc
tion
to T
hale
s P
aym
ent H
SM
s –
Mar
ch 2
011
HSM 8000 has only HSM8-LIC001 base licence
base equivalent
Processing Stripe Issuers
Issuers
<M
arch
201
1Software licenses – optional items
Sales Order Code License Description
HSM9-LIC002 RSA license
HSM9-LIC003 AS2805 license
HSM9-LIC004 Europay Security Platform (ESP) license
HSM9-LIC005 User Authentication (HMAC/CAP/DPA) license
HSM9-LIC006 X9 TR-31 license
HSM9-LIC008 Data Protection license
HSM9-LIC009 Remote Management license
HSM9-LIC011 Magnetic Stripe Contactless Card Data Preparation license
HSM9-LIC012 LMK x 2 license
HSM9-LIC013 LMK x 5 license
18
Intr
oduc
tion
to T
hale
s P
aym
ent H
SM
s –
Mar
ch 2
011
HSM9-LIC013 LMK x 5 license
HSM9-LIC014 WebPIN license
HSM9-LIC016 EMV-based Card Data Preparation license
KSM9-LIC020 Korean Algorithm license
HSM9-LIC021 LMK x 10 license
HSM9-LIC024 Magnetic Stripe Issuing license
HSM9-LIC025 Magnetic Stripe Transaction Processing license
HSM9-LIC026 EMV Transaction Processing license
HSM9-LIC027 PIN and Key Printing license
HSM9-LIC028 Visa Cash Processing license
HSM9-LIC029 Legacy Functions license
<M
arch
201
1Custom software
� Allows customer to have whatever functionality they need
� Customer pays for development once
� Software can be installed on multiple HSMs for free, but …
� Customer must buy base Package or License
19
Intr
oduc
tion
to T
hale
s P
aym
ent H
SM
s –
Mar
ch 2
011
� Custom software is built for a specific base version (e.g. 1.0)� To work with a later base version (e.g. 1.1), the custom software
must be ported
� HSM 8000 custom software can be ported to payShield 9000� Fixed prices for porting from HSM 8000 v2 & v3
<M
arch
201
1Local & Remote HSM Manager
� Local HSM Manager� Provided as part of the base product – no charge
� Since HSM 8000 v3.1a & payShield 9000 v1.0a
� Replaces the Console (80x24 character terminal)
� Provides Graphical User Interface (GUI)
� Locked-down bootable Linux CD
20
Intr
oduc
tion
to T
hale
s P
aym
ent H
SM
s –
Mar
ch 2
011
� Runs on most PC hardware
� Remote HSM Manager� Similar to Local HSM Manager, but …
� Optional – must be purchased
� Allows HSM to be managed across a TCP/IP network
<M
arch
201
1
Bootable CD with Linux OS &Remote Management App (RMA)
Administrator smart card readers – simulate
physical keys
Remote HSM Manager
21
Intr
oduc
tion
to T
hale
s P
aym
ent H
SM
s –
Mar
ch 2
011
StandardPC or Laptop
WAN
EthernetManagement
port
Operator smart cardreader – simulatesAuthorising Officer card in Local Mngr
<M
arch
201
1Remote HSM Manager
� Benefits:� Modern graphical user interface (GUI)
� Fits in with organisation’s structure
� Avoids time & cost of travel
� Gets around restrictions on data centre access
� Updates and management changes can be done quickly
22
Intr
oduc
tion
to T
hale
s P
aym
ent H
SM
s –
Mar
ch 2
011
� Updates and management changes can be done quickly
� What the Customer buys:� 1 Remote Management System Pack
� HSM9-LIC009 for each HSM
� Optional: additional System Packs, smart cards, card readers
<M
arch
201
1Remote (and Local) HSM Manager GUI
23
Intr
oduc
tion
to T
hale
s P
aym
ent H
SM
s –
Mar
ch 2
011
<M
arch
201
1Main certifications
� payShield 9000:� FIPS 140-2 Level 3 (TSPP crypto module only)
� PCI HSM (in progress)
� APCA (in progress)
� MEPS (Cartes Bancaires) (future)
� HSM 8000:
24
Intr
oduc
tion
to T
hale
s P
aym
ent H
SM
s –
Mar
ch 2
011
� HSM 8000:� FIPS 140-2 Level 3 (SGSS crypto module only)
� APCA
� MEPS (Cartes Bancaires)
HSM 8000 will not be PCI HSM-certified
Information Security Systems
> Some useful materials …
(all available via your Thales representative)
<M
arch
201
1Brochures
� payShield 9000:� Brochure
� Application Note
� Datasheet
� HSM 8000:� Brochure
26
Intr
oduc
tion
to T
hale
s P
aym
ent H
SM
s –
Mar
ch 2
011
� Brochure
� Application Note
� Datasheet
<M
arch
201
1Application Notes
• Utilization & Health Check Reporting
• Packages & Licenses
• Software & License Update Procedure
• Introduction of New Smartcards
• Thales key Blocks
• TR-31 Key Blocks
• Multiple LMKs
27
Intr
oduc
tion
to T
hale
s P
aym
ent H
SM
s –
Mar
ch 2
011
• Multiple LMKs
• Remote HSM Manager
• Remote Key Loading
• Support for EMV PIN Change
• Diagnostic Commands
• Multiple Authorised States
• Contactless Payments
• Message Encryption
<M
arch
201
1Thales Payment HSMs
Foundation for Secure Banking ServicesFoundation for Secure Banking Services
28
Intr
oduc
tion
to T
hale
s P
aym
ent H
SM
s –
Mar
ch 2
011