HCEWALLET is a white-label mobile tokenisation and payments app for Issuers, Wallet Providers, Merchants and Payments Aggregators. It integrates remotely with HCE IPOS SWIM host platform to perform card tokenisation based on HCE EMV standards for Visa, Mastercard and RuPay card schemes.
A proprietary External API provides integration methods within HCEWALLET app SDK (software development kit) enabling Secure Remote Commerce (SRC) based on EMV Tokenisation and 3D Secure Version 2 standards.
IPOS provides highly secure in-app, web, EMV chip and PIN, contactless and loyalty gift card payments to independent and multi-chain merchants.
Our mobile IPOS empowers merchants to quickly accept card payments within mobile, EPOS, kiosks, hospitality and web commerce channels with minimal capital investment and low on-going payments services costs. Suitable for both card-present and card-not-present environments, HCE Service is PCI DSS compliant, and Visa, RuPay and MasterCard Ready for tokenisation.
HCE Service supports simple, mobile digital card wallets certified with Visa VTS and Mastercard MDES token services and “PIN on Glass” mobile payments using commercial off-the-shelf mobile devices meeting the PCI SPoC standard.
What does SWIM (Software Wireless Identity Module) do? SWIM mobile apps form the foundation of secure smartphone token issuance and payments infrastructure. SWIM uses public and private key infrastructure cryptography and “trusted third parties”, namely Certification Authorities and Registration Authorities. SWIM security services include:
Confidentiality – Message content (transactional data) must be available only to authorised parties.
Authentication – Proof that message really has come from the person who claims to have sent it.
Integrity – Detect that the message content has not been altered during transmission.
Non-repudiation – Protection against the sender of the message denying having sent it.
SWIM PKI in a Nutshell…
- Reduces transactional risks across untrusted networks and remote end users;
- Protects information flowing across networks;
- Based on established industry standards and delivers end-to-end protection for valuable sensitive information.
HCE IPOS SWIM Platform
HCE IPOS SWIM Modules
|Ref.||Module Description||Token Requestor||Token |
|Payment Aggregator||Wallet Operator|
|CORE||Core SWIM System||Core||Core||Core||Core|
Tokens -Requestor (TR) -Issuer (TI)
|EFT||SWIM-EFT Payment Gateway||EFT||EFT||EFT||EFT|
|IPOS WALL SWIM||IPOS |
|SS||SWIM WPKI Security Server||SCA||SCA||SCA||SCA|
|Dell VRTX Server with 4 Blades (2 CPU – 128GB) / 20Tbyte HDD|
|Dell MX7000 Server with 7 Blades (2 CPU – 128GB) / 20Tbyte HDD|
Software HCE (High Security Modules) Libraries
HCE Service digital provisioning and issuance infrastructure includes VTS and MDES connection as well as in-house proprietary Ecash accounts tokenisation. The platform uses our unique software HSM libraries to protect card data, cryptographic keys, and algorithms from being hacked by the use of whitebox cryptography, proprietary PIN protection algorithm and device fingerprinting.
Private Permissioned Blockchain
HCE Service’s core solutions are a general-purpose permissioned blockchain solution, digital asset exchange customised for proprietary e-cash and currency exchange. HCE Service’s goal is to assist our clients to take advantage of recent advances in network technology, including the use of cloud and blockchain technologies. Our distributed ledgers are a way to “track the ownership of assets without the need for a central authority”.
We believe that by making financial transactions as fast, inexpensive, and direct as other digital services in the Internet age, everyone will benefit. Hence, HCE SWIM MAP is a distributed application platform that incorporates blockchain technology to help companies create modular e-cash and currency-exchange applications that meet the high demands of enterprise-grade ecosystem applications.
Tokenisation eliminates the need for merchants, e-commerce sites, and operators of mobile wallets to store PANs on their networks. Payment tokenisation allows a cardholder to register a payment card with a mobile wallet or online store and replace the actual card number with a payment token number used for that merchant or wallet vendor.
Tokenisation holds substantial promise to help address these needs. Today, e-commerce payment experiences take place through desktop browsers, mobile web browsers, or mobile applications. The e-commerce channel is most vulnerable to fraud when merchants, processors, or gateways store PANs. This storage of payment information can have extensive impacts to stakeholders in the e-commerce payments ecosystem.
EMV Tokenisation Benefits
There are benefits for all stakeholders in the payments ecosystem that may help encourage adoption of payment tokens:
- Card issuers and cardholders may benefit from new and more secure ways to pay, improved transaction approval levels, and reduced risk of subsequent fraud in the event of a data breach in which payment tokens are exposed instead of the underlying PANs.
- Acquirers and merchants may experience a reduced threat of online attacks and data breaches, as payment token databases may become less appealing targets for fraudsters, given their limitation to a specific domain. Acquirers and merchants may also benefit from the higher assurance levels that payment tokens offer.
- The payments ecosystem benefits from an open specification made available by EMVCo that facilitates interoperability and helps reduce data protection requirements for the payment network and its participants.
HCE – Host Card Emulation
Host Card Emulation (HCE) availability in most smartphones including the global dominant Android operating system (OS) platform enables you to take control of your mobile payments strategy.
Previously, our clients such as banks had to deploy secure element technology in partnerships with multi-parties to complete complex integration projects. Now our clients can integrate digital card accounts directly into own mobile wallets and banking apps as the preferred low-cost, multi-channel interaction with end user customers.
Our clients can add HCE as part of an overall Secure Customer Authenticated (SCA) open mobile banking strategy. As clients become mobile centric, you can make your apps highly appealing to end users by adding new functionality such as remote mobile peer-to-peer E-cash and payment transfers using private blockchain ledgers, Merchants can propose blockchain based merchant loyalty vouchers combined with payments, enabling promotions and offers to create compelling and rewarding customer experiences.
Banks and merchants can deploy mobile payment services across multiple mobile operator networks, providing the scale needed for a successful mass deployment adoption in a country, or even across borders. HCE allows our clients to add payment functionality to an existing banking/wallet apps and rollout seamlessly to millions of users via simple app updates, maintaining control over customer relationships, data and how credentials are used.