Magtek DynaGlass Instruction Manual

Magtek DynaGlass Instruction Manual

Payment terminal pci pts poi security policy

Advertisement

Quick Links

DynaGlass
Payment Terminal
PCI PTS POI Security Policy
June 2021
Document Number:
D998200455-10
REGISTERED TO ISO 9001:2015
MagTek I 1710 Apollo Court I Seal Beach, CA 90740 I Phone: (562) 546-6400 I Technical Support: (888) 624-8350
www.magtek.com

Advertisement

Table of Contents
loading
Need help?

Need help?

Do you have a question about the DynaGlass and is the answer not in the manual?

Questions and answers

Subscribe to Our Youtube Channel

Summary of Contents for Magtek DynaGlass

  • Page 1 DynaGlass Payment Terminal PCI PTS POI Security Policy June 2021 Document Number: D998200455-10 REGISTERED TO ISO 9001:2015 MagTek I 1710 Apollo Court I Seal Beach, CA 90740 I Phone: (562) 546-6400 I Technical Support: (888) 624-8350 www.magtek.com...
  • Page 2 MagTek®, MagnePrint®, and MagneSafe® are registered trademarks of MagTek, Inc. Magensa™ is a trademark of MagTek, Inc. AAMVA™ is a trademark of AAMVA. American Express® and EXPRESSPAY FROM AMERICAN EXPRESS® are registered trademarks of American Express Marketing & Development Corp.
  • Page 3 Table 0-1 - Revisions Rev Number Date Notes Jun 10, 2021 Initial Release DynaGlass| Payment Terminal | PCI PTS POI Security Policy Page 3 of 22 (D998200455-10)
  • Page 4: Table Of Contents

    Key Loading ............................. 20 Key Replacement ........................... 20 Key Removal ........................... 20 Signature ............................20 Open Protocols ..........................20 Software Development Guidance ......................21 Acronyms ..............................21 DynaGlass| Payment Terminal | PCI PTS POI Security Policy Page 4 of 22 (D998200455-10)
  • Page 5: Purpose

    1 - Purpose Purpose This document addresses the proper use of DynaGlass devices in a secure manner. This includes information about key management responsibilities, administrative responsibilities, device functionality, identification, and environmental requirements. DynaGlass is a Point of Interaction (POI) allowing merchants to accept banking cards for processing transactions.
  • Page 6: General Description

    2 - General Description General Description Product Name and Appearance DynaGlass looks like Figure 2-1 below and Figure 2-2 below. Figure 2-1 - DynaGlass Top, DynaGlass Bottom DynaGlass| Payment Terminal | PCI PTS POI Security Policy Page 6 of 22 (D998200455-10)
  • Page 7 2 - General Description Figure 2-2 - DynaGlass Left Side, DynaGlass Right Side DynaGlass| Payment Terminal | PCI PTS POI Security Policy Page 7 of 22 (D998200455-10)
  • Page 8: Product Type

    Attended or unattended: Attended device. Handheld or desk-mounted: Desk-mounted. DynaGlass includes USB communications, a magnetic stripe reader (MSR), a contact chip card reader (ICCR), and a contactless card and electronic device reader (CTLS). It also includes an LCD touchscreen display with PIN entry capability. It is intended to be used as an attended desktop device.
  • Page 9: Identification

    The device label includes the following elements of device identification information, shown by the numbered callouts in Figure 2-4 above: 1) Product name 2) PCI Hardware Identifier (“HW”) DynaGlass| Payment Terminal | PCI PTS POI Security Policy Page 9 of 22 (D998200455-10)
  • Page 10: Firmware Identification

    (from mail or vendor website). To view firmware version information, follow these steps: 1) Power on DynaGlass. The device opens to the Android home page, which shows available applications for launch. 2) Launch the...
  • Page 11: Installation And User Guidance

    Installation and User Guidance Initial Inspection After receiving DynaGlass, the merchant should visually inspect the device as follows: 1) Inspect the label found on the bottom of the device (see section 2.3.1 Hardware Identification) and make sure the label is not missing, obscured, or modified.
  • Page 12: Environmental Conditions

    3 - Installation and User Guidance Environmental Conditions The environmental conditions for the device to operate normally are specified in D998200439 DynaGlass Installation and Operation Manual, available from MagTek. The table below summarizes those conditions: Parameter Value DC Power 5V, 1A Operating Temperature 0℃...
  • Page 13: Communications And Security Protocols

    Use of any method not listed in this security policy will invalidate the device’s PCI PTS approval. Configuration Settings DynaGlass ships from the factory fully secure. The device has no default configuration settings that require modification by the user to meet PCI security requirements.
  • Page 14: Operation And Maintenance

    Additional stickers or labels  Suspicious items around IC and MSR reader. See pictures in section 2.1 and D998200442 DYNAGLASS DEVICE INSPECTION, available from MagTek and included with the device.  Incorrect or redundant overlays on the touchscreen display ...
  • Page 15: Self-Test

    Roles and Responsibilities MagTek generally sells directly to merchants, or indirectly to merchants via Value Added Resellers (VARs) and acquirers. MagTek provides technical support and maintenance to its direct customers, while the acquirers and VARs provide support to their merchant customers. MagTek, VARs/acquirers, and...
  • Page 16: Tamper Response

    DynaGlass supports file-based updates of the device’s firmware and applications. Firmware updates are provided as files that have been signed by MagTek. The firmware files can be loaded locally via the device’s USB port using the MagTek update tool running on a Windows PC. The firmware files can also be loaded via a secure remote updating process using Open Protocol HTTPS with TLS1.2.
  • Page 17: Pin Entry Privacy Message

    4 - Operation and Maintenance PIN Entry Privacy Message Because DynaGlass supports PIN entry and does not provide an integrated privacy shield, merchants must provide cardholders with the necessary privacy and guidance to enter PINs safely and securely. One method is to include guidance messages and logos for the cardholder as part of the payment application.
  • Page 18: Security

    Using any other key management methods will violate the PCI PTS approval of the device. It is forbidden to load same key to multiple devices. Each device must have unique keys. DynaGlass| Payment Terminal | PCI PTS POI Security Policy Page 18 of 22 (D998200455-10)
  • Page 19: Key Table

    TDEA DUKPT (ANS X9.24-3), PIN Key (Format 0/1/3) ANS X9.8-1/ISO 9564-1 PIN Block Encipherment AES DUKPT (ANS X9.24-3), PIN Key 128, 256 (Format 4) ANS X9.8-1/ISO 9564-1 DynaGlass| Payment Terminal | PCI PTS POI Security Policy Page 19 of 22 (D998200455-10)
  • Page 20: Key Loading

     SHA256 and ECDSA-P384 are used for Application Processor (AP) application signature verification. The signing keys are controlled only by MagTek. Software authentication is performed within the device by signature verification using the corresponding public key. Open Protocols The following describes the communication methods and protocols available in the device:...
  • Page 21: Software Development Guidance

    Rivest Shamir Adelman Algorithm Secure Hash Algorithm Secure Processor, the processor in the device that controls the device’s embedded reader hardware TDES Triple Data Encryption Standard Value Added Reseller DynaGlass| Payment Terminal | PCI PTS POI Security Policy Page 21 of 22 (D998200455-10)
  • Page 22 The following documents may be used to provide additional details about the device and this security policy: 1) Software API Development Guide 2) D998200439 DynaGlass Installation and Operation Manual 3) D998200442 DynaGlass Device Inspection DynaGlass| Payment Terminal | PCI PTS POI Security Policy Page 22 of 22 (D998200455-10)

Table of Contents