Table of Contents
Advertisement
Quick Links
Advertisement
Table of Contents
Related Manuals for Magtek DynaFlex II Go
Summary of Contents for Magtek DynaFlex II Go
- Page 1 DynaFlex II Go Secure Card Reader PCI PTS POI v6.2 Security Policy October 2023 Document Number: D998200596-100 REGISTERED TO ISO 9001:2015 MagTek I 1710 Apollo Court I Seal Beach, CA 90740 I Phone: (562) 546-6400 I Technical Support: (562) 415-6800 www.magtek.com...
- Page 2 UL™ and the UL logo are trademarks of UL LLC. All other system names and product names are the property of their respective owners. DynaFlex II Go| Secure Card Reader | PCI PTS POI v6.2 Security Policy Page 2 of 18 (D998200596-100)
- Page 3 Table 0-1 - Revisions Rev Number Date Notes October 25, 2023 Initial Release DynaFlex II Go| Secure Card Reader | PCI PTS POI v6.2 Security Policy Page 3 of 18 (D998200596-100)
-
Page 4: Table Of Contents
Algorithms Supported ........................16 Key Management ........................... 16 Key Loading ............................. 16 Key Replacement ........................... 16 Acronyms ..............................17 Appendix A References ..........................18 DynaFlex II Go| Secure Card Reader | PCI PTS POI v6.2 Security Policy Page 4 of 18 (D998200596-100) -
Page 5: Purpose
1 - Purpose Purpose This document addresses the proper use of the DynaFlex II Go family of secure card readers (SCR) in a secure manner. This includes information about key-management responsibilities, administrative responsibilities, device functionality, identification, and environmental requirements. The use of this secure card reader in any method not described in this security policy will invalidate the PCI PTS POI v6.2 approval of the device. -
Page 6: General Description
General Description Product Name and Appearance The front view of all DynaFlex II Go models (with and without BCR), are shown in Figure 2-1 below. The back view of all DynaFlex II Go devices are identical, as seen in Figure 2-2. -
Page 7: Product Type
(ICCR), a contactless card reader (CTLS), and may also be purchased with an embedded barcode reader (BCR) and Bluetooth LE connectivity. DynaFlex II Go models can be used as desktop or handheld devices. They are approved as a secure card reader (SCR) under PCI PTS POI v6.2 requirements. - Page 8 The label also contains other supporting information about the device. All DynaFlex II Go product family hardware configurations are listed in Table 2-1 below. The device utilizes two interface types, USB and Bluetooth LE. Use of any interface other than USB or Bluetooth LE will invalidate PCI approval.
- Page 9 B = as Certified minor fixes not adding functionality or related to security (e.g., change component value for antenna matching): 0 = as certified DynaFlex II Go| Secure Card Reader | PCI PTS POI v6.2 Security Policy Page 9 of 18 (D998200596-100)
-
Page 10: 2.3.2 Firmware Identification
All device identification information, including firmware versions and PCI Hardware ID, is accessible by connecting DynaFlex II Go to a host device via USB or Bluetooth LE, using the latest software provided by MagTek, as seen in Figure 2-6 - Device Information Screen. -
Page 11: Installation And User Guidance
Firmware ID: https://www.pcisecuritystandards.org/assessors_and_solutions/pin_transaction_devices Note: Firmware ID is accessible by connecting DynaFlex II Go to a host device via USB or Bluetooth LE, using the latest software provided by MagTek (see section 2.3.2 Firmware Identification). 3) Check the Device serial number (SN) and make sure it matches with labels on shipping materials and documentation. -
Page 12: Communications And Security Protocols
3 - Installation and User Guidance Communications and Security Protocols DynaFlex II Go products support a USB interface using the USB-HID protocol, and a Bluetooth LE interface. Transactions, configuration, firmware updates, and key injection can all be performed using these interface types. Use of any method not listed in this security policy will invalidate the device’s PCI PTS approval. -
Page 13: Operation And Maintenance
MagTek strongly recommends performing security inspections on a regular schedule. Additional information can be found in D998200593 DynaFlex II Go, Device Inspection Document. If any problems are detected, stop using the device, set it aside in a secure location, and contact the manufacturer or your acquirer for further advice. -
Page 14: Self-Test
Such services are managed through dedicated tools, using cryptographic authentication. Passwords and Certificates DynaFlex II Go products ship from the factory fully secure. The devices have no security related default values (e.g., passwords/authentication codes/certificates) that require modification by the user to meet PCI security requirements. -
Page 15: Patching And Updating
Firmware updates are provided as files that have been signed by MagTek. The firmware files can be loaded locally through USB or Bluetooth LE connection by using update tools available from the MagTek web site. -
Page 16: Security
NIST SP 800-57-1. DynaFlex II Go| Secure Card Reader | PCI PTS POI v6.2 Security Policy Page 16 of 18 (D998200596-100) -
Page 17: Acronyms
Secure Hash Algorithm SRED Secure Reading and Exchange of Data TDEA Triple Data Encryption Algorithm Universal Serial Bus USB HID USB Human Interface Device DynaFlex II Go| Secure Card Reader | PCI PTS POI v6.2 Security Policy Page 17 of 18 (D998200596-100) -
Page 18: Appendix A References
ANS X9.24 Part 3:2017, Retail Financial Services Symmetric Key Management, Part 3: Derived Unique Key Per Transaction Using Symmetric Techniques • X9 TR-31:2010, Interoperable Secure Key Exchange Key Block Specification for Symmetric Algorithms DynaFlex II Go| Secure Card Reader | PCI PTS POI v6.2 Security Policy Page 18 of 18 (D998200596-100)