Bluefin Payment Systems Gets Two Patents

Bluefin Payment Systems, the provider of PCI-validated point-to-point encryption (P2PE) solutions for retail, health care and higher education, announced Tuesday (Jan. 10) the issuance of two new patents by the United States Patent & Trademark Office.

In a press release, Bluefin Payment Systems said the patents cover the systems and methods for decryption as a service via a message queuing protocol and systems and methods for decryption as a service (DaaS) via configuration of read only databases.

According to the company, the two issued patents relate to its Decryptx P2PE architecture as well as payment device and chain-of-custody management. Bluefin said it developed a high-speed decryption architecture in order to serve gateways, processors and other large clients. The patents also cover the systems and methods for parsing data from payment terminals, device authentication and validation, and in a hardware security module. The patents further relate to a P2PE management system configured to receive information from a multitude of payment terminals.

“Decryptx and the P2PE manager provide a complete and validated P2PE solution for Bluefin partners because it enables these organization to provide our PCI-validated solution and device management solution through their own proprietary platforms and directly to their clients,” said Ruston Miles, Bluefin’s chief innovation officer, in the press release. “Now that EMV implementation is nearing a close, merchants are turning their sights toward adopting PCI-validated P2PE solutions, since EMV only authenticates the card being used and does not encrypt the data. Bluefin enables our partners to offer our validated solution, eliminating the need for gateways and processors to become a validated provider themselves.”

In 2015, Bluefin rolled out Decryptx, the company’s DaaS solution. Decryptx enables any PCI/DSS provider to offer Bluefin’s PCI-validated P2PE solution via a simple integration. Keyed, swiped, and EMV data from point-of-sale systems is protected via PCI-validated controls and encryption, the company said.