Category Archives: News & Events

JCB updates its requirements program for approval processes

The Japan-based payment scheme JCB has issued an update of its requirement program for Contactless IC terminal approval tests. The new version of the document has been released on the 1st of August.   

It describes the submission processes for initial and renewal approval of compliant EMV payment terminal with JCB specifications. The main changes in the document are related to clarifications on the renewal process. 

Renewal testing requirements

The purpose of renewal testing is to demonstrate that the contactless kernel inside an approved payment terminal still meets sufficient conformance with the current specifications. 

JCB reviews the ICS of the embedded kernel and decides if renewal testing process is needed. If it considers that the product shows sufficient compliance then an extension of approval is granted for 3 years. Otherwise the device must undergo a series of tests to prove compliance with the current test plans. 

The renewal testing session shall be scheduled at the same laboratory that performed initial testing of the product. The set of renewal tests is performed using the same sample device as initial type approval, provided that the device stored at the laboratory is still functional. 

Terminal providers shall send the renewal request within 6 months prior to the end of the approval validity period, and shall ensure that the device has at least a valid EMV Contactless L1 LoA (if it is contactless only capable). 

How to ensure the renewal of terminal approval

It is crucial for POS providers to perform internally the appropriate testing campaigns prior to submitting the device to renewal process. 

Alcinéo has all the the tools identical to those used in laboratories, in order to perform the required testing campaigns in-house for our customers. Either for initial TTA or renewal testing, our team of highly-qualified ISTQB testers can perform tests cases related to EMV contact and contactless kernels, and the full suite of contactless kernels (including but not limited to : MCL, PayWave, ExpressPay, DPAS, Interac, JCB, CUP).

Newsletter – Issue 12 – The steps to EMV® CL1 approval

The development of a contactless payment terminal is not an easy task. From antenna design, to EMV® CL1 stack implementation, debug sessions and approval process, terminal manufacturers must face several challenges. 

Moreover, additional requirements from international standards to increase interoperability imply new testing process. Contactless cards and mobiles can now be used to perform additional tests. Documents on Interoperability testing and requirements can be found on EMVCo website

Read our latest newsletter to have an overview of the maze and find the way out of it :

Newsletter – Issue 12 – Best practice – the steps to EMV contactless level 1 approval

Comply easily with the new PayWave Cross testing process

Visa has defined specific requirements to perform PayWave Cross testing automatically, called VCAS (Visa Cross-test Automated Specification). You can visit Visa Technology Partner website to access the dedicated documentation.

More precisely, VCAS defines the interface communication that must be established between a Device Testing Environment and the robot controller used in a laboratory to perform the set of Cross tests during Visa PayWave type approval. 

The purpose of this protocol is to shorten the duration of the Cross testing session. 

The robot controller integrated by each accredited laboratory initiates a transaction command automatically to analyse the device behavior. The challenge for Point-of-sales providers is to supply a compliant testing environment that is capable of converting each tag sent by the robot into a tag that the device will recognize and manage easily, using the appropriate language. 

Alcinéo has developed a tool to help our customers to seamlessly perform PayWave automated Cross tests and comply with this additional function which is now mandatory to start a Cross testing campaign in a lab. 

Our VCAS webservice converts the tags received from the robot (simulating contactless card commands), and transmit it to the device in the appropriate format. 

Alcinéo develops Visa PayWave kernels for contactless capable devices and supports customers during the certification process of their payment solutions. In addition to the contact and contactless kernels, we deliver dedicated tools to help them performing full testing sessions at the laboratory. 

Request your Alcinéo’s SDK to access the right toolbox for certification at : info@alcineo.com, or contact directly your Alcinéo representative.

Revision of PayWave kernel ICS

Visa has released an updated version of Paywave kernel ICS.

The Device Questionnaire must be filled and submitted to Visa prior to Type Approval testing of a contactless reader supporting PayWave. 

The changes on this document are minor :

  • Update of the list of testing laboratories
  • Clarification of the Terms and Conditions 

To obtain the current ICS, connect to Visa Technology Partner website, or contact your Alcinéo representative.  

Specification bulletin EMV® contactless Book C2

The organization in charge of global EMV® technology and chip card payment interoperability, EMVCo, has released a new specification bulletin for EMV Contactless Book C2, referring to Mastercard contactless kernel MCL. 

The new bulletin SB 203 describes modifications and clarifications brought to Book C-2 v 2.6. 

Starting January 1st 2019, kernels developed according EMV specifications Book C2 must integrate these changes. 

To obtain further details on this specification bulletin, you can refer to EMVCo website, or contact your Alcinéo representative. 

 

 

Live demo at Money 20/20 Europe

Accept contactless payments on mobile

Come and try the demo live at Money 20/20 Europe in Amsterdam – June 4th to 6th. 

Money 20/20 Europe is one of the largest show dedicated to Fintech’s innovations and trends in the digital payment ecosystem. It is the right place to discover the solution which allows merchants to simply accept contactless transactions (using Mastercard or Visa contactless form factors), with nothing else in their pocket than their smartphone.

present card on smartphoneMCL (MasterCard) and PayWave (Visa) microkernels developed by Alcinéo are embedded into the Trusted Execution Environment (TEE) provided by Trustonic, in the secure OS of the mobile device. The contactless transaction is processed with the same level of security as when paying at a contactless capable POS.

No add-on is needed, and the sensitive transaction data are protected from malicious attacks.

The solution will be showcased during the event on Trustonic booth E121. 

Feel free to contact us for more information : info@alcineo.com 

 

Keep up-to-date : here’s EMV® latest version

Version 2.7 of EMV® contactless payments specifications is now available on EMVCo website.  You will find on the website the version 2.7 of Book A, Book B, and Books C-2 to C-7. 

In the meantime, 2 documents have been revoked from the specification documentation : 

Book D Communication Protocol was replaced with the Contactless Interface specification – defining the communication rules between a contactless card and a contactless reader or terminal. 

Book C1 has been removed from the list of EMV contactless kernels.

The purpose of EMVCo is to provide interoperable and common rules for EMV contactless implementation in a POS system. It allows terminal manufacturers to build and maintain their products developed with the latest requirements. 

Moreover, in accordance with the EMV contactless Interface Specification v3.0 released in February, the latest version 2.6b of test cases, test bench and DTE requirements must be applied during the device testing process. 

POS providers must ensure that their device testing environment is compliant with the latest requirements

Additionally, EMV Contact Terminal Type Approval version 4.3a will soon expire to the benefit of the new version 4.3c. Starting July 1stEMV contact terminals submitted to EMV L1 type approval, shall comply with the 4.3c version.  

Feel free to contact Alcinéo to have more information on our software solutions for payment and security.

How to set a fully integrated Device Testing Environment ?

EMV payment terminal certification is a major step for POS manufacturers, before product deployment. Terminal Type Approval process allows to certify the smartcard acceptance products against the latest EMV technology specifications.

The DTE is a must-have tool that POS manufacturers must supply with the sample terminals during Type Approval sessions, to set the most appropriate testing environment. It must embed a range of functions required by the entities implied in the kernel approval process. EMVCo’s objective is to guarantee interoperability while laboratories that perform the tests will expect certain automated commands.

EMVCo’s requirements for contactless Level 1 testing process : 

Interoperability Testing Loopback Application. 

The loopback application generates responses (C-APDU) and send it to the card (in reply to R-APDU). The application shall request the terminal to generate specific indicators (beeps or lights) to indicate the status of the command (Error or Success).

POS manufacturers shall ensure that the DTE provided during EMV Contactless L1 type approval implements this loopback application.

Transaction Send Application.

The DTE must be able to send sets of commands of type A or type B card transaction to the device, after card activation. This mode allows automation of commands and the testing session is shortened, as it is not interrupted by RF communication issues.

In addition to the required functionalities, it is important to set up a tool that can be used by the POS manufacturer to operate some modifications during debug sessions on the hardware part of the device.

Set Registers Values

Although Alcinéo’s DTE L1 is a tool dedicated to the digital testing sessions, it embeds a functionality to allow our customers to set the value of specific RF chip registers during analogic testing session. Antenna tuning is facilitated, as the values set with the command are not permanent, and can be modified easily with a reset of the device.

Using Alcinéo DTE L1 during EMV Contactless Level 1 Type Approval testing sessions help our customers to optimize certification process, comply with international standards requirements, and customize their solution. POS manufacturers just stay focus on their objective, to product and deploy in a cost effective and timely manner, the next generation of payment terminals.

 

Our product offering extends with PURE contactless kernel

Alcinéo has developed the PURE contactless kernel in order to provide a complete suite of payment solutions for varied markets

PURE contactless  kernel has been developed in addition to the range of contactless applications already available in our product portfolio. We deliver to our customers the largest choice in terms of contactless kernels from international payment schemes  (MCL, PayWave, Expresspay, DPas, UnionPay…) or fast expanding regional and proprietary payment schemes (EftPOS, Girocard, Total…).

Why supporting PURE is crucial for POS manufacturers :

The technology has already been adopted by more than 30 domestic schemes globally, representing 120 millions of cards in circulation.  (source : Gemalto.com)

PURE is widely supported in closed-loop payment systems and by many national payment schemes worldwide, offering the opportunity for all stakeholders to provide interoperable payment solutions in all business sectors (e.g. lunch vouchers, transit fare collection, gas stations…). 

Alcinéo helps you build innovative and secure payment solutions

The white label payment issued by Gemalto is fully compliant with EMV requirements. Alcinéo has developed the kernel application according the PURE specifications for contactless readers. The solution is ready to be certified, internally validated against the appropriate test plans. 

Alcinéo has a long-term experience in developing state-of-the-art payment solutions, easily adapting to market requirements. We support integrators and POS manufacturers at all stages of their device lifecycle :

  • advice on hardware design
  • kernel implementation
  • certification process
  • integration with payment application and acquiring networks
  • deployment and maintenance on the field 

We offer a complete range of services according particular device environment : transit system, ATM, gas stations, mobile POS, kiosk…

If you require further information on the PURE application or our Trusted Payment Solutions, feel free to contact us at : info@alcineo.com