Encryption method used for processing Offline .xml files

Home » Categories » NCR Counterpoint » Offline Ticket Entry

Encryption method used for processing Offline .xml files

Summary:

What type of encryption is used for credit card data in Offline Ticket Entry xml files?

Solution:

NCR CounterPoint uses the industry standard Blowfish algorithm to encrypt all sensitive data. All encryption is performed in 16 rounds using a 448 bit key, the maximums allowed.

Encrypted data includes a unique dynamically generated cryptographic salt derived from the row's unique primary key.  The Key ID is an index indicating to Counterpoint that the data is encrypted within the software which has the private key to decrypt the data.

The private key is encrypted and stored in source form. It is only decrypted at runtime when needed, then disposed of, and is never visible in plain text form.

The context-specific key is provided by the application based on the data being encrypted, e.g. the primary key field values of the database row being stored. This ensures that all encrypted data uses a unique encryption key of the maximum length allowed.

Attachments Attachments
There are no attachments for this article.
Related Articles RSS Feed
Some AntiVirus applications are known to cause issues
Viewed 616 times since Mon, Nov 9, 2020
Unable to settle credit cards in Offline Ticket Entry
Viewed 1340 times since Wed, Sep 10, 2014
8.3.9 Offline Installation Instructions
Viewed 1947 times since Mon, Aug 25, 2014