• Ask A Question

    Ask us a question







    Please enter correct format as below:
    If AMERICA: yyy-yyy-yyyy ext123
    If Other: +yy-yyy-yyyyy ext123








    Captcha Code

  • Newsletter

P3

P3 FamilyThe easy route to EMV smart cards

 Benefits

  • Generate and manage your cryptographic data in-house, right out of the box
  • Fully scalable 
  • Uses a robust, highly secure hardware cryptographic module 
 

Thales's P3™-Personalization Preparation Process-makes it easy to create and issue EMV smart cards without sacrificing control.

Developed in conjunction with MasterCard and Visa, the world's best-selling EMV data preparation solution gives you everything you need to generate and manage your cryptographic data in-house, right out of the box.

Two P3 solutions are available, each supporting a full range of contact and contactless chip applications from all the global card associations. Both support a range of smart card platforms, including MULTOS, GlobalPlatform, TIBC, and proprietary systems.

P3 Advance is a perfect match for low- to medium-volume issuers and small organizations in need of a fast and cost-effective approach to enriching a batch of magnetic-stripe cardholder records into an EMV-compliant format.

P3 Server is a fully scalable solution that's ideal for large issuers and organizations that need the flexibility to operate in batches or through an online server. This version can be used with a central site server for branch (or instant) issuance. It integrates easily with smart card management systems to support post-issuance download on multi-application smart cards.

P3 uses Thales's P3CM, a robust, highly secure hardware cryptographic module. Optimized for high-performance EMV data preparation, P3CM is provided in a convenient desktop or rack-mounted device.

 
Keeps issuer in control. Avoids need for issuer to pass control of master keys to a third party personalisation bureau.

Easy migration. Ability to process legacy magnetic strip cardholder data file, avoiding and changes to host application.

Comprehensive application support. Supports all leading contact and contactless credit and debit applications for the major card schemes.

Flexible data output. Variety of output formats to support interfaces to all popular external card personalisation and card management systems.

Strong security. Cryptographic processing performed using FIPS 140-2 Level 3 validated hardware ensuring maximum protection for all keys.

Scalable. Ability to add multiple hardware security modules to provide extra processing capacity to reduce data preparation time.
 

P3 Software

Applications supported
P3 supports the payment applications of the major card associations:

  • MasterCard - M/Chip Lite, M/Chip 2 Select, PayPass, M/Chip 4 (MULTOS), M/Chip Flex, Maestro and MICA
  • Visa - VSDC (SDA or DDA), V Pay, payWave, Visa CEPS, VisaCash (DES/RSA) and DPA
  • JCB - JCB Lite, J/Smart, J/Speedy

P3 supports the EMV authentication applications:

  • Visa - DPA
  • Mastercard - CAP

P3 supports other applications through the GlobalPlatform scripting language. P3 uses an extended version of the GlobalPlatform scripting language to support data generation for MULTOS applications.

Card platforms supported 
P3 is card platform independent and as such supports the following card platforms:

  • Global Platform
  • Multos
  • TIBC
  • Proprietary single and multi-application cards

Typical usage 
P3 Advance is a medium volume solution for: 

  • Mid-sized centralised issuing banks
  • Small volume bureaux
  • Banks offering bureau-type services

 P3 Server is a scalable volume solution for:

  • Large scale Issuers
  • Large scale bureaux
  • preparation capability Issuers wanting a post-issuance data

Security environment 
Although P3 is a secure product in any environment, it is recommended that the following security best practices are observed:  

  • P3 should not be installed on a widely accessible network such as a corporate network
  • P3 software and hardware should ideally be installed on a private network along with all other systems required in the card production process such as the personalisation machinery and accompanying software
  • P3 software and hardware should ideally be operated within an access controlled environment. Card associations produce guidelines for card personalisation which detail mandated security requirements

Operating systems supported

  • Windows XP
  • Windows 2000 Server

P3CM-250 Cryptographic Module

Cables 
The P3CM is shipped with the following:

  • Power cable (region specific)
  • 9-way to 9-way RS232 console cable
  • 26-way to 9-way RS232 host cable

Cryptographic support

  • DES and Triple DES
  • RSA 512 to 2048 bits
  • SHA-1
  • MD5

Local Master Key Components are stored on Smart Cards (ISO 7816) for secure storage or distribution.

EMV application support 
The P3CM includes optimised cryptographic support for the following card association applications on a range of smart card platforms:

  • MasterCard - M/Chip Lite, M/Chip 2 Select, PayPass, M/Chip 4, M/Chip Flex, Maestro, MICA and CAP
  • Visa - VSDC (SDA or DDA), V Pay, payWave, Visa CEPS, VisaCash and DPA
  • JCB - JCB Lite, J/Smart, J/Speedy

Communications interfaces 

  • TCP/IP (Ethernet)
  • RS-232 (Asynchronous/serial)

Tamper evidence/resistance

  • Robust metal enclosure providing resilience against physical damage and attack
  • Security labels on outside casing to indicate attempts to open the box. The tamper evident labels are under strict control of Thales and cannot be purchased on the open market
  • A hole on the rear panel supports the fitment of a Kensington lock for added security when used in surface/desktop mode

Security certification 
The P3CM utilise the Thales Secure Generic Sub-System (SGSS) for all its cryptographic and security processing. This subsystem is validated to FIPS 140-2 level 3.

Power

  • Voltage: 100 to 240 V
  • Frequency: 47 to 63 Hz
  • Consumption: 1.0 - 0.6 A
  • Storage temperature: -10ºC to 50ºC (14ºF to 122ºF)
  • Operating temperature: Maximum ambient operating temperature of 40ºC

Note

If using the P3CM in an enclosed environment the ambient temperature inside the enclosure must not exceed the stated maximum.

  • Relative humidity: 10% to 90% at 25ºC (77º) non-condensing, falling to 50% maximum at 40ºC (100ºF)
  • Barometric pressure: 780 to 1100 mBar

Dimensions

19" rack mounting brackets

           With            Without

Height:     44mm (1U)   44mm (1U)

Width:      482mm         400mm

Depth:      225mm*       225mm*

*243 mm including earthing stud.

The P3CM is suitable for rack mounting or resting on a horizontal surface (e.g. a shelf or desk).

Performance  
Highly scalable performance possible by deploying multiple P3CMs with P3 (Server).

Key caching support offered by P3CM dramatically increases DDA application data preparation performance.

 

Related Resources

Solution Sheets

Related Datasheets