System Security
The TNS Key Management System (KMS) executes system security design by conditioning electronic purses (E-Purse) and Security Access Modules (SAM) such that any subsystem…
System Security
The TNS Key Management System (KMS) executes system security design by conditioning electronic purses (E-Purse) and Security Access Modules (SAM) such that any subsystem interacting with the E-Purse must require a SAM to enforce secured implementation of the application program. The SAM is specially designed security application residing inside a CPU smart card, which enhances and complements security of off-the-shelf E-Purse smart cards.
All security-sensitive decisions can only be made inside the security module to prevent application programmers being able to access to cryptographic keys or modify any processes made in module. Security modules are autonomous intelligent smart cards using cryptographic keys as the basis for security. Cryptographic keys are isolated and decoupled from the application program and programmers though the KMS.
Key Features
- Cryptographic keys generated by random keys created by user (System Operator) using multiple seeds controlled by user
- User-definable multiple sets of keys
- One key one purpose for card authentication, terminal authentication, acquirer transaction certification, debit certification, issuer debit transaction signature, credit certification, credit transaction signature
- Keys resided in various types of SAMs on a need-to-have basis
- Secured online and offline key updates
- Unique Card Identification Number and Authentication Code
- Key Management System to ensure secure Security Access Module (SAM) card creation
- Secure mechanism for retrieving and backing-up keys
- Exclusive confinement of keys into the SAM once they are loaded
- Triple DES Crypto Engine for secure high-speed transactions
- Authentication, signature and verification computations on keys
- Support for multiple card issuers, multiple acquirers and multiple fund issuers
- Secured offline reloading of E-Purse with limited risk exposure of e-money
System Highlight
Flexible, scalable and easily adopted. The system, including hardware and software, can be enhanced after deployment to fit the changing needs of customers in line with the customers’ growth.
System Highlight
Flexible, scalable and easily adopted. The system, including hardware and software, can be enhanced after deployment to fit the changing needs of customers in line with the customers’ growth.
Multi-issuer, Multi-Acquirer and Multi-application
The TNS Central Computer System is crucial in supporting clearing for multiple service providers as well as multiple card issuers and acquirers, in addition to settlements among participants.
Many AFC or electronic purse applications start with a single issuer and single merchant. Over time, these may be expanded to include other participants, be it a multi-modal transport system or retail outlets, convenient stores, parking, or vending machines and so forth.
A smart card cryptography key –based security design, coupled with backend auditing ensures the utmost security and generates high levels of confidence and trust between participants.
Offline Reload and Fund Transfer
A Security Access Module (SAM) and Activation Card System is implemented to limit the risk of offline reloading and prevent fraud and theft. In all TNS AFC solutions, every single cent of electronic money is accounted for at all times.
An advantage of using a smart card in AFC solutions is that a smart card allows transactions to be done securely without relying on an online infrastructure. In places where such infrastructure is not always be available, debit and reload transactions need to be carried out offline.
Auto and Deferred Reload
The Auto and Deferred Reload System allow cardholders to send instructions remotely to reload non-anonymous AFC cards, tied to cardholders, via SMS, USSD and web portals. Actual reloading is realised when the cards are presented at the front-end terminals.
Operations Flow
TNS AFC Solutions can be expanded to support multi-modal transport systems such as citywide MRT, Bus, Taxi, together with retail outlets, petrol stations, convenient stores, and self service…
Operations Flow
TNS AFC Solutions can be expanded to support multi-modal transport systems such as citywide MRT, Bus, Taxi, together with retail outlets, petrol stations, convenient stores, and self service and on-street parking, vending machines, and more. With such a broad range of application and participants involved, the TNS Central Computer System is crucial in supporting clearing and settlement for multiple service providers as well as multiple card issuers and acquirers.
The TNS Central Computer System supports clearing and settlement for multiple service providers, card issuers and acquirers, as is necessary in a multi-application system.
The Operation Flow of an AFC system goes through five major steps:
- Generation of Electronic Money (E-Money)
- Reloading E-Money onto AFC Cards
- Debiting E-Money inside AFC Cards for payment
- Upload of transactions and data exchange
- Clearing and Settlement