Technical Information davinci VENDING...Contact card reader (RS232 mini-DIN 6-pol.) Cash register...
Transcript of Technical Information davinci VENDING...Contact card reader (RS232 mini-DIN 6-pol.) Cash register...
Technical Informationdavinci VENDING
2
Table of contents
1 List of abbreviations 4
2 Payment procedure under ep2 52.1 Payment functions 52.2 Cautionwithofflinetransactions 52.3 CEstatementofconformity 5
3 General product information 63.1 Terminaloverview 63.2 Componentsandspecifications 73.2.1 davinciVENDINGmodule 73.2.2 Motorreaderwithshutter 83.2.3 Hybridmanualreader 93.3 RFIDreader 103.4 Security 103.4.1 Thesecuritycomponent 10
4 Connections and communication 114.1 davinciVENDINGmodule 124.2 Motorreaderandhybridmanualreader 134.3 RFIDreader 134.4 Connectionoverview 144.5 Theconnections’PINallocation 154.5.1 PINallocationsofthedavinciVENDINGmoduleconnections 154.5.2 PINallocationsofthecardreaderconnections 154.5.3 PINallocationsoftheRFIDreader 16
5 Power supply concept 175.1 PowersupplyforthedavinciVENDINGmodule 175.2 Powersupplyforthemotorreaderandthehybridmanualreader 175.3 PowersupplyfortheRFIDmodule 185.4 Connection 18
6 Configuration/Initialization 196.1 Commissioning 196.2 ExchangingthedavinciVENDINGmodule(deletingtheserialno.) 19
7 On-site maintenance 207.1 Motorreader 207.2 Maintenancefunctions 207.3 Testoptionsinthefield 207.4 MACaddressrange 207.5 Repairs 217.6 Services 217.7 Serialnumber 217.7.1 Productlabels 227.7.2 PCIlabel 22
3
Great care was taken in the compilation of the information in this document. Further developments in the field of electronic payment transactions and technology could result in changes that deviate from the descriptions in these instructions.
Therefore, SIX Payment Services Ltd assumes no liability for the topicality, completeness and accuracy of the information provided in this operating manual. Any liability claims against SIX Payment Services relating to damages or loss, either in a
material or immaterial form, caused by the use or non-use of the information offered or by the use of erroneous or incom-plete information, are fundamentally excluded, unless it can be proven that SIX Payment Services acted intentionally or with gross negligence.
You can find the latest version of the operating instructions on our website at www.six-payment-services.com.
8 Dimensionaldrawings 238.1 davinciVENDINGmodule 238.1.1 DimensionsofthedavinciVENDINGmoduledrillholedrawings 238.2 Motorreaderwithshutter 248.2.1 Dimensionsofthemotorreaderwithshutter 248.2.2 Waterdischargeonthemouthpiece 258.3 Hybridmanualreader 268.3.1 Dimensionsofthehybridmanualreader 268.3.2 Waterdischargeonthemouthpiece(hybridmanualreader) 278.4 RFIDreader 28 Notes 29
Appendix A 30 A1Figure1 30 A1Figure2 31 A1Figure3 32 Designrules 33 A2 34 TableA1 35
4
ACQ Acquirer
API ApplicationProgrammingInterface
CSM CASHSecurityModule
DIN DeutschesInstitutfürNormung(GermanInstituteforStandardization)
EC ECstandsforthepredecessorandacomponentoftheEuropeanUnion(EU)
ECR ElectronicCashRegister
eft/pos ElectronicFundsTransferatthePointofSale
EMV EuropayMasterCardVisa(cardpaymenttransactions)electromagneticcompatibility(electronic)
ep2 eft /pos2000:CHstandardbasedontheEMVstandardsinelectronicpaymenttransactions
ESD Electrostaticdischarge
EU EuropeanUnion
FW Firmware:Firmwareorhardware-relatedsoftware isembedded invariouselectronicdevicesinaprogrammablechip,nearlyexclusivelytodayinmicro-controllers.
GPRS(EDGE) GeneralPacketRadioService
HW/SW Hardware/Software
ICC Chip data
ISDN IntegratedServicesDigitalNetwork(digitaltelephony)
ISO InternationalStandardsOrganization
MAG Magnetictrackdata
MCR Motorreader
PCI-PED PaymentCardIndustry–PINEntryDevices
PIN PersonalIdentificationNumber
PMS POSmanagementsystem
PSTN PublicSwitchedTelephoneNetwork(similartotelephony)
RFID RadioFrequencyIdentification
SCS ServiceCenterSystem
TA (Tagesabschluss)Dailystatement
TRM Terminal
TRX Transaction
TQM TerminalQualityManagement(MasterCard)
UMTS UniversalMobileTelecommunicationsSystem
UPT UnattendedPaymentTerminal
USB UniversalSerialBus
WI-FI Wirelessnetwork
1 List of abbreviations
5
The payment procedure in Switzerland at thepoint of sale is standardized for all cardswithep2andIFSF.Therearemanydifferentcardsofallkindsincirculationtoday.Manycardissuers
willincrementallyequiptheircustomerswithanEMVchipcard.CustomercardsfromthepetrolsectorwillbeprocessedthroughEMVPetrol.
2 Payment procedure under ep2
Today’stechnologyoffersabroadarrayoftrans-actionsand functions.Thesettings in theser-vicecentersystem(SCS)asaglobalparameterandalsofromtheindividualcardprocessorswilldeterminewhichtransactionsareactivatedonyourterminal:
– Theactivationandthefunctionsaredeter-minedbytheterminaloperator(whereas thefunctionswillalsohavetobesupportedbytheacquirer).
Offlinetransactionsaresavedinyourterminal’ssecuritycomponentandsubmittedtothecardprocessorbymeansofabatchclosing(BC).Thiscan be undertaken manually by the terminaloperatororautomaticallythroughparametersinthe SCS. If the device suffers a defect in thesecuritycomponentorispurposelydamagedorstolen,thetransactionssavedwithinitarelost.Forthisreasonwerecommendthatyou:
TheCEconformitystatementcanbefoundon the SIXPaymentServicesLtdwebsiteat:www.six-payment-services.com.
– Dependingonthepaymentfunctionandcreditcardprocessor,differentminimum/maximumamounts,dailylimits,etc.canbedefined.
– Pleasenotethatitmaynotbepossibletoactivatesometransactiontypesandfunc-tionsonyourdevice.
– Retainallreceipts(paperorelectronic).– Carryoutabatchclosingseveraltimesadaily.
– Alwayscarryoutabatchclosingbeforemakingchangestotheinstallation,etc.
– Afteraprolongedabsencefromthebusiness,alwaysfirstcarryoutabatchclosing
Forseasonaloperations,abatchclosingmustbe made at the end of the season.
2.1 Payment functions
2.2 Caution with offline transactions
2.3 CE statement of conformity
6
3 General product information3.1 Terminal overview
ThenewdavinciVENDINGiscomprisedofvari-ouscomponents.Themodularstructureenablesyou to optionally equip the davinci VENDING
modulewith amotor reader or hybridmanualreaderand/oranRFIDreader.
davinciVENDINGModul
Hybridmanualreader
RFIDreader
Motorreaderwithshutter
7
3.2 Components and specifications
3.2.1 davinci VENDING module
Amaximumof2componentscanbeconnectedtothedavinciVENDINGmodule:eitheramotorreaderwitha shutter andanRFID readerorahybridmanualreaderandanRFIDreader.How-ever,ahybridmanualreaderandamotorreaderor 2motor readers cannot be operated at thesame time.
Specification Description
Keyboard –Oil-proofchromesteelkeyboardwithpolishedglasskeys–TheSTOP,CORRandOKkeysarelargerthanthe0to9keys–Symbolsforthevisuallyimpaired: –“X”symbolonthe“STOP”key –“I”symbolonthe“CORR”key –“O”symbolonthe“OK”key –“Dot”onthe“5”key–4functionkeys–Atleast1millionkeypresscycles–IK07vandalismprotection–Actuatingforce:Level3
Colordisplay 2.4”TFTwith240×320pixelsProtectedwithmirroredprotectiveglassAdjustablebackgroundlighting
Security ARM-basedsecurityprocessorDismantlingprotectionaccordingtoPCI/UPT
Hardware ARM-basedapplicationprocessor32MBRAMSTP64MBFlashSTP
Operatingsystem LinuxVersionV2.6.28orhigherLeapyearcapable
2SAMSlots
Slot1=freeSlot2=free
Interfaces USBRS232interface(cashregisterinterface)
Buzzer Thebuzzercanbecontrolledthroughtheapplication(on/offandvolume)
8
3.2.2 Motor reader with shutter
Specification Description
Cardsprocessed AllEMVLevel1-compatiblechipcards(ISO7816),magneticstripecardstracks 2 and 3 (ISO 15457, version 2001-10-15 and ISO 7810, version 2003-11.01).
Reading acceptance
AllISO-compatiblemagneticcards(track2)mustbereadablebyaninexpe-rienceduserproperlyusinganewmotorreaderinalaboratoryenvironmentwitha98%successrateatthefirstattempttoreadthem,and99%atthesecondattempt.Thebasisiscomprisedof100readings.AllISO-compatiblechipcardsmustbereadablebyaninexperienceduserproperlyusinganewmotor reader ina laboratoryenvironmentwitha99%successrateatthefirstattempttoreadthem.Thebasisiscomprisedof100readings.
Readingcycles Aminimumof300,000readingcyclesinthemotorreader(magnetreader)Aminimumof300,000readingcyclesinthemotorreader(chipreader)
Security ARM-basedsecurityprocessorDismantlingprotectionaccordingtoPCI/UPT
Casing AluminumcasingThemouthpiececoverconsistsofamattchromezincdie-cast;itisattachedtothealuminumcasingwithscrews
Build-in compatibility
Device front cutout designed for the greatest possible flexibility and compatibility.
Thehybridmotorreadercanreadbothchipsandmagneticstripesfromapaymentcard.Themotorreader is equipped with an automatic closingmechanism(shutter).
9
3.2.3 Hybrid manual reader
Ahybridmanualreadercanbeinstalledinsteadofamotorreader.
Specification Description
Cardsprocessed AllEMVLevel1-compatiblechipcards(ISO7816),magneticstripecardstracks 2 and 3 (ISO 15457, version 2001-10-15 and ISO 7810, version 2003-11.01).
Readingcycles A minimum of 200,000 reading cycles in the hybrid insertion reader (magnetreader)A minimum of 200,000 reading cycles in the hybrid insertion reader (chipreader)
Security ARM-basedsecurityprocessorDismantlingprotectionaccordingtoPCI/UPT
Casing AluminumcasingThemouthpiece cover ismade from amatt chrome zinc die-cast; it isattachedtothealuminumcasingwithscrews
Installation Devicefrontcutoutdesignedforthegreatestpossibleflexibilityandcom-patibility.
Features Itispossibletoreadthemagneticstripebi-directionally.Nolockingofthecard
10
3.3 RFID reader
TheRFID readercanbeusedwith thedavinciVENDING.ThereadermustbebuiltinseparatelyfromthedavinciVENDINGmodule/motorreaderorinsertionreader.
Anysecurity-relatedmanipulationwillcausethedeactivationofthecomponent.Thismeansitwillnotlongerbefunctionalandmustbereturnedfor
Thesecuritycomponentincludesthefollowingtasks:– Protectionofthekeypad,– ProcessingofthechipcardandPINverifi-cation,
– Readingofthemagnetictrack,– Cryptographicfunctions,
repairs.Thecardreadermaynotbeopened,noteventoremoveacardthatisstuckinthedevice.
3.4 Security
3.4.1 The security component
– Receivingasecuritycertificationfortheloadingofsoftware,
– Preventionoftheaccessibilityoftheappli-cation’sPINdata,
– Monitoringchangesintemperatureandpowersupply,whichmaynotfallbeloworexceedadefinedvalue.
11
The connections and communication modes of thevariouscomponentsaredescribedindetailin this section.
4 Connections and communication
12
Rüc
ksei
te d
es P
INPa
ds
Seite
nans
icht
des
PIN
Pads
Unt
erse
ite d
es P
INPa
dsR
ücks
eite
des
PIN
Pads
Seite
nans
icht
des
PIN
Pads
Unt
erse
ite d
es P
INPa
ds
Rüc
ksei
te d
es P
INPa
ds
Seite
nans
icht
des
PIN
Pads
Unt
erse
ite d
es P
INPa
ds
4.1 davinci VENDING module
BottomofthedavinciVENDINGmodule
SAM1
SAM2
BacksideofthedavinciVENDINGmodule
USBhost(USBtypeA)
USBdevice(USBtypeB)
Ethernet(RJ45)
RFIDreader(RS232mini-DIN6-pol.)
Contactcardreader(RS232mini-DIN6-pol.)
Cashregisterconnection(RJ12)
Optionalpowersupply(screw/plugconnection)
SideviewofthedavinciVENDINGmodule
microSDcard
SIMcard(GSM)
Antennaoutlet(GSM/Wi-Fi)
The following connections are found on thedavinciVENDINGmodule:
13
Rüc
ksei
te d
esR
FID
Les
ers
Themotorreaderandthehybridmanualreaderhavethefollowingconnections:
4.2 Motor reader and hybrid manual reader
4.3 RFID reader
Powersupply(RJ45plug)
ConnectiontothedavinciVENDINGmodule(RS232mini-DIN6-pol.)
Powersupply(Molexplug)
ConnectiontothedavinciVENDINGmodule(RS232mini-DIN6-pol.)
14
4.4 Connection overview
Component
Connector overview
davinci VENDINGmodule
Motor reader with shutter
Motor readerwithoutshutter
Hybrid manual reader
RFIDreader
RJ12 (ECR) X
RJ45(Ethernet/ISDN communication)
X
RJ45 (power supply) X X X
RS232mini-DIN6-pole (connection to the davinci VENDINGmodule)
2x’s X X X X
USB host 1.1 (USB type A) X
USB device 1.1 (USB type B) X
Screw/plugconnection(power supply)
X
Molexplug(powersupply) X X X
Antenna outlet (GSM or Wi-Fi)
X
micro SD card (date backup) X
SAM (Security AuthentificationModule)
2x’s
SIMcard(GSM) X
15
4.5 The connections’ PIN allocation
4.5.1 PIN allocations of the davinci VENDING module connections
4.5.2 PIN allocations of the card reader connections
Description Plugtype Purpose 1 2 3 4 5 6 7 8
Power screw/plugconnection
5VDCpower supply(auxiliary)
VCC GND
Comm. RJ45 Ethernet Tx+ Tx- Rx+ Rx-
ECR RJ12 Cash register interface
UinExt+12V
UinExt+12V
RxD TxD GND GND
USB type 1.1 StandardtypeAStandardtypeB
Host and device
+5V D- D+ GND
Connect to module
mini-DIN6-pol.
Connec-tion to the com-ponents
+12V +12V RxD TxD GND GND
Connect to module
mini-DIN6-pol.
Connec-tion to the com-ponents
+12V +12V RxD TxD GND GND
Description Plugtype Purpose 1 2 3 4 5 6 7 8
Power Molex 12V-36VDC
GND VCC
Power RJ45 12V-20VAC AC1 AC1 AC1 AC2 AC2 AC2
Connect to module
mini-DIN6-pol.
Connec-tion to the com-ponents
+12V +12V RxD TxD GND GND
16
4.5.3 PIN allocations of the RFID reader
Description Plugtype Purpose 1 2 3 4 5 6 7 8
Connect to module
mini-DIN6-pol.
Connec-tion to the com-ponents
+12V +12V RxD TxD GND GND
17
5 Power supply concept5.1 Power supply for the davinci VENDING module
The davinci VENDING module power supplyconceptisdesignedtobemultifacetedinordertoaccommodate theneedsofcustomers.ThedavinciVENDINGmodulecanbesuppliedwithelectricitythroughamotorreader,ahybridman-
ual reader, a power adapter or a vendingma- chine.Atthesametime,thedavinciVENDINGmodule canalsobe suppliedwithpowerwithothercomponentsinthesecases.
Rüc
ksei
te d
es P
INPa
ds
Seite
nans
icht
des
PIN
Pads
Unt
erse
ite d
es P
INPa
ds
Rüc
ksei
te d
es M
otor
lese
rs(m
it od
er o
hne
Shut
ter)
und
des
Hyb
ridst
eckl
eser
s
BacksideofthedavinciVENDINGmodule
12VDC(input/output)
5VDC(auxiliary)VCCGDN
Back side of the motor reader and the hybrid manual reader
12VAC…20VAC(input)
12VDC(input/output)
12VDC…36VDC(input)VCCGDN
5.2 Power supply for the motor reader and the hybrid manual reader
18
5.3 Power supply for the RFID module
BacksideoftheRFIDreader
12VDC(input)
Thecablingofthecomponentsisdescribedinthis section.Themaximum lengthof thecon-nection between the reader and the davinciVENDINGmoduleis2meters.OnlythecablesspecifiedbySIXPaymentServicesmaybeused.Intheexample,thedavinciVENDINGmoduleisconnected with an RFID reader and a motor
reader. The connected motor reader can beequippedwithorwithoutashutter.Thepowersupplyoftheentiresystemisprovidedthroughthemotor reader’spowersupplyconnections.Instead of the motor reader, a hybrid manualreadercanalsobeconnected.
5.4 Connection
Motor reader or hybrid manual reader
RFIDreader
davinciVENDINGmodule
Powersupplyconnection
Rückseite des Motorlesers(mit oder ohne Shutter) und
des Hybridstecklesers
Rückseite des PINPads
Seitenansicht des PINPads
Unterseite des PINPads
Datatransmissionandpowersupply
Datatr
ansmis
sionandpowers
upply
19
– Positionthedeviceintheintendedlocation.– Connectthedevice:Alwayspluginthepowersupplylast!
– Ittakesbetween30and60secondsfortheterminaltobeactivated.
If the davinci VENDING module must be ex- changed unexpectedly, then the SIX PaymentServiceshotlinemustbecontactedbeforetheinitialization so that theexisting serial number
– Anacousticsignalcanbeheard.Theterminalcannowbeinitializedaccordingtheseparateinstructions.
canbedeleted.Otherwise,it isnotpossibletoundertake an initialization with a new davinciVENDINGmoduleontheexistingterminalID.
6.2 Exchanging the davinci VENDING module (deleting the serial no.)
6 Configuration/Initialization6.1 Commissioning
20
Thecleaningofthemagneticheadandthechipreaderdependsonthelocation.Toensuresmoothoperation,it isnecessarytoregularlycleanthecardreaderusingthecleaningcard.Itisrecom-mendedthatyoucleantheterminalatleasttwicemonthly. To do so, use the dry cleaning card,whichistobeinsertedintothecardreaderthreetimesonbothsides.Thecleaningcardscanbeordered in the e-shop at:www.six-payment-services.com/shop.Pleasenote that thechipreaderhasnoslidingcontact,butlowerswhenacardisintroduced.
Themaintenancemenucanbecalledupwithoutapaymentapplication.Thefollowingstatisticsfunctionscanbecalledupinthemaintenancemenu:
Theproductcanbe inspectedandtestedbyaservice technicianwhen out of operation andwithoutapplications.Severalofthetestoptionsarelistedinthefollowing.Thelistisincomplete.
SectionreservedbyPayTecattheIEEE:00-19-16-0C-00-00to00-19-16-10-00-00
Ifthecardcannotbeejectedduringapaymenttransaction or for other reasons (e.g., after apower disruption), then the card must bereleasedbyenteringapassword.Ifacardunex-pectedly remains stuck in a motor reader orcannot be ejected, then the reader must bereturned to SIX Payment Services for repairs,becauseifthereaderisopenedthesecuritykeywillbedeleted.
– MACaddress– Serialnumber– Softwareversions(ofallcomponents)
– Inquiries:MAC,BIOS,securitystatus– Test:Motorreader(Chip&MAG),keypad,davinciVENDINGmodule,RFID,hybridmanualreader(Chip&MAG),communicationmodule(withaping)
7.2 Maintenance functions
7.3 Test options in the field
7.4 MAC address range
7 On-site maintenance7.1 Motor reader
21
7.2 Maintenance functions
Ifacomponentmustbeexchangedforrepairs,then it is to be noted that any chips/microSDcardsmustberemoved.Thesealwaysremainonsite.Allessentialcomponentsaremarkedwitha
There are two labels on all components. The labels are described in greater detail in the following.
A70-personteamcompetentlyprovidesyouwithsupportservicespertelephone365daysayear,7daysaweekand24hoursadayin4languages(G/F/I/E).More than 30 service technicians areactive throughout Switzerland commissioningpaymentterminals,aswellasprovidingsupportandmaintenance. For terminal operation it isnecessary to choose among the following servicepackages:
componentlabel.Thesemaynottapedoverorremovedortransferredtoothercomponents.Ifthecover,forexample,hasanadditionalsticker(e.g.,TID),thenthistoomustremainonsite.
Activation and introduction One of the two following service packages isneededfortheactivationofyourpaymentter-minal:–Activationservicepackage–On-siteservicepackage
TerminaloperationandtroubleshootingOne of the four following service packages isneededfor theoperationofyourpaymentterminal:– Lightservicepackage– Comfortservicepackage– Proservicepackage– Pro+servicepackage
7.5 Repairs
7.7 Serial number
7.6 Services
22
Eithera largeorasmallproduct label is tobefoundonallcomponentsofthedavinciVENDINGcontainingthefollowingproductinformation:
Onallcomponents(exceptfortheRFIDreader)ofthedavinciVENDINGthereisaPCIlabelcon-tainingthefollowinginformation:
7.7.1 Product labels
7.7.2 PCI label
Information Description
Product information
Example: PPPSSSSSVVWWYY
Meaning: PPP productname SSSSS sequentialserialnumber VV thecomponentversion WW calendarweekoftheproduction YY yearoftheproduction(lasttwodigits)
Thefirsteightdigits(PPPSSSSS)oftheproductinformationcanbecalledupbytheapplication.
Logo PayTeclogo(onlyonthelargeproductlabel)
Barcode Productinformation
CEsymbol ThedeviceisCE-approved(onlyonthelargeproductlabel)
Information Description
Logo PayTeclogo
Certificationname ProductnamelistedwithPCI
Certification number
ProductnumberlistedwithPCI
Barcode Certificationnumber
Rating Information about the product’s voltage (xx volts) and electricity usage (yyamps)
Assembly Manufacturer’slocation(Swissmade)
23
Note:– Thefollowingdrawingsmaydifferfromtheoriginals.
– TheSTEPfilescanbedownloadedfromtheSIXPaymentServiceswebsiteat:
www.six-payment-services.com.
Importantfortheinstallation:TheplugconnectionsandthecableexitsareclearlyrecognizableintheSTEPfiles.
8 Dimensional drawings
8.1 davinci VENDING module
8.1.1 Dimensions of the davinci VENDING module drill hole drawings
WeldingstudsM5(4x)
Devicefrontdetailedview
24
8.2 Motor reader with shutter
8.2.1 Dimensions of the motor reader with shutter4Maximummaterialthickness
Devicefrontdetailedview
25
8.2.2 Water discharge on the mouthpiece
26
8.3 Hybrid manual reader
8.3.1 Dimensions of the hybrid manual reader
Devicefrontdetailedview
4Maximummaterialthickness
27
8.3.2 Water discharge on the mouthpiece (hybrid manual reader)
28
8.4 RFID reader
Devicefrontview
29
Notes
30
Appendix A: Criteria for the privacy screen designA.1 Privacy screen design criteria to be met by the UPT’s design
The following are examples of UPT privacyscreensbeingprovidedbytheUPTitselfthatarecompliantwithPCIUPTsecurityrequirements.Otherdesignsmayalsobeacceptable.
Figure 1: Sample UPT with privacy screen range, bird’s eye view
Payment Card Industry UPT Derived Test Requirement V1.0, Copyright 2009 PCI Security Standards Council LLC (April 2009)
Samplecabinetwalls
Observationrange
EPPprivacyScreen
O:ObserverC:UPTuser(cardholder)
O
O
O
O O
OO
O
C
31
Figure 2: Sample UPT keypad, sectional drawing from the “0” side
Line between theobserver’seye andthekeypad referencepoint
Lateralprotectionanglea
EPPprivacyscreen
EPPmountingplane intotheUPT
32
Theangles in thefiguresabovearedefinedasfollows:
a:Anglebetweenthehorizontalplanethroughthe“5”keyandavirtuallinewhichconnectsthe“5”keyandanobserver’seye
Line between the observer’seyeand thereferencepoint
Keypadplane
EPPprivacyscreen
Verticalprotectionanglea
Figure 3: Sample UPT keypad, side view
b:Horizontalpositiontoanobserverrelative tothePEDuser’sposition
c:Horizontalrangewhichistobecovered bytheprivacyscreen
d: Anglebetweenthekeypadplaneandthehorizontalplane
33
Horizontalangleb Comment Verticalangle a
315°≤b≤45°: Withinthisrangeofbthecardholderdeters anobserverwithher/hisbody.
N/A
45°≤b≤90°270°≤b≤315°:
Withintheserangesvisualobservationofthekeypadispartiallyblockedbythecardholder.Theprotectionangleashallbeatleast35°.PleasenotethatthefrontendoftheprivacyscreenmustbehigherifthePEDistilted.
a≥35°
90°≤b≤270°: Theprotectionangleshallbeatleast40°. Thedisplaysideoftheprivacyscreenmay beloweredasthePEDistiltedagainstthehorizontalplane.
a≥40°
Design rules:
1. Thesedefinitionsapply to aprivacy screen,which is provided as design property by theUPT.ItmaybeapartoftheEPP,orprovidedbytheUPTcabinet.Therulesandthefiguresabovearetobeconsideredasguidelines,whichmaybereplacedbyothermeansofatleastthesameefficiency.
2.Thekeypadreferencepointistakenasthecol-umnpositioninthemiddleofthekeypadintherowcontainingthenumerickey“5”.
3.Theprivacyscreenshallprovidethefollowingprotectionangles:
4.Theprotectionisbasedonviewinganglesanddoesnotimplyaspecifictechnicalimplementa-tionsuchasphysicalshields.
34
A.2 Privacy screen design criteria to be met by the UPT’s installed environment
The following techniques can be employed toprovideforeffectivescreeningofthePIN-entrykeypad during the PIN-entry process. These
methodswould typically be used in combina-tion,thoughinsomecasesamethodmightbeusedsingly.
Note:Thisoptiondoesnotprecludetheuseof privacymechanismsasdefinedinA1,but allowslessrestrictivephysicalmecha-nisms,e.g.,a≥20°.
Positioning of the terminal on the checkoutcounter in suchwayas tomakevisual obser-vation of the PIN-entry process infeasible.Examplesinclude:
– Visualscreensdesignedintothecheckoutcounter.Thescreensmaybesolelyforshield-ingpurposes,ormaybepartofthegeneralcheckoutcounterdesign,e.g.,usedassellingarea.
– PositiontheUPTsothatitisangledinsuchawaytomakePINspyingdifficult.
Pop-up(temporary)privacyscreenattachedtothe UPT mounting stand. Consumer (througheducation and prompting) ormerchant wouldputthescreeninplaceduringPIN-entry
Installing theUPTonan adjustable stand thatallows consumers to swivel the tenninal side-waysand/ortiltitforwards/backwardstoaposi-tion thatmakesvisualobservationof thePIN-entryprocessdiflicult.
Positioningofin-storesecuritycamerassothatthePIN-entrykeypadisnotvisible.
Instructing the cardholder regarding safePIN-entry.Thiscanbedonewithacombinationof– SignageontheUPT;– Promptsonthedisplay,possiblywitha“click-through”screen;
– Potentially,literatureatthepointofsale;and– AlogoforthesafePIN-entryprocess.
Other methods are possible as well. Listed aboveareexamplesofsomeofthemethodsavendor can propose to protect PINs during PIN-entry. The vendormust provide adequatetechniquesintheUPTdocumentationandalsoinclude a matrix showing which techniquesshouldbeusedtoprotectagainstspecificobser-vationcorridors.Asamplematrixfollows:
35
Table A1:
Sample matrix of observation corridors and PIN protection methods
Method
Observation corridors
CashierCustomersinqueue
Customerselsewhere
On-site cameras
Remotecameras
UPRStandA M H L L L
UPRStandB H H H L M
CheckoutcounterA L M M L H
CheckoutcounterB H H M H H
Customerinstruction H* H* H* H* H*
* Customer instruction methods are less repeatable and therefore should be used in combination with other methods. L = low, M = medium, H = high
ThematrixmustshowthepurchaseroftheUPTthe typesofmethods theymayuse toprotecttheircustomers’PINs.Theappropriatemethods
shouldbeselectedinordertoensureanappro-priate level of protection from all observationcorridors.
110.
0172
.02
CHE_
EN/0
5.20
12
Your personal contact: www.six-payment-services.com/contact
SIX Payment Services LtdHardturmstrasse 2018005 ZurichSwitzerland
SIX Payment Services (Europe) S.A.10, rue Gabriel Lippmann5365 MunsbachLuxembourg