Skip to content

安全平台

We’ve earned our reputation as a leading force in electronic manufacturing, setting the standard for innovation and excellence in the industry.

MKLD, PKLD and ARF Set Up

All Castles POS and mPOS endpoints are secure as defined by PCI PTS. Within each device resides a key or keys which are used for two purposes:

  • Securing the POS/mPOS device during transport: Manufacturing key;
  • Encrypting messages which are exchanged between the POS/mPOS device and a third party system (such as a Host Security Module – HSM, at a getaway or acquirer): Personalisation key.

​These keys need to be securely injected (via USB) into the POS/mPOS device using a specific piece of hardware supplied by Castles. The hardware is based on a SPc50 and coloured in yellow for clear identification.

Remote Key Loading Manager MKLD

Castles Technology Remote Key Loading Manager (RKLM) allows keys to be remotely injected into all ‘CT’ endpoints (SPp10 not applicable) once they are deployed in the field. This encompasses all payment environments: countertop, portable, mobile, mPOS, PIN pads, and unattended.

This powerful capability avoids the need to return the product to an approved key injection facility (or instigate site visits) when key updates are required. Such actions are typically triggered by compliance or general maintenance activities. Such manual intervention can not only be costly, but extremely time-consuming and has the potential for disrupting the customer base.

Designed to meet the industry’s most stringent security requirements the RKLM can boast the following:

  • Fully compliant with the latest industry standards and guidelines including ANS X9.24 Part 1 and Part 2.
  • Enables compliance with PCI PIN Security standards and P2PE as regards remote key management.
  • Facilitates all key management schemes including Master-session, fixed, and DUKPT keys.
  • Supported by Microsoft and Linux servers.
  • Industry-leading security based on Hardware Security Modules (HSM) for all key management operations.

​All the major key management schemes are supported as standard: Master/Session key, Fixed, and Derived Unique Key Per Transaction (DUKPT).

Finally, the RKLM can communicate through all possible channels to ensure 100% terminal estate penetration: Ethernet, dial-up, GPRS, Bluetooth, and Wi-Fi.

Want to know more about our 安全平台?

Make your POS safe and secure with cutting-edge technologies that lead the industry forward.