Protection of data transmission
Encrypted data transmission channel
The HTTPS data transfer protocol is used to exchange data between Loymax System and the user's device, ensuring secure and confidential communication.
Information security is achieved through the use of SSL/TLS – a standard protocol that provides secure connection when accessing web resources and makes it impossible for third parties to view the transmitted data.
When the HTTPS connection is established, a random secret key is created that is known only to the server and the user's device. Using this key, which is generated over again with each communication session, all transmitted information is encrypted. It is impossible to gain access to the transmitted data by picking up the secret key, since it consists of more than one hundred characters.
To enhance security of the HTTPS-based connections, a digital certificate is used to identify the system server. It confirms the fact of server management by the person to whom it was granted. It contains all important information about its owner and a digital signature that is used for authentication. Data exchange between the server and the user's device will begin only if the digital certificate is authenticated.
Backup communication channels
To increase the reliability and fault tolerance of the data transmission network, Loymax system equipment is connected using several independent communication channels, each of which is backed up according to the N+1 scheme.
Digital signature
To ensure additional security of data transmission, each command coming from the POS terminal, as well as the processing response can be provided with an electronic digital signature (EDS).
The mechanism for using EDS involves generation of private and public key pairs for processing system and for each POS device interacting with it. Requests received from the POS terminals and processing responses are provided with an electronic signature obtained as a result of encryption of the transmitted data using a private key. The recipient of the request deciphers the signature using the public key. The hash (a string of characters) resulting from this conversion must match the hash of the received data, which ensures that the received data has not been changed during transmission. Thus, the digital signature provides protection and integrity of the transmitted data.
Card number masking
Processing sends masked customers' card numbers (usually only the last 4 digits are transmitted) in response to requests of the POS terminal. This is done in order not to compromise the customer's confidential information, which may be published, e.g. on the receipt.
Impersonal error wordings
In response to incorrect data transmitted in requests related to personal data of customers, the System returns errors with impersonal wordings. This approach allows to reduce the probability of receiving confidential data by picking over card numbers, phone numbers, and other personal data of the customer.
Currently, the following errors are returned when incorrect data is transmitted:
| Action | Incorrect data | Error text |
|---|---|---|
| Registration | Incorrect card number or the card is linked to another customer | Check that the data entered is correct |
| Authorization | Incorrect login and/or password | Incorrect login or password. Check the accuracy of the entered data. |
| Card linking | Incorrect card number or the card with this number is already linked to another customer | A card cannot be linked. |
| Card replacement | Incorrect card number and/or password, or the card with this number is already linked to another customer | Check that the data entered is correct |
| Card merging | Regardless of the accuracy of the entered data | A confirmation code has been sent to the user's valid type of notification tool |
| Password reset | Regardless of the accuracy of the entered data | A confirmation code is sent to <phone number/email> |
| Input of the confirmation code to reset the password | Incorrect confirmation code or notifier | Check that the data entered is correct |
| Change of phone number or email | Regardless of the accuracy of the entered data | A confirmation code is sent to <phone number/email> |